0){ $referrow = mysql_fetch_assoc($tempsql); $refer_name = $referrow['name']; $refer_figure = $referrow['figure']; $referid = $referrow['id']; } } if(isset($_POST['bean_avatarName'])){ $name = FilterText($_POST['bean_avatarName']); $password = FilterText($_POST['password']); $retypedpassword = FilterText($_POST['retypedPassword']); $codesecret = FilterText($_POST['codesecret']); $day = FilterText($_POST['bean_day']); $month = FilterText($_POST['bean_month']); $year = FilterText($_POST['bean_year']); $email = FilterText($_POST['bean_email']); $retypedemail = FilterText($_POST['bean_retypedEmail']); $accept_tos = $_POST['bean_termsOfServiceSelection']; $figure = FilterText($_POST['bean_figure']); $gender = FilterText($_POST['bean_gender']); $referral = FilterText($_GET['referral']); $_SESSION['bean_avatarName'] = $_POST['bean_avatarName']; $_SESSION['password'] = $_POST['password']; $_SESSION['retypedPassword'] = $_POST['retypedPassword']; $_SESSION['codesecret'] = $_POST['codesecret']; $_SESSION['bean_day'] = $_POST['bean_day']; $_SESSION['bean_month'] = $_POST['bean_month']; $_SESSION['bean_year'] = $_POST['bean_year']; $_SESSION['bean_email'] = $_POST['bean_email']; $_SESSION['bean_retypedEmail'] = $_POST['bean_retypedEmail']; $_SESSION['bean_termsOfServiceSelection'] = $_POST['bean_termsOfServiceSelection']; $_SESSION['bean_figure'] = $_POST['bean_figure']; $_SESSION['bean_gender'] = $_POST['bean_gender']; $_SESSION['referral'] = $_GET['referral']; }elseif(isset($_SESSION['bean_avatarName'])){ $name = FilterText($_SESSION['bean_avatarName']); $password = FilterText($_SESSION['password']); $retypedpassword = FilterText($_SESSION['retypedPassword']); $codesecret = FilterText($_SESSION['codesecret']); $day = FilterText($_SESSION['bean_day']); $month = FilterText($_SESSION['bean_month']); $year = FilterText($_SESSION['bean_year']); $email = FilterText($_SESSION['bean_email']); $retypedemail = FilterText($_SESSION['bean_retypedEmail']); $accept_tos = $_SESSION['bean_termsOfServiceSelection']; $figure = FilterText($_SESSION['bean_figure']); $gender = FilterText($_SESSION['bean_gender']); $referral = FilterText($_SESSION['referral']); } if(isset($_POST['bean_avatarName']) || isset($_SESSION['bean_avatarName'])){ // Validando el nombre y e-mail del usuario. $filter = preg_replace("/[^a-zd-=?!@:.]/i", "", $name); $email_check = preg_match("/^[a-z0-9_.-]+@([a-z0-9]+([-]+[a-z0-9]+)*.)+[a-z]{2,7}$/i", $email); $tmp = mysql_query("SELECT * FROM users WHERE name = '".$name."' LIMIT 1") or die(mysql_error()); $tmp = mysql_num_rows($tmp); // If this variable stays false, we're safe and can add the user. If not, it means that // we've encountered errors and we can not proceed, so instead show the errors and do not // add the user to the database. $failure = false; // Name validation if($tmp > 0){ $error['name'] = "El Nombre introducido ya tiene dueño/a."; $failure = true; } elseif($filter !== $name){ $error['name'] = "Éste ".$shortname." Nombre no es adecuado. Inténtalo con otro"; $failure = true; } elseif(strlen($name) > 24){ $error['name'] = "Tu ".$shortname." Nombre es demasiado largo"; $failure = true; } elseif(strlen($name) < 1){ $error['name'] = "Tu nombre puede contener minúsculas y mayúsculas, números y caracteres como -=?!@:."; $failure = true; } // Validacion de Nombres MOD- $first = substr($name, 0, 4); if (strnatcasecmp($first,"MOD-") == false) { $error['name'] = "Éste ".$shortname." Nombre no es adecuado. Inténtalo con otro"; $failure = true; } // Password validation if($password !== $retypedpassword){ $error['password'] = "Tus claves no coinciden"; $failure = true; } elseif(strlen($password) < 6){ $error['password'] = "La clave es demasiado corta"; $failure = true; } // E-Mail validation if(strlen($email) < 6){ $error['mail'] = "Por favor, teclea tu dirección de email. Necesitarás activar tu cuenta usando este email, así que teclea tu dirección real"; $failure = true; } elseif($email_check !== 1){ $error['mail'] = "Por favor, teclea un email válido"; $failure = true; } elseif($email !== $retypedemail){ $error['mail'] = "La clave no es la misma. Vuelve a teclearla"; $failure = true; } // Date of birth validation if($day < 1 || $day > 31 || $month > 12 || $month < 1 || $year < 1920 || $year > 2009){ $error['dob'] = "Por favor, teclea tu fecha de cumpleaños - ten en cuenta que la necesitarás para que te podamos recordar tu clave, por ejemplo"; $failure = true; } // captcha check if( $_SESSION['register-captcha-bubble'] == $_POST['bean_captchaResponse'] && !empty($_SESSION['register-captcha-bubble'] ) ) { unset($_SESSION['register-captcha-bubble']); } else { $error['captcha'] = "Código inválido. Por favor, inténtalo de nuevo"; $failure = true; } // Terms of Service validation if($accept_tos !== "true"){ $error['tos'] = "Por favor, acepta los Términos y Condiciones"; $failure = true; } if(!empty($figure)){ } else { $error['password'] = "Ha sucedido un error desconocido. Por favor verifica que el editor de figura se haya cargado correctamente."; $failure = true; } // Check gender if($gender !== "M" && $gender !== "F"){ $error['figure'] = "Esta seleccion de ropa no esta permitida. Por favor selecciona otra."; $failure = true; } else { include('./includes/mutant.php'); if(empty($figure)){ $error['figure'] = "Esta seleccion de ropa no esta permitida. Por favor selecciona otra."; $failure = true; }elseif(!checkmutant($figure, $gender)){ $error['figure'] = "Esta seleccion de ropa no esta permitida. Por favor selecciona otra."; $failure = true; } } // Finally, if everything's OK we add the user to the database, log him in, etc if($failure == false){ $scredits = FetchCMSSetting('start_credits'); $spixels = FetchCMSSetting('start_pixels'); $dob = $day . "-" . $month . "-" . $year; $password = HoloHash($password, $name); mysql_query("INSERT INTO users (name,password,codesecret,email,birth,figure,sex,rank,hbirth,ipaddress_last,postcount,tickets,credits,pixels,lastvisit,rea) VALUES ('".$name."','".$password."','".$codesecret."','".$email."','".$dob."','".$figure."','".$gender."','1','".$date_normal."','".$remote_ip."','0','100','".$scredits."','".$spixels."','".$date_full."','enabled')") or die(mysql_error()); $check = mysql_query("SELECT id FROM users WHERE name = '".$name."' ORDER BY id ASC LIMIT 1") or die(mysql_error()); $row = mysql_fetch_assoc($check); $userid = $row['id']; if($hc_days !== '0'){ giveHC($userid, $hc_days); } if($scredits > 0){ mysql_query("INSERT INTO cms_transactions (userid,date,amount,descr) VALUES ('".$userid."','".$date_full."','".$scredits."','¡Bienvenido a " . $sitename . "!')") or die(mysql_error()); } if($email_verify == true){ $hash = ""; $length = 8; $possible = "0123456789qwertyuiopasdfghjkzxcvbnm"; $i = 0; while ($i < $length) { $char = substr($possible, mt_rand(0, strlen($possible)-1), 1); if (!strstr($hash, $char)) { $hash .= $char; $i++; } } $hash = sha1($hash); $num = $key; mysql_query("INSERT INTO cms_verify (id,email,key_hash) VALUES ('".$userid."','".$email."','".$hash."')"); if($email_verify_reward != "0"){ $reward_text = "Verificando tu e-mail ganas ".$email_verify_reward." Créditos para comprar más cosas en el Hotel ¿Que esperas?."; }else{ $reward_text = ""; } $subject = "¡Bienvenido a ".$sitename."!"; $from = "mailings@".strtolower($shortname).".com"; $fromname = "".$shortname.""; $headers = ''; $headers = 'Return-Path: <'.$from.'>' . "rn"; $headers = 'From: '.$fromname.' <'.$from.'>' . "rn"; $headers .= 'MIME-Version: 1.0' . "rn"; $headers .= 'Content-Type: multipart/related; ' . "rn"; $headers .= ' boundary="----=_Part_116200_21286957.1233466802029"' . "rn"; $to = $email; $message = '------=_Part_116200_21286957.1233466802029 Content-Type: multipart/alternative; boundary="----=_Part_116201_12539834.1233466802029" ------=_Part_116201_12539834.1233466802029 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit ¡Bienvenido a '.$shortname.', '.$name.'! '.$reward_text.' ¡Activa tu e-mail ahora! Solamente dirigite a este link: '.$path.'email?key='.$hash.' Aquí estan tus detalles en el Hotel: '.$shortname.' Nombre: '.$name.' Palabra secreta: '.$codesecret.' Fecha de nacimiento: '.$dob.' ¡Guarda esta informacion! Te puede ser muy util despues. ¡Nos vemos en '.$shortname.'! Equipo administrativo de'.$shortname.'. '.$path.' Si no te has registrado en '.$sitename.', y crees que esto es un gran error, por favor dirigite a este link para remover tus datos: '.$path.'email?remove='.$hash.' Respuestas a este e-mail no seran procesadas. Si necesitas más ayuda utiliza el Ayudante del '.$shortname.' mediante este link: '.$path.'iot/go ------=_Part_116201_12539834.1233466802029 Content-Type: text/html;charset=ISO-8859-1 Content-Transfer-Encoding: 7bit '; @mail($to, $subject, $message, $headers); } //Referral if(!empty($referral)){ $tempsql = mysql_query("SELECT * FROM users WHERE id = '".$referral."' LIMIT 1"); if(mysql_num_rows($tempsql) > 0){ mysql_query("UPDATE users SET credits = credits + ".$reward." WHERE id = '".$referid."'"); mysql_query("UPDATE users SET pixels = pixels + ".$rewardp." WHERE id = '".$referid."'"); mysql_query("INSERT INTO cms_transactions (userid,date,amount,descr) VALUES ('".$referid."','".$date_full."','".$reward."','Invitar a un amigo.')") or die(mysql_error()); mysql_query("INSERT INTO messenger_friendships (userid,friendid) VALUES ('".$userid."','".$referid."')"); } $_SESSION['page'] = "".$path."register/welcome?referral=".$referral; }else{ $_SESSION['page'] = "".$path."register/welcome"; } $_SESSION['username'] = $name; $_SESSION['password'] = $password; header("Location:".$path."security_check"); exit; } } include('templates/register_subheader.php'); ?>