/** * Creates a new user */ public function createNewUser($username, $password, $email = "", $internalRegistration = false) { Tools::logm('Trying to create a new user...'); if (!empty($username) && !empty($password)) { $newUsername = filter_var($username, FILTER_SANITIZE_STRING); $email = filter_var($email, FILTER_SANITIZE_STRING); if (!$this->store->userExists($newUsername)) { if ($this->store->install($newUsername, Tools::encodeString($password . $newUsername), $email)) { if ($email != "") { // if email is filled if (SEND_CONFIRMATION_EMAIL && function_exists('mail')) { // if internal registration from config screen $body_internal = _('Hi,') . "\r\n\r\n" . sprintf(_('Someone just created a wallabag account for you on %1$s.'), Tools::getPocheUrl()) . "\r\n\r\n" . sprintf(_('Your login is %1$s.'), $newUsername) . "\r\n\r\n" . _('Note : The password has been chosen by the person who created your account. Get in touch with that person to know your password and change it as soon as possible') . "\r\n\r\n" . _('Have fun with it !') . "\r\n\r\n" . _('This is an automatically generated message, no one will answer if you respond to it.'); // if external (public) registration $body = sprintf(_('Hi, %1$s'), $newUsername) . "\r\n\r\n" . sprintf(_('You\'ve just created a wallabag account on %1$s.'), Tools::getPocheUrl()) . "\r\n\r\n" . _("Have fun with it !"); $body = $internalRegistration ? $body_internal : $body; $body = wordwrap($body, 70, "\r\n"); // cut lines with more than 70 caracters (MIME standard) if (mail($email, sprintf(_('Your new wallabag account on %1$s'), Tools::getPocheUrl()), $body, 'X-Mailer: PHP/' . phpversion() . "\r\n" . 'Content-type: text/plain; charset=UTF-8' . "\r\n" . "From: " . $newUsername . "@" . gethostname() . "\r\n")) { Tools::logm('The user ' . $newUsername . ' has been emailed'); $this->messages->add('i', sprintf(_('The new user %1$s has been sent an email at %2$s. You may have to check spam folder.'), $newUsername, $email)); Tools::redirect('?'); } else { Tools::logm('A problem has been encountered while sending an email'); $this->messages->add('e', _('A problem has been encountered while sending an email')); } } else { Tools::logm('The user has been created, but the server did not authorize sending emails'); $this->messages->add('i', _('The server did not authorize sending a confirmation email, but the user was created.')); } } else { Tools::logm('The user has been created, but no email was saved, so no confimation email was sent'); $this->messages->add('i', _('The user was created, but no email was sent because email was not filled in')); } Tools::logm('The new user ' . $newUsername . ' has been installed'); if (\Session::isLogged()) { $this->messages->add('s', sprintf(_('The new user %s has been installed. Do you want to <a href="?logout">logout ?</a>'), $newUsername)); } Tools::redirect(); } else { Tools::logm('error during adding new user'); Tools::redirect(); } } else { $this->messages->add('e', sprintf(_('Error : An user with the name %s already exists !'), $newUsername)); Tools::logm('An user with the name ' . $newUsername . ' already exists !'); Tools::redirect(); } } else { Tools::logm('Password or username were empty'); } }
<?php require_once 'database.inc.php'; require_once "mysql_connect_data.inc.php"; $db = new Database($host, $userName, $password, $database); $db->openConnection(); if (!$db->isConnected()) { header("Location: cannotConnect.html"); exit; } $userId = $_REQUEST['userId']; if (!$db->userExists($userId)) { $db->closeConnection(); header("Location: noSuchUser.html"); exit; } $db->closeConnection(); session_start(); $_SESSION['db'] = $db; $_SESSION['userId'] = $userId; header("Location: booking1.php");
$db = new Database($host, $userName, $password, $database); $user = str_replace(' ', '_', sanitize($_POST['tfb_name'])); $userPassword = sanitize($_POST['tfb_password']); if (empty($user) || empty($userPassword)) { $error = true; header("Location: ../index.php?login_error=empty"); } else { if (!validateText($user, 2, 20)) { $error = true; header("Location: ../index.php?login_error=user"); } else { if (!validateText($userPassword, 10, 50)) { $error = true; header("Location: ../index.php?login_error=pw"); } else { if (!$db->userExists($user)) { $error = true; header("Location: ../index.php?login_error=nonexistent"); } else { if (!$db->checkPassword($user, $userPassword)) { $error = true; header("Location: ../index.php?login_error=wrongpw"); } } } } } if (!$error) { $_SESSION['username'] = $user; $_SESSION['db'] = $db; $_SESSION['user'] = new User($user);
if ($validator->validateName($_POST['email']) == false) { echo 'Please enter email'; } if ($validator->validatePassword($_POST['password']) == false) { echo 'Please enter password'; } if ($validator->validateName($_POST['name']) && $validator->validateName($_POST['email']) && $validator->validatePassword($_POST['password'])) { $user1 = new User(); $user1->setName($_POST['name']); $user1->setEmail($_POST['email']); $user1->setPassword($_POST['password']); $user1->setMessage($_POST['message']); $database = new Database(); if ($database->Connect($servername, $dbname, $username, $password)) { $database->setTable('users'); if (!$database->userExists($_POST['name'])) { $database->AddData($user1->getName(), $user1->getEmail(), $user1->getPassword(), $user1->getMessage()); session_start(); $_SESSION['username'] = $_POST['name']; header("Location: admin.php"); } else { echo "User exists"; } $database->Close(); } } } /* sql to create table $sql = "CREATE TABLE Users(id INT(6) UNSIGNED AUTO_INCREMENT PRIMARY KEY, name VARCHAR(30) NOT NULL, email VARCHAR(50), password VARCHAR(255), message VARCHAR(255))"; $conn->exec($sql);*/ /*