Untitled

<?php
if ($_SESSION["valid_user"])
			{ echo "<font class=\"textshadow\"><b>You already have an account! Please log out first in order to create a new account. But why would you <img src=\"images/huh.gif\" width=\"15px\" height=\"15px\" border=\"0\" /> ?</b></font>"; } else {

$realmd = array(
'db_host'=> $host,
'db_username' => $user,
'db_password' => $pass,
'db_name'=> $mangosrealm,
);

function check_for_symbols($string){
$len=strlen($string);
$allowed_chars="abcdefghijklmnopqrstuvwxyzæøåABCDEFGHIJKLMNOPQRSTUVWXYZÆØÅ0123456789";
for($i=0;$i<$len;$i++)if(!strstr($allowed_chars,$string[$i]))return TRUE;
return FALSE;

}

function sha_password($username,$password){
$username = strtoupper($username);
$password = strtoupper($password);

return SHA1($username.':'.$password);
}

if ($_POST['registration']){

$realmd_bc_new_connect = mysql_connect($realmd[db_host],$realmd[db_username],$realmd[db_password]);
$selectdb = mysql_select_db($realmd[db_name],$realmd_bc_new_connect);
if (!$realmd_bc_new_connect || !$selectdb){
echo "Something went wrong while connecting to the database. Please make sure the config.php file is correct.";
die;
}

$username1 = $_POST['username'];
$password1 = sha_password($username1,$_POST['password']);
$email1 = $_POST['email'];
$client = $_POST['expansion'];

$qry_check_username = mysql_query("SELECT username FROM account WHERE username='$username'");

if (check_for_symbols($_POST[password]) == TRUE || check_for_symbols($username1) == TRUE || mysql_num_rows($qry_check_username) != 0){
echo "Something went wrong with creating an account for you. Either the Username is already taken or you are using unacceptable symbols. Please try again.";
}else{
mysql_query("INSERT INTO account (username,sha_pass_hash,email,expansion) VALUES
('$username1','$password1','$email1','$client')");
echo "<br><br><img src=\"images/green_check.gif\" /> Your account <b>".$username1."</b> has been successfully added to the database! Make sure you change your realmlist.wtf file to: <br /><br /> &nbsp; &nbsp; <b>".$realmlist."</b><br/><br/><br><br/><br/>Please contact one of the staff members if you're having difficulties loggin in after 5-10 minutes.";
}


}else{
?>

<table>
<form autocomplete="off" action="<?php echo $_SERVER['PHP_SELF'] ?>" method="POST">
<tr><td width="150px">Accountname:</td><td><input type="text" name="username"></td></tr>
<tr><td>&nbsp;</td><td>&nbsp;</td></tr>
<tr><td>Passwort:</td><td><input type="password" name="password"></td></tr>
<tr><td>&nbsp;</td><td>&nbsp;</td></tr>
<tr><td>E-mail Addresse:</td><td><input type="text" name="email" /></td></tr>
<tr><td>&nbsp;</td><td>&nbsp;</td></tr>
<tr><td valign="top">Spiel Version:</td>
     <td>
     <select name="expansion">
      <option value="2">Wotlk Client</option>
      <option value="1">TBC Client</option>
      <option value="0">Classic WoW</option>
     </select></td></tr>
<br>
<tr><td>&nbsp;</td><td><input type="submit" name="registration"></td></tr>
</form>
</table>

<?php
}
			}
?>

		  </div>

		</div>

            </p>


            </td></tr></table>
        </center>


        </div>

		</div>
        <div class="clearfix"></div>
	</div><!-- / container -->

</body>
</html>