echo json_encode($send); die; } //email validation if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $send = array("status" => "103"); echo json_encode($send); die; } if (!preg_match($mob, $mobile)) { $send = array("status" => "105"); echo json_encode($send); die; } //check if username already exists $check = username_check($con, $username); if ($check == 1) { //insert if username does not exist insert_entries($con, $username, $email, $password, $mobile, $reg_no); } else { $send = array("status" => "101"); echo json_encode($send); die; } function username_check($con, $username) { $sql = "select * from member_details where Username='******'"; $result = mysqli_query($con, $sql); $count = mysqli_num_rows($result); if ($count == 0) { return 1;
/** * Adds user to the database * * Registration function, this controls the sign up functionality. * @global array * @global resource * @param string $username username of user being added * @param string $password password of user being added * @param string $password_again password again to be checked against first $password * @param string $email email incase email registration is turned on * @param string $age mm/dd/yyyy * @return string|boolean */ function add_user($username, $password, $password_again, $email, $age = false) { global $config, $database; // 904 - Registration complete, needs to validate email! // Check Username if (!alpha($username, 'alpha-underscore')) { return lang_parse('error_invalid_chars', array(lang('username'))); } // Username Taken if (username_check($username)) { return lang('error_username_taken'); } // Check Username Length $length = length($username, $config['min_name_length'], $config['max_name_length']); if ($length) { if ($length == "TOO_LONG") { return lang('error_username_too_long'); } else { return lang('error_username_too_short'); } } // Check Password Length $length = length($password, $config['min_name_length'], $config['max_name_length']); if ($length) { if ($length == "TOO_LONG") { return lang('error_password_too_long'); } else { return lang('error_password_too_short'); } } // Setup Passwords if ($password == $password_again) { $raw_pass = $password; $password = md5($password); } else { return lang('error_password_match'); } // Check email if (!is_email($email)) { return lang_parse('error_invalid_given', array(lang('email'))); } // Banned? $query = "SELECT * FROM `users` WHERE `email` = '{$email}' AND `banned` = '1' LIMIT 1"; $result = $database->query($query); if ($database->num($result) > 0) { return lang('error_banned_email'); } // Exist? $query = "SELECT * FROM `users` WHERE `email` = '{$email}' LIMIT 1"; $result = $database->query($query); // Email exists if ($database->num($result) > 0) { return lang('error_email_used'); } // Do we have to validate age? if ($config['age_validation']) { if ($age) { // Start grabbing age data~ $age_data = explode('/', $age); if (alpha($age_data[2], 'numeric')) { if (strlen($age_data[2]) < 4) { return lang('error_year_invalid'); } $old_enough = age_limit($age_data[2], $config['age_validation']); if (!$old_enough) { return lang_parse('error_year_young', array($config['age_validation'])); } } else { return lang_parse('error_given_not_numeric', array(lang('year_c'))); } } else { return lang('error_year_invalid'); } } load_hook('add_user_check'); // Finally Add user if ($config['email_validation']) { // The Key for Validation $key = md5($username . $email . substr(microtime(), 1, 3)); // The query $query = "INSERT INTO `users` (`username`,`password`,`email`,`join_date`,`age`,`active`,`key`) VALUES ('{$username}', '{$password}', '{$email}', '" . time() . "','{$age}','0','{$key}')"; } else { // The query $query = "INSERT INTO `users` (`username`,`password`,`email`,`join_date`,`age`,`active`) VALUES ('{$username}', '{$password}', '{$email}', '" . time() . "','{$age}','1')"; } // Return Data if ($result = $database->query($query)) { // Auto login if (!$config['email_validation']) { // log them in login($username, false, $raw_pass); // Return True return true; } else { // Subject / Message replacing $subject = str_replace('{site_name}', $config['site_name'], $config['email_subject']); $subject = str_replace('{username}', $username, $subject); $subject = str_replace('{email}', $email, $subject); // The message $message = str_replace('{site_name}', $config['site_name'], $config['email_message']); $message = str_replace('{username}', $username, $message); $message = str_replace('{email}', $email, $message); $message = str_replace('{link}', $config['url_path'] . "/register.php?e={$email}&k={$key}", $message); // Mail the results riot_mail($email, $subject, nl2nl($message)); // Return the results return 904; } } else { return false; } }
/** * Function used to update use details */ function update_user($array) { global $LANG, $db, $signup, $Upload; if ($array == NULL) { $array = $_POST; } if (is_array($_FILES)) { $array = array_merge($array, $_FILES); } $userfields = $this->load_profile_fields($array); //$signup_fields = $this->load_signup_fields($array); $custom_signup_fields = $this->load_custom_signup_fields($array); //Adding Custom Form Fields if (count($this->custom_profile_fields) > 0) { $userfields = array_merge($userfields, $this->custom_profile_fields); } //Adding custom fields from group if (count($this->custom_profile_fields_groups) > 0) { $custom_fields_from_group_fields = array(); $custom_fields_from_group = $this->custom_profile_fields_groups; foreach ($custom_fields_from_group as $cffg) { $custom_fields_from_group_fields = array_merge($custom_fields_from_group_fields, $cffg['fields']); } $userfields = array_merge($userfields, $custom_fields_from_group_fields); } validate_cb_form($custom_signup_fields, $array); validate_cb_form($userfields, $array); foreach ($userfields as $field) { $name = formObj::rmBrackets($field['name']); $val = $array[$name]; if ($field['use_func_val']) { $val = $field['validate_function']($val); } //Overrides use_func_val if ($field['value_function'] && function_exists($field['value_function'])) { $val = $field['value_function']($val); } if (!empty($field['db_field'])) { $query_field[] = $field['db_field']; } if (is_array($val)) { $new_val = ''; foreach ($val as $v) { $new_val .= "#" . $v . "# "; } $val = $new_val; } if (!$field['clean_func'] || !function_exists($field['clean_func']) && !is_array($field['clean_func'])) { $val = mysql_clean($val); } else { $val = apply_func($field['clean_func'], sql_free('|no_mc|' . $val)); } if (!empty($field['db_field'])) { $query_val[] = $val; } } //Category if ($cat_field) { $field = $cat_field; $name = formObj::rmBrackets($field['name']); $val = $array[$name]; if ($field['use_func_val']) { $val = $field['validate_function']($val); } if (!empty($field['db_field'])) { $uquery_field[] = $field['db_field']; } if (is_array($val)) { $new_val = ''; foreach ($val as $v) { $new_val .= "#" . $v . "# "; } $val = $new_val; } if (!$field['clean_func'] || !function_exists($field['clean_func']) && !is_array($field['clean_func'])) { $val = mysql_clean($val); } else { $val = apply_func($field['clean_func'], sql_free('|no_mc|' . $val)); } if (!empty($field['db_field'])) { $uquery_val[] = $val; } } //updating user detail if (has_access('admin_access', TRUE) && isset($array['admin_manager'])) { //Checking Username if (empty($array['username'])) { e(lang('usr_uname_err')); } elseif ($array['dusername'] != $array['username'] && $this->username_exists($array['username'])) { e(lang('usr_uname_err2')); } elseif (!username_check($array['username'])) { e(lang('usr_uname_err3')); } else { $username = $array['username']; } //Checking Email if (empty($array['email'])) { e(lang('usr_email_err1')); } elseif (!is_valid_syntax('email', $array['email'])) { e(lang('usr_email_err2')); } elseif (email_exists($array['email']) && $array['email'] != $array['demail']) { e(lang('usr_email_err3')); } else { $email = $array['email']; } $uquery_field[] = 'username'; $uquery_val[] = $username; $uquery_field[] = 'email'; $uquery_val[] = $email; //Changning Password if (!empty($array['pass'])) { if ($array['pass'] != $array['cpass']) { e(lang("pass_mismatched")); } else { $pass = pass_code($array['pass']); } $uquery_field[] = 'password'; $uquery_val[] = $pass; } //Changing User Level $uquery_field[] = 'level'; $uquery_val[] = $array['level']; //Checking for user stats $uquery_field[] = 'profile_hits'; $uquery_val[] = $array['profile_hits']; $uquery_field[] = 'total_watched'; $uquery_val[] = $array['total_watched']; $uquery_field[] = 'total_videos'; $uquery_val[] = $array['total_videos']; $uquery_field[] = 'total_comments'; $uquery_val[] = $array['total_comments']; $uquery_field[] = 'subscribers'; $uquery_val[] = $array['subscribers']; $uquery_field[] = 'comments_count'; $uquery_val[] = $array['comments_count']; $query_field[] = 'rating'; $rating = $array['rating']; if ($rating < 1 || $rating > 10) { $rating = 1; } $query_val[] = $rating; $query_field[] = 'rated_by'; $query_val[] = $array['rated_by']; //Changing JOined Date if (isset($array['doj'])) { $uquery_field[] = 'doj'; $uquery_val[] = $array['doj']; } } //Changing Gender if ($array['sex']) { $uquery_field[] = 'sex'; $uquery_val[] = mysql_clean($array['sex']); } //Changing Country if ($array['country']) { $uquery_field[] = 'country'; $uquery_val[] = mysql_clean($array['country']); } //Changing Date of birth if (isset($array['dob'])) { $uquery_field[] = 'dob'; $uquery_val[] = $array['dob']; } //Changing category if (isset($array['category'])) { $uquery_field[] = 'category'; $uquery_val[] = $array['category']; } //Updating User Avatar if ($array['avatar_url']) { $uquery_field[] = 'avatar_url'; $uquery_val[] = $array['avatar_url']; } if ($array['remove_avatar_url'] == 'yes') { $uquery_field[] = 'avatar_url'; $uquery_val[] = ''; } //Deleting User Avatar if ($array['delete_avatar'] == 'yes') { $file = USER_THUMBS_DIR . '/' . $array['avatar_file_name']; if (file_exists($file) && $array['avatar_file_name'] != '') { unlink($file); } } //Deleting User Bg if ($array['delete_bg'] == 'yes') { $file = USER_BG_DIR . '/' . $array['bg_file_name']; if (file_exists($file) && $array['bg_file_name']) { unlink($file); } } if (isset($_FILES['avatar_file']['name'])) { $file = $Upload->upload_user_file('a', $_FILES['avatar_file'], $array['userid']); if ($file) { $uquery_field[] = 'avatar'; $uquery_val[] = $file; } } //Updating User Background if ($array['background_url']) { $uquery_field[] = 'background_url'; $uquery_val[] = $array['background_url']; } if ($array['background_color']) { $uquery_field[] = 'background_color'; $uquery_val[] = $array['background_color']; } if ($array['background_repeat']) { $uquery_field[] = 'background_repeat'; $uquery_val[] = $array['background_repeat']; } if (isset($_FILES['background_file']['name'])) { $file = $Upload->upload_user_file('b', $_FILES['background_file'], $array['userid']); if ($file) { $uquery_field[] = 'background'; $uquery_val[] = $file; } } //Adding Custom Field if (is_array($custom_signup_fields)) { foreach ($custom_signup_fields as $field) { $name = formObj::rmBrackets($field['name']); $val = $array[$name]; if ($field['use_func_val']) { $val = $field['validate_function']($val); } if (!empty($field['db_field'])) { $uquery_field[] = $field['db_field']; } if (is_array($val)) { $new_val = ''; foreach ($val as $v) { $new_val .= "#" . $v . "# "; } $val = $new_val; } if (!$field['clean_func'] || !function_exists($field['clean_func']) && !is_array($field['clean_func'])) { $val = mysql_clean($val); } else { $val = apply_func($field['clean_func'], sql_free('|no_mc|' . $val)); } if (!empty($field['db_field'])) { $uquery_val[] = $val; } } } if (!error() && is_array($uquery_field)) { $db->update(tbl($this->dbtbl['users']), $uquery_field, $uquery_val, " userid='" . mysql_clean($array['userid']) . "'"); e(lang("usr_upd_succ_msg"), 'm'); } //updating user profile if (!error()) { $log_array = array('success' => 'yes', 'details' => "updated profile"); //Login Upload insert_log('profile_update', $log_array); $db->update(tbl($this->dbtbl['user_profile']), $query_field, $query_val, " userid='" . mysql_clean($array['userid']) . "'"); e(lang("usr_pof_upd_msg"), 'm'); } }