$message = "There was a problem with your request."; $id = id_from_hash( $_REQUEST[ $hash_param_key ] ); $sql = "SELECT username,email,account_status from users where userid=$id"; $result = tmbo_query( $sql ); if( mysql_num_rows( $result ) == 1 ) { $row = mysql_fetch_assoc( $result ); $email = $row['email']; $username = $row['username']; $rehash = tmbohash( $id + 0, $email . $salt ); if( $rehash == $_REQUEST[ $hash_param_key ] ) { $sql = "UPDATE users SET timestamp = timestamp, account_status='normal' WHERE userid=$id AND account_status='awaiting activation' limit 1"; tmbo_query( $sql ); if( mysql_affected_rows() == 1 ) { $message = "Your account is now active. <a href=\"./\">Click here</a> to log in."; } } } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
function hashFromUserRow( $row ) { $id = $row[ 'userid' ]; $input = $row['username'] . $row['password'] . ":wakka"; $code = tmbohash( $id, $input ); return $code; }