Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include 'functions.php';
- foreach ($_GET as $key=>$getvar){ $_GET[$key] = mssql_escape($getvar); }
- foreach ($_POST as $key=>$postvar){ $_POST[$key] = mssql_escape($postvar); }
- #############################
- ##Copyright (c) TheJacob#####
- ##All Rights Reserved########
- ##thejacobpollack@gmail.com##
- #############################
- #############################
- #############################
- ##Configuration##
- $mssql_server = "BON\SQLEXPRESS"; //MSSQL server name or IP
- $mssql_username = "sa"; //MSSQL username
- $mssql_password = "sa01"; //MSSQL password
- $mssql_account_db = "ACCOUNT_DBF"; //MSSQL account database name
- $mssql_character_01_db = "CHARACTER_01_DBF"; //MSSQL character database name
- $mssql_account_table = "account_tbl"; //MSSQL account table name
- $mssql_username_column = "account"; //MSSQL username column in account table
- $mssql_password_column = "password"; //MSSQL password column in account table
- $hash = "..........."; //Hash code
- $random_text_text = "BreathFlyff"; //Random text they must enter to register
- #############################
- #############################
- ##MSSQL Connect Function##
- function mssql_connect_ini($mssql_server,$mssql_username,$mssql_password) {
- $mssql_connect = mssql_connect($mssql_server, $mssql_username, $mssql_password) or die ("<strong>Cannot connect to the MSSQL server.</strong>");
- if ((strlen($mssql_server) == 0) || (strlen($mssql_username) == 0) || (strlen($mssql_password) == 0)) {
- echo "<strong>The connection configuration settings are invalid. Please make sure you've entered them in correctly.</strong>";
- }
- }
- ##MSSQL Account Database Select Function##
- function mssql_account_ini($mssql_account_db) {
- $mssql_select_db = mssql_select_db($mssql_account_db) or die ("<strong>Cannot select the Account database.</strong>");
- if (strlen($mssql_account_db) == 0) {
- echo "<strong>The account database configuration setting is invalid. Please make sure you've entered it correctly.</strong>";
- }
- }
- #############################
- #############################
- ##MSSQL Core Functionality##
- mssql_connect_ini($mssql_server,$mssql_username,$mssql_password);
- mssql_account_ini($mssql_account_db);
- #############################
- #############################
- $pusername = @$_POST['username']; //Post wsername
- $ppassword = @$_POST['password']; //Post password
- $prpassword = @$_POST['rpassword']; //Post re-enter password
- $random_text = @$_POST['random_text']; //Random text
- if (isset($_POST['submit']) == true) {
- $username = preg_replace("/[^a-zA-Z0-9\-\_\!\$\#\@\^\&\*\(\)\^\+\ \.\?]/", "", $pusername);
- $password = preg_replace("/[^a-zA-Z0-9\-\_\!\$\#\@\^\&\*\(\)\^\+\ \.\?]/", "", $ppassword);
- if ((isset($_POST['submit']) == true) and (strlen($pusername) < 3) || (strlen($pusername) > 15)) {
- echo "Your username must be between 3 and 15 characters in length.";
- }
- else if ((isset($_POST['submit']) == true) and ((strlen($ppassword) < 3) || (strlen($ppassword) > 15) || (strlen($prpassword) < 3) || (strlen($prpassword) > 15))) {
- echo "The password must be between 3 and 15 characters in length.";
- }
- else if ((isset($_POST['submit']) == true) and ($ppassword != $prpassword)) {
- echo "The passwords must be the same.";
- }
- else if ((isset($_POST['submit']) == true) and (($pusername == $ppassword) || ($pusername == $prpassword))) {
- echo "The username and password cannot be the same.";
- }
- else if ((isset($_POST['submit']) == true) and ($random_text != $random_text_text)) {
- echo "The random text must be filled in correctly. Please take another look at the random text.";
- }
- else if (mssql_num_rows(mssql_query("SELECT * FROM $mssql_account_table WHERE $mssql_username_column = '$username'")) == '0') {
- $stmt = mssql_init('createaccount');
- mssql_bind($stmt, '@account', $username, SQLVARCHAR, false, false, 15);
- mssql_bind($stmt, '@password', md5($hash . $password), SQLVARCHAR, false, false, 36);
- mssql_execute($stmt) or die ("<strong>Error occurred while executing the statement.</strong>");
- mssql_free_statement($stmt);
- echo "You've been successfully registered as <strong>" . $username . "</strong>!";
- } else {
- echo "The username already exists.";
- }
- }
- ?>
- <br>
- <center>
- <form method ="post" action="#">
- <table>
- <tr>
- <td><font color="RED" face="Verdana" style="font-size: 10pt;">Username</td>
- </tr>
- <tr>
- <td><input name="username" type="username"></td>
- </tr>
- <tr>
- <td><font color="RED" face="Verdana" style="font-size: 10pt;">Password</td>
- </tr>
- <tr>
- <td><input name="password" type="password"></td>
- </tr>
- <tr>
- <td><font color="RED" face="Verdana" style="font-size: 10pt;">Re-enter Password</td>
- </tr>
- <tr>
- <td><font color="RED" face="Verdana" style="font-size: 10pt;"><input name="rpassword" type="password"></td>
- </tr>
- <tr>
- <td><font color="RED" face="Verdana" style="font-size: 12pt;">Please enter "<?php echo $random_text_text ?>" without the brackets below</td>
- </tr>
- <tr>
- <td><input name="random_text" type="text"></td>
- </tr>
- <tr>
- <td><input name="submit" type="submit" value="Register"></td>
- </tr>
- </table>
- </form>
- </center>
- <!-- End Regiser -->
Add Comment
Please, Sign In to add comment