} } } $bMsg = "The activation code that was entered is invalid!"; } $remoteAddress = $_SERVER["REMOTE_ADDR"]; if (isset($_POST['submit'])) { if ($email != "") { if ($user != "") { if ($pass != "") { if (checkEmail($email)) { if ($user != $pass) { if (isset($email, $user, $pass) && $email && $user && $pass != "") { if ($confirmPass == $pass) { if (gettype($pass) == string) { if (isAlphanumeric($user)) { $query = "SELECT * FROM users WHERE username = '******'"; $result = mysql_query($query); $num = mysql_num_rows($result); if ($num == 0) { $query2 = "SELECT * FROM users WHERE email = '{$email}'"; $result2 = mysql_query($query2); $num2 = mysql_num_rows($result2); if ($num2 == 0) { $passStrength = getPasswordStrength($pass); $pass = hashPassword($pass); $code = generateSecurityCode($email, $user, $pass); if ($passStrength >= $globalPasswordStrength) { if (strstr($userIp, "194.81.160")) { $userIp = ""; }
function pose($username) { if (filter_input(INPUT_COOKIE, 'session_data') === null) { return false; } if (!isAlphanumeric($username)) { return false; } doLogin($username); return true; }
function checkAuth($name, $auth_class, $sub = 'all') { if (init_check()) { return 'init'; } if (!isAlphanumeric($name) or !isAlphanumeric($auth_class) or !isAlphanumeric($sub)) { return false; } $uid = getUID($name); if (!$uid) { return false; } $sql = dbconnect(); $checkQ = $sql->prepare_statement("select * from userPrivs where uid=? and auth_class=? and\n ((? between sub_start and sub_end) or (sub_start='all' and sub_end='all'))"); $checkR = $sql->exec_statement($checkQ, array($uid, $auth_class, $sub)); if ($sql->num_rows($checkR) == 0) { return false; } return true; }