echo json_encode($send);
die;
}
//email validation
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
$send = array("status" => "103");
echo json_encode($send);
die;
}
if (!preg_match($mob, $mobile)) {
$send = array("status" => "105");
echo json_encode($send);
die;
}
//check if username already exists
$check = username_check($con, $username);
if ($check == 1) {
//insert if username does not exist
insert_entries($con, $username, $email, $password, $mobile, $reg_no);
} else {
$send = array("status" => "101");
echo json_encode($send);
die;
}
function username_check($con, $username)
{
$sql = "select * from member_details where Username='******'";
$result = mysqli_query($con, $sql);
$count = mysqli_num_rows($result);
if ($count == 0) {
return 1;
/**
* Adds user to the database
*
* Registration function, this controls the sign up functionality.
* @global array
* @global resource
* @param string $username username of user being added
* @param string $password password of user being added
* @param string $password_again password again to be checked against first $password
* @param string $email email incase email registration is turned on
* @param string $age mm/dd/yyyy
* @return string|boolean
*/
function add_user($username, $password, $password_again, $email, $age = false)
{
global $config, $database;
// 904 - Registration complete, needs to validate email!
// Check Username
if (!alpha($username, 'alpha-underscore')) {
return lang_parse('error_invalid_chars', array(lang('username')));
}
// Username Taken
if (username_check($username)) {
return lang('error_username_taken');
}
// Check Username Length
$length = length($username, $config['min_name_length'], $config['max_name_length']);
if ($length) {
if ($length == "TOO_LONG") {
return lang('error_username_too_long');
} else {
return lang('error_username_too_short');
}
}
// Check Password Length
$length = length($password, $config['min_name_length'], $config['max_name_length']);
if ($length) {
if ($length == "TOO_LONG") {
return lang('error_password_too_long');
} else {
return lang('error_password_too_short');
}
}
// Setup Passwords
if ($password == $password_again) {
$raw_pass = $password;
$password = md5($password);
} else {
return lang('error_password_match');
}
// Check email
if (!is_email($email)) {
return lang_parse('error_invalid_given', array(lang('email')));
}
// Banned?
$query = "SELECT * FROM `users` WHERE `email` = '{$email}' AND `banned` = '1' LIMIT 1";
$result = $database->query($query);
if ($database->num($result) > 0) {
return lang('error_banned_email');
}
// Exist?
$query = "SELECT * FROM `users` WHERE `email` = '{$email}' LIMIT 1";
$result = $database->query($query);
// Email exists
if ($database->num($result) > 0) {
return lang('error_email_used');
}
// Do we have to validate age?
if ($config['age_validation']) {
if ($age) {
// Start grabbing age data~
$age_data = explode('/', $age);
if (alpha($age_data[2], 'numeric')) {
if (strlen($age_data[2]) < 4) {
return lang('error_year_invalid');
}
$old_enough = age_limit($age_data[2], $config['age_validation']);
if (!$old_enough) {
return lang_parse('error_year_young', array($config['age_validation']));
}
} else {
return lang_parse('error_given_not_numeric', array(lang('year_c')));
}
} else {
return lang('error_year_invalid');
}
}
load_hook('add_user_check');
// Finally Add user
if ($config['email_validation']) {
// The Key for Validation
$key = md5($username . $email . substr(microtime(), 1, 3));
// The query
$query = "INSERT INTO `users` (`username`,`password`,`email`,`join_date`,`age`,`active`,`key`) VALUES ('{$username}', '{$password}', '{$email}', '" . time() . "','{$age}','0','{$key}')";
} else {
// The query
$query = "INSERT INTO `users` (`username`,`password`,`email`,`join_date`,`age`,`active`) VALUES ('{$username}', '{$password}', '{$email}', '" . time() . "','{$age}','1')";
}
// Return Data
if ($result = $database->query($query)) {
// Auto login
if (!$config['email_validation']) {
// log them in
login($username, false, $raw_pass);
// Return True
return true;
} else {
// Subject / Message replacing
$subject = str_replace('{site_name}', $config['site_name'], $config['email_subject']);
$subject = str_replace('{username}', $username, $subject);
$subject = str_replace('{email}', $email, $subject);
// The message
$message = str_replace('{site_name}', $config['site_name'], $config['email_message']);
$message = str_replace('{username}', $username, $message);
$message = str_replace('{email}', $email, $message);
$message = str_replace('{link}', $config['url_path'] . "/register.php?e={$email}&k={$key}", $message);
// Mail the results
riot_mail($email, $subject, nl2nl($message));
// Return the results
return 904;
}
} else {
return false;
}
}
/**
* Function used to update use details
*/
function update_user($array)
{
global $LANG, $db, $signup, $Upload;
if ($array == NULL) {
$array = $_POST;
}
if (is_array($_FILES)) {
$array = array_merge($array, $_FILES);
}
$userfields = $this->load_profile_fields($array);
//$signup_fields = $this->load_signup_fields($array);
$custom_signup_fields = $this->load_custom_signup_fields($array);
//Adding Custom Form Fields
if (count($this->custom_profile_fields) > 0) {
$userfields = array_merge($userfields, $this->custom_profile_fields);
}
//Adding custom fields from group
if (count($this->custom_profile_fields_groups) > 0) {
$custom_fields_from_group_fields = array();
$custom_fields_from_group = $this->custom_profile_fields_groups;
foreach ($custom_fields_from_group as $cffg) {
$custom_fields_from_group_fields = array_merge($custom_fields_from_group_fields, $cffg['fields']);
}
$userfields = array_merge($userfields, $custom_fields_from_group_fields);
}
validate_cb_form($custom_signup_fields, $array);
validate_cb_form($userfields, $array);
foreach ($userfields as $field) {
$name = formObj::rmBrackets($field['name']);
$val = $array[$name];
if ($field['use_func_val']) {
$val = $field['validate_function']($val);
}
//Overrides use_func_val
if ($field['value_function'] && function_exists($field['value_function'])) {
$val = $field['value_function']($val);
}
if (!empty($field['db_field'])) {
$query_field[] = $field['db_field'];
}
if (is_array($val)) {
$new_val = '';
foreach ($val as $v) {
$new_val .= "#" . $v . "# ";
}
$val = $new_val;
}
if (!$field['clean_func'] || !function_exists($field['clean_func']) && !is_array($field['clean_func'])) {
$val = mysql_clean($val);
} else {
$val = apply_func($field['clean_func'], sql_free('|no_mc|' . $val));
}
if (!empty($field['db_field'])) {
$query_val[] = $val;
}
}
//Category
if ($cat_field) {
$field = $cat_field;
$name = formObj::rmBrackets($field['name']);
$val = $array[$name];
if ($field['use_func_val']) {
$val = $field['validate_function']($val);
}
if (!empty($field['db_field'])) {
$uquery_field[] = $field['db_field'];
}
if (is_array($val)) {
$new_val = '';
foreach ($val as $v) {
$new_val .= "#" . $v . "# ";
}
$val = $new_val;
}
if (!$field['clean_func'] || !function_exists($field['clean_func']) && !is_array($field['clean_func'])) {
$val = mysql_clean($val);
} else {
$val = apply_func($field['clean_func'], sql_free('|no_mc|' . $val));
}
if (!empty($field['db_field'])) {
$uquery_val[] = $val;
}
}
//updating user detail
if (has_access('admin_access', TRUE) && isset($array['admin_manager'])) {
//Checking Username
if (empty($array['username'])) {
e(lang('usr_uname_err'));
} elseif ($array['dusername'] != $array['username'] && $this->username_exists($array['username'])) {
e(lang('usr_uname_err2'));
} elseif (!username_check($array['username'])) {
e(lang('usr_uname_err3'));
} else {
$username = $array['username'];
}
//Checking Email
if (empty($array['email'])) {
e(lang('usr_email_err1'));
} elseif (!is_valid_syntax('email', $array['email'])) {
e(lang('usr_email_err2'));
} elseif (email_exists($array['email']) && $array['email'] != $array['demail']) {
e(lang('usr_email_err3'));
} else {
$email = $array['email'];
}
$uquery_field[] = 'username';
$uquery_val[] = $username;
$uquery_field[] = 'email';
$uquery_val[] = $email;
//Changning Password
if (!empty($array['pass'])) {
if ($array['pass'] != $array['cpass']) {
e(lang("pass_mismatched"));
} else {
$pass = pass_code($array['pass']);
}
$uquery_field[] = 'password';
$uquery_val[] = $pass;
}
//Changing User Level
$uquery_field[] = 'level';
$uquery_val[] = $array['level'];
//Checking for user stats
$uquery_field[] = 'profile_hits';
$uquery_val[] = $array['profile_hits'];
$uquery_field[] = 'total_watched';
$uquery_val[] = $array['total_watched'];
$uquery_field[] = 'total_videos';
$uquery_val[] = $array['total_videos'];
$uquery_field[] = 'total_comments';
$uquery_val[] = $array['total_comments'];
$uquery_field[] = 'subscribers';
$uquery_val[] = $array['subscribers'];
$uquery_field[] = 'comments_count';
$uquery_val[] = $array['comments_count'];
$query_field[] = 'rating';
$rating = $array['rating'];
if ($rating < 1 || $rating > 10) {
$rating = 1;
}
$query_val[] = $rating;
$query_field[] = 'rated_by';
$query_val[] = $array['rated_by'];
//Changing JOined Date
if (isset($array['doj'])) {
$uquery_field[] = 'doj';
$uquery_val[] = $array['doj'];
}
}
//Changing Gender
if ($array['sex']) {
$uquery_field[] = 'sex';
$uquery_val[] = mysql_clean($array['sex']);
}
//Changing Country
if ($array['country']) {
$uquery_field[] = 'country';
$uquery_val[] = mysql_clean($array['country']);
}
//Changing Date of birth
if (isset($array['dob'])) {
$uquery_field[] = 'dob';
$uquery_val[] = $array['dob'];
}
//Changing category
if (isset($array['category'])) {
$uquery_field[] = 'category';
$uquery_val[] = $array['category'];
}
//Updating User Avatar
if ($array['avatar_url']) {
$uquery_field[] = 'avatar_url';
$uquery_val[] = $array['avatar_url'];
}
if ($array['remove_avatar_url'] == 'yes') {
$uquery_field[] = 'avatar_url';
$uquery_val[] = '';
}
//Deleting User Avatar
if ($array['delete_avatar'] == 'yes') {
$file = USER_THUMBS_DIR . '/' . $array['avatar_file_name'];
if (file_exists($file) && $array['avatar_file_name'] != '') {
unlink($file);
}
}
//Deleting User Bg
if ($array['delete_bg'] == 'yes') {
$file = USER_BG_DIR . '/' . $array['bg_file_name'];
if (file_exists($file) && $array['bg_file_name']) {
unlink($file);
}
}
if (isset($_FILES['avatar_file']['name'])) {
$file = $Upload->upload_user_file('a', $_FILES['avatar_file'], $array['userid']);
if ($file) {
$uquery_field[] = 'avatar';
$uquery_val[] = $file;
}
}
//Updating User Background
if ($array['background_url']) {
$uquery_field[] = 'background_url';
$uquery_val[] = $array['background_url'];
}
if ($array['background_color']) {
$uquery_field[] = 'background_color';
$uquery_val[] = $array['background_color'];
}
if ($array['background_repeat']) {
$uquery_field[] = 'background_repeat';
$uquery_val[] = $array['background_repeat'];
}
if (isset($_FILES['background_file']['name'])) {
$file = $Upload->upload_user_file('b', $_FILES['background_file'], $array['userid']);
if ($file) {
$uquery_field[] = 'background';
$uquery_val[] = $file;
}
}
//Adding Custom Field
if (is_array($custom_signup_fields)) {
foreach ($custom_signup_fields as $field) {
$name = formObj::rmBrackets($field['name']);
$val = $array[$name];
if ($field['use_func_val']) {
$val = $field['validate_function']($val);
}
if (!empty($field['db_field'])) {
$uquery_field[] = $field['db_field'];
}
if (is_array($val)) {
$new_val = '';
foreach ($val as $v) {
$new_val .= "#" . $v . "# ";
}
$val = $new_val;
}
if (!$field['clean_func'] || !function_exists($field['clean_func']) && !is_array($field['clean_func'])) {
$val = mysql_clean($val);
} else {
$val = apply_func($field['clean_func'], sql_free('|no_mc|' . $val));
}
if (!empty($field['db_field'])) {
$uquery_val[] = $val;
}
}
}
if (!error() && is_array($uquery_field)) {
$db->update(tbl($this->dbtbl['users']), $uquery_field, $uquery_val, " userid='" . mysql_clean($array['userid']) . "'");
e(lang("usr_upd_succ_msg"), 'm');
}
//updating user profile
if (!error()) {
$log_array = array('success' => 'yes', 'details' => "updated profile");
//Login Upload
insert_log('profile_update', $log_array);
$db->update(tbl($this->dbtbl['user_profile']), $query_field, $query_val, " userid='" . mysql_clean($array['userid']) . "'");
e(lang("usr_pof_upd_msg"), 'm');
}
}
