Untitled

<?php
if(basename($_SERVER["PHP_SELF"]) == "register.php"){
    die("403 - Access Forbidden");
}
if(isset($_SESSION['id'])){
    echo "<meta http-equiv=refresh content=\"0; url=?base=ucp\">";
}
else{
    echo "<h2 class=\"text-left\">Registration</h2><hr/>";
    if (@$_POST["register"] != "1") {
        ?>
        <form action="?base=main&amp;page=register" method="POST">
            <div class="form-group">
                <label for="inputUser">Username</label>
                <input type="text" name="musername" maxlength="12" class="form-control" id="inputUser" autocomplete="off" placeholder="Username" required>
            </div>
            <div class="form-group">
                <label for="inputPass">Password</label>
                <input type="password" name="mpass" maxlength="12" class="form-control" id="inputPass" autocomplete="off" placeholder="Password" required>
            </div>
            <div class="form-group">
                <label for="inputConfirm">Confirm Password</label>
                <input type="password" name="mpwcheck" maxlength="12" class="form-control" id="inputConfirm" autocomplete="off" placeholder="Confirm Password" required>
            </div>
            <div class="form-group">
                <label for="inputEmail">Email</label>
                <input type="email" name="memail" class="form-control" id="inputEmail" autocomplete="off" placeholder="Email" required>
            </div>
            <div class="form-group">
                <label for="inputBirth">Birthday</label>
                <input type="date" name="birthday" class="form-control" id="inputBirth" autocomplete="off" placeholder="1990-01-01" required>
            </div>


            <b>reCAPTCHA</b>
            <?php
            require_once('assets/config/recaptchalib.php');
            $error = null;
            $publickey = "6LemqAwAAAAAAF4dIpSjTB3GJt1ax0MRQ9FvOX_T";
            $privatekey = "6LemqAwAAAAAAO69RT3j9M1eHPX_ahhmC6Gakuwb";
            echo recaptcha_get_html($publickey, $error);
            ?>
            <br/>
            <input type="submit" class="btn btn-primary" name="submit" value="Register &raquo;">
            <input type="hidden" name="register" value="1">
        </form>
        <?php
    } else {
        if (!isset($_POST["musername"]) OR
            !isset($_POST["mpass"]) OR
            !isset($_POST["mpwcheck"]) OR
            !isset($_POST["memail"]) OR
            !isset($_POST["recaptcha_response_field"])
        ) {
            die ("<div class=\"alert alert-error\">Please fill in the correct ReCAPTCHA code!<br/><a href=\"?base=main&page=register\">&laquo; Go Back</a></div>");
        }

        $getusername = $mysqli->real_escape_string($_POST["musername"]); # Get Username
        $username = preg_replace("/[^A-Za-z0-9 ]/", '', $getusername); # Escape and Strip
        $password = $_POST["mpass"]; # Get Password
        $confirm_password = $_POST["mpwcheck"]; # Get Confirm Password
        $email = $mysqli->real_escape_string($_POST["memail"]);
        $birth = $mysqli->real_escape_string($_POST['birthday']);
        $ip = getRealIpAddr();

        $continue = false;

        require_once('assets/config/recaptchalib.php');

        $publickey = "6LemqAwAAAAAAF4dIpSjTB3GJt1ax0MRQ9FvOX_T";
        $privatekey = "6LemqAwAAAAAAO69RT3j9M1eHPX_ahhmC6Gakuwb";

        $resp = null;
        $danger = null;

        if ($_POST["recaptcha_response_field"]) {
            $resp = recaptcha_check_answer($privatekey, $_SERVER["REMOTE_ADDR"], $_POST["recaptcha_challenge_field"], $_POST["recaptcha_response_field"]);
            if ($resp->is_valid) {
                $continue = true;
            }
        }

        if (!$continue) {
            echo("<div class=\"alert alert-danger\">Please fill in the correct ReCAPTCHA code!<br/><a href=\"?base=main&page=register\">&laquo; Go Back</a></div>");
        } else {
            $select_user_result = $mysqli->query("SELECT id FROM accounts WHERE name='" . $username . "' OR email='" . $email . "' LIMIT 1");
            $returned = $select_user_result->num_rows;
            if ($returned > 0) {
                echo("<div class=\"alert alert-danger\">This username or email is already used!<br/><a href=\"?base=main&page=register\">&laquo; Go Back</a></div>");
            } else if ($password != $confirm_password) {
                echo("<div class=\"alert alert-danger\">Passwords didn't match!<br/><a href=\"?base=main&page=register\">&laquo; Go Back</a></div>");
            } else if (strlen($password) < 4 || strlen($password) > 12) {
                echo("<div class=\"alert alert-danger\">Your password must be between 4-12 characters<br/><a href=\"?base=main&page=register\">&laquo; Go Back</a></div>");
            } else if (strlen($username) < 4 || strlen($username) > 12) {
                echo("<div class=\"alert alert-danger\">Your username must be between 4-12 characters<br/><a href=\"?base=main&page=register\">&laquo; Go Back</a></div>");
            } else if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
                echo("<div class=\"alert alert-danger\">Please fill in a valid email address.<br/><a href=\"?base=main&page=register\">&laquo; Go Back</a></div>");
            } else {
            <div class=\"alert alert-success\"><b>Success!</b> You have created your very own account! You can now go and play the game.</div>";
            }
        }
    }
}
?>