diff options
Diffstat (limited to 'www-ssl/makeuser.php')
-rw-r--r-- | www-ssl/makeuser.php | 391 |
1 files changed, 212 insertions, 179 deletions
diff --git a/www-ssl/makeuser.php b/www-ssl/makeuser.php index 785de1e8..a67f4bd5 100644 --- a/www-ssl/makeuser.php +++ b/www-ssl/makeuser.php @@ -1,181 +1,214 @@ <?php - $title = "Anmeldung zum Chaos-Engel"; - $header = ""; - $success = "none"; - - include "../config/config.php"; - include "../includes/header.php"; - include "../config/config_db.php"; - include "../includes/crypt.php"; - - if(isset($_POST["send"])) { - $eNick = trim($_POST["Nick"]); - - if($_POST["Alter"] == "") - $_POST["Alter"] = 0; - - // user vorhanden? - $SQLans = "SELECT UID FROM `User` WHERE `Nick`='" . $_POST["Nick"] . "'"; - $Ergans = mysql_query($SQLans, $con); - - if(strlen($_POST["Nick"]) < 2) - $error = Get_Text("makeuser_error_nick1") . $_POST["Nick"] . Get_Text("makeuser_error_nick2"); - elseif(mysql_num_rows( $Ergans) > 0) - $error = Get_Text("makeuser_error_nick1") . $_POST["Nick"] . Get_Text("makeuser_error_nick3"); - elseif(strlen($_POST["email"]) <= 6 && strstr($_POST["email"], "@") == FALSE && strstr($_POST["email"], ".") == false) - $error = Get_Text("makeuser_error_mail"); - elseif(!is_numeric($_POST["Alter"])) - $error = Get_Text("makeuser_error_Alter"); - elseif($_POST["Passwort"] != $_POST["Passwort2"]) - $error = Get_Text("makeuser_error_password1"); - elseif(strlen($_POST["Passwort"]) < 6) - $error = Get_Text("makeuser_error_password2"); - else { - $_POST["Passwort"] = PassCrypt($_POST["Passwort"]); - unset($_POST["Passwort2"]); - - $SQL = "INSERT INTO `User` (". - "`Nick` , ". "`Name` , ". - "`Vorname`, ". "`Alter` , ". - "`Telefon`, ". "`DECT`, ". - "`Handy`, ". "`email`, ". - "`ICQ`, ". "`jabber`, ". - "`Size`, ". "`Passwort`, ". - "`Art` , ". "`kommentar`, ". - "`Hometown`,". "`CreateDate` ) ". - "VALUES ( ". - "'". $_POST["Nick"]. "', ". "'". $_POST["Name"]. "', ". - "'". $_POST["Vorname"]. "', ". "'". $_POST["Alter"]. "', ". - "'". $_POST["Telefon"]. "', ". "'". $_POST["DECT"]. "', ". - "'". $_POST["Handy"]. "', ". "'". $_POST["email"]. "', ". - "'". $_POST["ICQ"]. "', ". "'". $_POST["jabber"]. "', ". - "'". $_POST["Size"]. "', ". "'". $_POST["Passwort"]. "', ". - "'". $_POST["Art"]. "', ". "'". $_POST["kommentar"]. "', ". - "'". $_POST["Hometown"]. "',". "NOW());"; - $Erg = mysql_query($SQL, $con); - - if ($Erg != 1) { - echo Get_Text("makeuser_error_write1") . "<br />\n"; - $error = mysql_error($con); - } else { - echo "<p class=\"important\">" . Get_Text("makeuser_writeOK") . "\n"; - - $SQL2 = "SELECT `UID` FROM `User` WHERE `Nick`='" . $_POST["Nick"] . "';"; - $Erg2 = mysql_query($SQL2, $con); - $Data = mysql_fetch_array($Erg2); - - $SQL3 = "INSERT INTO `UserCVS` (`UID`) VALUES ('" . $Data["UID"] . "');"; - $Erg3 = mysql_query($SQL3, $con); - - if ($Erg3 != 1) { - echo "<h1>". Get_Text("makeuser_error_write2"). "<br />\n"; - $error = mysql_error($con); - } else { - echo Get_Text("makeuser_writeOK2") . "<br />\n"; - echo "<h1>" . Get_Text("makeuser_writeOK3") . "</h1>\n"; - } - - echo Get_Text("makeuser_writeOK4") . "</p><p></p>\n<br /><br />\n"; - $success = "any"; - - if (isset($SubscribeMailinglist)) { - if ($_POST["subscribe-mailinglist"] == "") { - $headers = "From: " . $_POST["email"] . "\r\n" . - "X-Mailer: PHP/" . phpversion(); - mail($SubscribeMailinglist, "subject", "message", $headers); - } - } - } - } - - if(isset($error)) - echo "<p class=\"warning\">\n" . $error . "\n</p>\n\n"; - } else { - // init vars - $_POST["Nick"] = ""; - $_POST["Name"] = ""; - $_POST["Vorname"] = ""; - $_POST["Alter"] = ""; - $_POST["Telefon"] = ""; - $_POST["DECT"] = ""; - $_POST["Handy"] = ""; - $_POST["email"] = ""; - $_POST["subscribe-mailinglist"] = ""; - $_POST["ICQ"] = ""; - $_POST["jabber"] = ""; - $_POST["Size"] = "L"; - $_POST["Art"] = ""; - $_POST["kommentar"] = ""; - $_POST["Hometown"] = ""; - } - - if($success == "none") { - echo "<h1>" . Get_Text("makeuser_text0") . "</h1>\n"; - echo "<h2>" . Get_Text("makeuser_text1") . "</h2>\n"; - echo "<form action=\"\" method=\"post\">\n"; - echo "<table>\n"; - echo "<tr><td>" . Get_Text("makeuser_Nickname") . "*</td><td><input type=\"text\" size=\"40\" name=\"Nick\" value=\"" . $_POST["Nick"] . "\" /></td></tr>\n"; - echo "<tr><td>" . Get_Text("makeuser_Nachname") . "</td><td><input type=\"text\" size=\"40\" name=\"Name\" value=\"" . $_POST["Name"] . "\" /></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Vorname") . "</td><td><input type=\"text\" size=\"40\" name=\"Vorname\" value=\"" . $_POST["Vorname"] . "\" /></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Alter") . "</td><td><input type=\"text\" size=\"40\" name=\"Alter\" value=\"". $_POST["Alter"]. "\"></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Telefon"). "</td><td><input type=\"text\" size=\"40\" name=\"Telefon\" value=\"". $_POST["Telefon"]. "\"></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_DECT"). "</td><td><input type=\"text\" size=\"40\" name=\"DECT\" value=\"". $_POST["DECT"]. "\"></td><td>\n"; - echo "<!--a href=\"https://21c3.ccc.de/wiki/index.php/POC\"><img src=\"./pic/external.png\" alt=\"external: \">DECT</a--></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Handy"). "</td><td><input type=\"text\" size=\"40\" name=\"Handy\" value=\"". $_POST["Handy"]. "\"></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_E-Mail"). "*</td><td><input type=\"text\" size=\"40\" name=\"email\" value=\"". $_POST["email"]. "\"></td></tr>\n"; - - if(isset($SubscribeMailinglist)) - echo "<tr><td>". Get_Text("makeuser_subscribe-mailinglist"). "</td><td><input type=\"checkbox\" name=\"subscribe-mailinglist\" value=\"". $_POST["subscribe-mailinglist"]. "\">($SubscribeMailinglist)</td></tr>\n"; - - echo "<tr><td>ICQ</td><td><input type=\"text\" size=\"40\" name=\"ICQ\" value=\"". $_POST["ICQ"]. "\"></td></tr>\n"; - echo "<tr><td>jabber</td><td><input type=\"text\" size=\"40\" name=\"jabber\" value=\"". $_POST["jabber"]. "\"></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_T-Shirt"). " Grösse*</td><td align=\"left\">\n"; - echo "<select name=\"Size\">\n"; - echo "<option value=\"S\""; if ($_POST["Size"]=="S") echo " selected"; echo ">S</option>\n"; - echo "<option value=\"M\""; if ($_POST["Size"]=="M") echo " selected"; echo ">M</option>\n"; - echo "<option value=\"L\""; if ($_POST["Size"]=="L") echo " selected"; echo ">L</option>\n"; - echo "<option value=\"XL\""; if ($_POST["Size"]=="XL") echo " selected"; echo ">XL</option>\n"; - echo "<option value=\"2XL\""; if ($_POST["Size"]=="2XL") echo " selected"; echo ">2XL</option>\n"; - echo "<option value=\"3XL\""; if ($_POST["Size"]=="3XL") echo " selected"; echo ">3XL</option>\n"; - echo "<option value=\"4XL\""; if ($_POST["Size"]=="4XL") echo " selected"; echo ">4XL</option>\n"; - echo "<option value=\"5XL\""; if ($_POST["Size"]=="5XL") echo " selected"; echo ">5XL</option>\n"; - echo "<option value=\"S-G\""; if ($_POST["Size"]=="S-G") echo " selected"; echo ">S Girl</option>\n"; - echo "<option value=\"M-G\""; if ($_POST["Size"]=="M-G") echo " selected"; echo ">M Girl</option>\n"; - echo "<option value=\"L-G\""; if ($_POST["Size"]=="L-G") echo " selected"; echo ">L Girl</option>\n"; - echo "<option value=\"XL-G\""; if ($_POST["Size"]=="XL-G") echo " selected"; echo ">XL Girl</option>\n"; - echo "</select>\n"; - echo "</td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Engelart"). "</td><td align=\"left\">\n"; - echo "<select name=\"Art\">\n"; - - $Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`"; - $Erg = mysql_query($Sql, $con); - - for($t = 0; $t < mysql_num_rows($Erg); $t++) { - $Name = mysql_result($Erg, $t, "Name"). Get_Text("inc_schicht_engel"); - echo "<option value=\"" . $Name . "\""; - - if($_POST["Art"]==$Name) - echo " selected"; - - echo ">$Name</option>\n"; - } - - echo "</select>\n"; - echo "</td>\n"; - echo "</tr>\n"; - echo "<tr>\n"; - echo "<td>". Get_Text("makeuser_text2"). "</td>\n"; - echo "<td><textarea rows=\"5\" cols=\"40\" name=\"kommentar\">". $_POST["kommentar"]. "</textarea></td>\n"; - echo "</tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Hometown"). "</td><td><input type=\"text\" size=\"40\" name=\"Hometown\" value=\"". $_POST["Hometown"]. "\"></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Passwort"). "*</td><td><input type=\"password\" size=\"40\" name=\"Passwort\"/></td></tr>\n"; - echo "<tr><td>". Get_Text("makeuser_Passwort2"). "*</td><td><input type=\"password\" size=\"40\" name=\"Passwort2\"/></td></tr>\n"; - echo "<tr><td> </td><td><input type=\"submit\" name=\"send\" value=\"". Get_Text("makeuser_Anmelden"). "\"/></td></tr>\n"; - echo "</table>\n"; - echo "</form>\n"; - Print_Text("makeuser_text3"); - } - - include "../includes/footer.php"; +require_once ('bootstrap.php'); + +$title = "Anmeldung zum Chaos-Engel"; +$header = ""; +$success = "none"; + +include "config/config.php"; +include "includes/header.php"; +include "config/config_db.php"; +include "includes/crypt.php"; + +if (isset ($_POST["send"])) { + $eNick = trim($_POST["Nick"]); + + if ($_POST["Alter"] == "") + $_POST["Alter"] = 0; + + // user vorhanden? + $SQLans = "SELECT UID FROM `User` WHERE `Nick`='" . $_POST["Nick"] . "'"; + $Ergans = mysql_query($SQLans, $con); + + if (strlen($_POST["Nick"]) < 2) + $error = Get_Text("makeuser_error_nick1") . $_POST["Nick"] . Get_Text("makeuser_error_nick2"); + elseif (mysql_num_rows($Ergans) > 0) $error = Get_Text("makeuser_error_nick1") . $_POST["Nick"] . Get_Text("makeuser_error_nick3"); + elseif (strlen($_POST["email"]) <= 6 && strstr($_POST["email"], "@") == FALSE && strstr($_POST["email"], ".") == false) $error = Get_Text("makeuser_error_mail"); + elseif (!is_numeric($_POST["Alter"])) $error = Get_Text("makeuser_error_Alter"); + elseif ($_POST["Passwort"] != $_POST["Passwort2"]) $error = Get_Text("makeuser_error_password1"); + elseif (strlen($_POST["Passwort"]) < 6) $error = Get_Text("makeuser_error_password2"); + else { + $_POST["Passwort"] = PassCrypt($_POST["Passwort"]); + unset ($_POST["Passwort2"]); + + $SQL = "INSERT INTO `User` (" . + "`Nick` , " . "`Name` , " . + "`Vorname`, " . "`Alter` , " . + "`Telefon`, " . "`DECT`, " . + "`Handy`, " . "`email`, " . + "`ICQ`, " . "`jabber`, " . + "`Size`, " . "`Passwort`, " . + "`Art` , " . "`kommentar`, " . + "`Hometown`," . "`CreateDate` ) " . + "VALUES ( " . + "'" . $_POST["Nick"] . "', " . "'" . $_POST["Name"] . "', " . + "'" . $_POST["Vorname"] . "', " . "'" . $_POST["Alter"] . "', " . + "'" . $_POST["Telefon"] . "', " . "'" . $_POST["DECT"] . "', " . + "'" . $_POST["Handy"] . "', " . "'" . $_POST["email"] . "', " . + "'" . $_POST["ICQ"] . "', " . "'" . $_POST["jabber"] . "', " . + "'" . $_POST["Size"] . "', " . "'" . $_POST["Passwort"] . "', " . + "'" . $_POST["Art"] . "', " . "'" . $_POST["kommentar"] . "', " . + "'" . $_POST["Hometown"] . "'," . "NOW());"; + $Erg = mysql_query($SQL, $con); + + if ($Erg != 1) { + echo Get_Text("makeuser_error_write1") . "<br />\n"; + $error = mysql_error($con); + } else { + echo "<p class=\"important\">" . Get_Text("makeuser_writeOK") . "\n"; + + $SQL2 = "SELECT `UID` FROM `User` WHERE `Nick`='" . $_POST["Nick"] . "';"; + $Erg2 = mysql_query($SQL2, $con); + $Data = mysql_fetch_array($Erg2); + + $SQL3 = "INSERT INTO `UserCVS` (`UID`) VALUES ('" . $Data["UID"] . "');"; + $Erg3 = mysql_query($SQL3, $con); + + if ($Erg3 != 1) { + echo "<h1>" . Get_Text("makeuser_error_write2") . "<br />\n"; + $error = mysql_error($con); + } else { + echo Get_Text("makeuser_writeOK2") . "<br />\n"; + echo "<h1>" . Get_Text("makeuser_writeOK3") . "</h1>\n"; + } + + echo Get_Text("makeuser_writeOK4") . "</p><p></p>\n<br /><br />\n"; + $success = "any"; + + if (isset ($SubscribeMailinglist)) { + if ($_POST["subscribe-mailinglist"] == "") { + $headers = "From: " . $_POST["email"] . "\r\n" . + "X-Mailer: PHP/" . phpversion(); + mail($SubscribeMailinglist, "subject", "message", $headers); + } + } + } + } + + if (isset ($error)) + echo "<p class=\"warning\">\n" . $error . "\n</p>\n\n"; +} else { + // init vars + $_POST["Nick"] = ""; + $_POST["Name"] = ""; + $_POST["Vorname"] = ""; + $_POST["Alter"] = ""; + $_POST["Telefon"] = ""; + $_POST["DECT"] = ""; + $_POST["Handy"] = ""; + $_POST["email"] = ""; + $_POST["subscribe-mailinglist"] = ""; + $_POST["ICQ"] = ""; + $_POST["jabber"] = ""; + $_POST["Size"] = "L"; + $_POST["Art"] = ""; + $_POST["kommentar"] = ""; + $_POST["Hometown"] = ""; +} + +if ($success == "none") { + echo "<h1>" . Get_Text("makeuser_text0") . "</h1>\n"; + echo "<h2>" . Get_Text("makeuser_text1") . "</h2>\n"; + echo "<form action=\"\" method=\"post\">\n"; + echo "<table>\n"; + echo "<tr><td>" . Get_Text("makeuser_Nickname") . "*</td><td><input type=\"text\" size=\"40\" name=\"Nick\" value=\"" . $_POST["Nick"] . "\" /></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Nachname") . "</td><td><input type=\"text\" size=\"40\" name=\"Name\" value=\"" . $_POST["Name"] . "\" /></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Vorname") . "</td><td><input type=\"text\" size=\"40\" name=\"Vorname\" value=\"" . $_POST["Vorname"] . "\" /></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Alter") . "</td><td><input type=\"text\" size=\"40\" name=\"Alter\" value=\"" . $_POST["Alter"] . "\"></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Telefon") . "</td><td><input type=\"text\" size=\"40\" name=\"Telefon\" value=\"" . $_POST["Telefon"] . "\"></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_DECT") . "</td><td><input type=\"text\" size=\"40\" name=\"DECT\" value=\"" . $_POST["DECT"] . "\"></td><td>\n"; + echo "<!--a href=\"https://21c3.ccc.de/wiki/index.php/POC\"><img src=\"./pic/external.png\" alt=\"external: \">DECT</a--></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Handy") . "</td><td><input type=\"text\" size=\"40\" name=\"Handy\" value=\"" . $_POST["Handy"] . "\"></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_E-Mail") . "*</td><td><input type=\"text\" size=\"40\" name=\"email\" value=\"" . $_POST["email"] . "\"></td></tr>\n"; + + if (isset ($SubscribeMailinglist)) + echo "<tr><td>" . Get_Text("makeuser_subscribe-mailinglist") . "</td><td><input type=\"checkbox\" name=\"subscribe-mailinglist\" value=\"" . $_POST["subscribe-mailinglist"] . "\">($SubscribeMailinglist)</td></tr>\n"; + + echo "<tr><td>ICQ</td><td><input type=\"text\" size=\"40\" name=\"ICQ\" value=\"" . $_POST["ICQ"] . "\"></td></tr>\n"; + echo "<tr><td>jabber</td><td><input type=\"text\" size=\"40\" name=\"jabber\" value=\"" . $_POST["jabber"] . "\"></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_T-Shirt") . " Grösse*</td><td align=\"left\">\n"; + echo "<select name=\"Size\">\n"; + echo "<option value=\"S\""; + if ($_POST["Size"] == "S") + echo " selected"; + echo ">S</option>\n"; + echo "<option value=\"M\""; + if ($_POST["Size"] == "M") + echo " selected"; + echo ">M</option>\n"; + echo "<option value=\"L\""; + if ($_POST["Size"] == "L") + echo " selected"; + echo ">L</option>\n"; + echo "<option value=\"XL\""; + if ($_POST["Size"] == "XL") + echo " selected"; + echo ">XL</option>\n"; + echo "<option value=\"2XL\""; + if ($_POST["Size"] == "2XL") + echo " selected"; + echo ">2XL</option>\n"; + echo "<option value=\"3XL\""; + if ($_POST["Size"] == "3XL") + echo " selected"; + echo ">3XL</option>\n"; + echo "<option value=\"4XL\""; + if ($_POST["Size"] == "4XL") + echo " selected"; + echo ">4XL</option>\n"; + echo "<option value=\"5XL\""; + if ($_POST["Size"] == "5XL") + echo " selected"; + echo ">5XL</option>\n"; + echo "<option value=\"S-G\""; + if ($_POST["Size"] == "S-G") + echo " selected"; + echo ">S Girl</option>\n"; + echo "<option value=\"M-G\""; + if ($_POST["Size"] == "M-G") + echo " selected"; + echo ">M Girl</option>\n"; + echo "<option value=\"L-G\""; + if ($_POST["Size"] == "L-G") + echo " selected"; + echo ">L Girl</option>\n"; + echo "<option value=\"XL-G\""; + if ($_POST["Size"] == "XL-G") + echo " selected"; + echo ">XL Girl</option>\n"; + echo "</select>\n"; + echo "</td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Engelart") . "</td><td align=\"left\">\n"; + echo "<select name=\"Art\">\n"; + + $Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`"; + $Erg = mysql_query($Sql, $con); + + for ($t = 0; $t < mysql_num_rows($Erg); $t++) { + $Name = mysql_result($Erg, $t, "Name") . Get_Text("inc_schicht_engel"); + echo "<option value=\"" . $Name . "\""; + + if ($_POST["Art"] == $Name) + echo " selected"; + + echo ">$Name</option>\n"; + } + + echo "</select>\n"; + echo "</td>\n"; + echo "</tr>\n"; + echo "<tr>\n"; + echo "<td>" . Get_Text("makeuser_text2") . "</td>\n"; + echo "<td><textarea rows=\"5\" cols=\"40\" name=\"kommentar\">" . $_POST["kommentar"] . "</textarea></td>\n"; + echo "</tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Hometown") . "</td><td><input type=\"text\" size=\"40\" name=\"Hometown\" value=\"" . $_POST["Hometown"] . "\"></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Passwort") . "*</td><td><input type=\"password\" size=\"40\" name=\"Passwort\"/></td></tr>\n"; + echo "<tr><td>" . Get_Text("makeuser_Passwort2") . "*</td><td><input type=\"password\" size=\"40\" name=\"Passwort2\"/></td></tr>\n"; + echo "<tr><td> </td><td><input type=\"submit\" name=\"send\" value=\"" . Get_Text("makeuser_Anmelden") . "\"/></td></tr>\n"; + echo "</table>\n"; + echo "</form>\n"; + Print_Text("makeuser_text3"); +} + +include "includes/footer.php"; ?> |