$query = mysql_query("SELECT * FROM invites WHERE secret_hash = '$invid'") or sqlerr();
$invite = mysql_fetch_array($query);
$invitari = $invite['inviter_id'];
$sql = 'SELECT * FROM users WHERE id='.$invitari;
$res = mysql_query($sql);
if(mysql_num_rows($res) < '1')
bark("Ekki tókst að fletta upp á bjóðanda.");
$checkinv = mysql_fetch_array($res);
if($checkinv['enabled'] === 'no' || $checkinv['deleted'] == '1' || $checkinv['warned'] === 'yes')
bark('Bjóðandi má ekki vera óvirkur, eyddur eða hafa viðvörun.');
if($invite['email'] != $email)
bark('Þessi boðslykill er eingöngu nothæfur til að búa til aðgang fyrir netfangið '.$invite['email']);
if(mysql_num_rows($query) < 1)
bark("Þetta er rangur boðslykill");
mysql_query("UPDATE invites SET used=1 WHERE secret_hash = '$invid' AND email='$email'") or sqlerr();
hit_count();
$md5secret = md5(mksecret());
$secret = mksecret();
$wantpasshash = md5($secret . $wantpassword . $secret);
$editsecret = mksecret();
$ret = mysql_query("INSERT INTO users (username, passhash, secret, editsecret, email, enabled, md5secret, invitari, status, added) VALUES (" .
implode(",", array_map("sqlesc", array($wantusername, $wantpasshash, $secret, $editsecret, $email, 'yes', $md5secret, $invitari, 'pending'))) .
",'" . get_date_time() . "')");
$id = mysql_insert_id();
if (!$ret) {
if (mysql_errno() == 1062) {
bark("Notandanafn er nú þegar til!");
}
bark("borked");
<?php include 'count.php'; echo hit_count();
