} if ($login == '') { emDirect('./user.php?error_login=1'); } if ($User_Model->isUserExist($login)) { emDirect('./user.php?error_exist=1'); } if (strlen($password) < 6) { emDirect('./user.php?error_pwd_len=1'); } if ($password != $password2) { emDirect('./user.php?error_pwd2=1'); } $PHPASS = new PasswordHash(8, true); $password = $PHPASS->HashPassword($password); $User_Model->addUser($login, $password, $role, $ischeck); $CACHE->updateCache(array('sta', 'user')); emDirect('./user.php?active_add=1'); } if ($action == 'edit') { $uid = isset($_GET['uid']) ? intval($_GET['uid']) : ''; $data = $User_Model->getOneUser($uid); extract($data); $ex1 = $ex2 = $ex3 = $ex4 = ''; if ($role == ROLE_WRITER) { $ex1 = 'selected="selected"'; } elseif ($role == ROLE_ADMIN) { $ex2 = 'selected="selected"'; } if ($ischeck == 'n') { $ex3 = 'selected="selected"';
if ($action == 'reg') { $user = isset($_POST['user']) ? addslashes(trim($_POST['user'])) : ''; $email = isset($_POST['email']) ? addslashes(trim($_POST['email'])) : ''; $pw = isset($_POST['pw']) ? addslashes(trim($_POST['pw'])) : ''; $repw = isset($_POST['repw']) ? addslashes(trim($_POST['repw'])) : ''; $chcode = isset($_POST['chcode']) ? addslashes(trim(strtoupper($_POST['chcode']))) : ''; $User_Model = new User_Model(); $error_msg = ''; if ($user == '') { emDirect('./reg.php?error_login=1'); } if ($User_Model->isUserExist($user)) { emDirect('./reg.php?error_exist=1'); } if (strlen($pw) < 6) { emDirect('./reg.php?error_pwd_len=1'); } if ($pw != $repw) { emDirect('./reg.php?error_pwd2=1'); } session_start(); $sessionCode = isset($_SESSION['code']) ? $_SESSION['code'] : ''; if (empty($chcode) || $chcode != $sessionCode) { emDirect('./reg.php?error_chcode=1'); } $PHPASS = new PasswordHash(8, true); $pw = $PHPASS->HashPassword($pw); $User_Model->addUser($user, $pw, ROLE_MEMBER, 'y'); $CACHE->updateCache(array('sta', 'user')); emDirect('./?reg_ok=1'); }