Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $allow_guests = "true";
- include('core.php');
- session_start();
- if(!session_is_registered(username)){
- if(isset($_POST['username'])){
- $username = $_POST['username'];
- $password = $_POST['password'];
- if(empty($username) || empty($password)){
- $error = "<div class='bobble'><div class='arrow'></div>Perfavore non lasciare spazi bianchi!</div>";
- }else{
- $select = mysql_query("SELECT * FROM users WHERE username ='".$_POST['username']."' ");
- $user = mysql_fetch_assoc($select);
- if(mysql_num_rows($select) == 0){ $error = "<div class='bobble'><div class='arrow'></div>Username o Password errati!</div>"; }
- $prendiban = mysql_query("SELECT * FROM bans WHERE value = '".$username."' ");
- $ban = mysql_fetch_assoc($prendiban);
- if(mysql_num_rows($prendiban) > 0){ $error="<div class='bobble'><div class='arrow'></div>Sei stato bannato per ".$ban['reason']."</div>";}else{
- if(HoloHash($_POST['password']) == $user['password'] && empty($error)){
- $_SESSION['username'] = $user['username'];
- $_SESSION['password'] = HoloHash($_POST['password']);
- mysql_query("UPDATE users SET lastvisit = '".$date_full."' WHERE username = '".$username."'") or die(mysql_error());
- header("location:security_check.php"); exit;
- }else{ $error = "<div class='bobble'><div class='arrow'></div>Username o Password errati!</div>"; }
- }
- }
- }
- }else{ header("location: home.php"); }
- if(isset($_POST['username_reg'])){
- $sele_username = mysql_query("SELECT * FROM users WHERE username = '".$_POST['username_reg']."' ");
- $sele_mail = mysql_query("SELECT * FROM users WHERE mail = '".$_POST['email']."' ");
- if(empty($_POST['username_reg'])){ $error_us = "Inserisci un username!<br>"; }if(empty($_POST['email'])){ $error_em = "Inserisci una e-mail!<br>"; }if(empty($_POST['password_reg'])){ $error_psw = "Inserisci una password!<br>"; }if(empty($_POST['password_repeat'])){ $error_psw2 = "Conferma la password!<br>"; }
- if($_POST['password_repeat'] !== $_POST['password_reg']){ $error_psw2 = "Le password non corrispondono!<br>"; }
- if(mysql_num_rows($sele_username) > 0){ $error_us = "Username già in uso!<br>"; }
- if(mysql_num_rows($sele_mail) > 0){ $error_em = "E-mail già in uso!<br>"; }
- if(!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) { $error_em = 'E-mail non valida!<br>'; }
- if(strlen($_POST['password_reg']) < 6){ $error_psw = 'Password troppo corta!<br>'; }
- if(strlen($_POST['password_reg']) > 25){ $error_psw = 'Password troppo lunga!<br>'; }
- if(!preg_match('/^[0-9a-zA-Z!?,.:=-]+$/i', $_POST['username_reg']) || preg_match("/MOD-/i", $_POST['username_reg']) || preg_match("/MOD/i", $_POST['username_reg'])){ $error_us = 'Username non valido!<br>'; }
- if(empty($error_us) && empty($error_psw) && empty($error_psw2) && empty($error_em)){
- mysql_query("INSERT INTO users (username, password, mail, credits, look, gender, motto, account_created, last_online, ip_last, ip_reg) VALUES ('".$_POST['username_reg']."', '".HoloHash($_POST['password_reg'])."', '".$_POST['email']."', '100000', 'sh-290-82.ea-3168-1408.lg-285-92.ch-215-82.hr-3322-34.hd-185-1390', 'M', 'Sono Nuovo su ".$shortname."!', '".$date_full."', UNIX_TIMESTAMP(), '".$_SERVER['REMOTE_ADDR']."', '".$_SERVER['REMOTE_ADDR']."')");
- $user_id = mysql_insert_id();
- mysql_query("INSERT INTO user_stats (id, RoomVisits, OnlineTime, Respect, RespectGiven, GiftsGiven, GiftsReceived, DailyRespectPoints, DailyPetRespectPoints) VALUES ('".$user_id."', 0, 0, 0, 0, 0, 0, 3, 3)");
- mysql_query("INSERT INTO user_info (user_id, bans, cautions, reg_timestamp, login_timestamp, cfhs, cfhs_abusive) VALUES ('".$user_id."', '0', '0', UNIX_TIMESTAMP(), '0', '0', '0')");
- mysql_query("INSERT INTO user_badges (user_id, badge_id, badge_slot) VALUES ('".$user_id."', 'HH1', '0'); ");
- $_SESSION['username'] = $_POST['username_reg'];
- $_SESSION['password'] = HoloHash($_POST['password_reg']);
- header("location: security_check.php");
- }
- }
- if(isset($_GET['banned']) && isset($_GET['banid'])){
- $prendib = mysql_query("SELECT * FROM bans WHERE id = '".$_GET['banid']."' LIMIT 1");
- $ban = mysql_fetch_assoc($prendib);
- $error = "Sei stato bannato per ".$ban['reason']." fino al ".date("d/m/Y", $ban['expire'])." ";
- }
- ?>
- <html><head>
- <title><?php echo $shortname; ?> - Benvenuto </title>
- <link rel="stylesheet" href="/images/login/style.css" type="text/css">
- <script src="http://code.jquery.com/jquery-2.1.3.min.js" type="text/javascript"></script>
- <script type="text/javascript">function showReg(){ $(".registerForm").slideToggle(); $(".loginForm").slideToggle(); }function hideReg(){ $(".registerForm").slideToggle(); $(".loginForm").slideToggle(); }</script>
- </head>
- <body <?php if($_GET['tryregister'] == "yes"){ ?>onload="showReg()"<?php } ?>>
- <div class="logo" onclick="window.location.href='index.php';"></div>
- </div>
- <div class="main">
- <div class="imagebox">
- <div class="bottom-box"><h2></h2>
- <p class="smalltext"></p>
- </div></div>
- <form method="post" class="loginForm" action="?trylogin">
- <h2>Entra in Jaxos</h2>
- <p class="smalltext">Compila i campi qui sotto per accedere</p>
- <?php echo $error; ?>
- <input type="text" name="username" placeholder="Username">
- <input type="password" name="password" placeholder="Password">
- <br><input type="submit" class="enter" value="Accedi"><br>
- <input type="button" value="Registrati" onclick="showReg()"></form>
- <form method="post" class="registerForm" style="display:none" action="?tryregister=yes">
- <h2>Registrazione</h2>
- <p class="smalltext">Compila i campi qua sotto per registrarti.</p>
- <?php if(!empty($error_us) || !empty($error_psw) || !empty($error_em) || !empty($error_psw2)){ ?>
- <div class="bobble"><div class="arrow"></div>
- <?php echo $error_us; ?><?php echo $error_psw; ?><?php echo $error_psw2; ?><?php echo $error_em; ?>
- </div><?php } ?>
- <input type="text" name="username_reg" value="<?php echo $_POST['username_reg']; ?>" placeholder="Username">
- <input type="email" name="email" value="<?php echo $_POST['email']; ?>" placeholder="E-mail"><br>
- <input type="password" name="password_reg" placeholder="Password">
- <input type="password" name="password_repeat" placeholder="Ripeti password"><br>
- <input type="submit" value="Completa" class="register"><br>
- <span style="float:right"><a onclick="hideReg()">Ho già un account.</a></span>
- </form></div>
- <div class="footer">
- <center><?php echo $shortname; ?> Hotel Italia ©</center>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement