Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once("wp-load.php");
- header("Content-type: application/json;charset=utf-8");
- $token = $_GET["token"];
- $tokens = array(
- "SUPER_SECRET_TOKEN",
- "SUPER_SECRET_TOKEN2"
- );
- $action = strtolower($_GET["action"]);
- $reservedUsernames = array(
- "administrator",
- "admin",
- "moderator",
- "mod",
- "epicmc",
- "daltonedwards",
- "daltonedwards97"
- );
- if (in_array($token, $tokens)) {
- if ($action === "login") {
- $username = sanitize_user($_GET["username"]);
- $password = trim($_GET["password"]);
- if (empty($username)) {
- $error[] = "empty username";
- }
- if (empty($username)) {
- $error[] = "empty username";
- }
- if (!empty($username) && !empty($password)) {
- if ($auth = wp_authenticate($username, $password)) {
- if (is_wp_error($auth)) {
- $error[] = "invalid login";
- }
- }
- }
- if (empty($error)) {
- $error[] = false;
- }
- if (count($error) === 1) {
- echo json_encode(array(
- "error" => $error[0]
- ), JSON_PRETTY_PRINT);
- } else {
- echo json_encode(array(
- "error" => $error
- ), JSON_PRETTY_PRINT);
- }
- } else if ($action === "register") {
- $username = sanitize_user($_GET["username"]);
- $password = trim($_GET["password"]);
- $email = sanitize_email($_GET["email"]);
- if (empty($username)) {
- $error[] = "empty username";
- }
- if (!empty($username)) {
- if (strlen($username) > 15) {
- $error[] = "long username";
- }
- if (in_array(strtolower($username), $reservedUsernames)) {
- $error[] = "reserved username";
- }
- if (username_exists($username)) {
- $error[] = "username exists";
- }
- }
- if (empty($password)) {
- $error[] = "empty password";
- }
- if (empty($email)) {
- $error[] = "empty email";
- }
- if (!empty($email)) {
- if (!is_email($email)) {
- $error[] = "invalid email";
- }
- if (email_exists($email)) {
- $error[] = "email exists";
- }
- }
- if (!empty($username) && !empty($password) && !empty($email)) {
- if ($auth = wp_create_user($username, $password, $email)) {
- if (is_wp_error($auth)) {
- $error[] = "invalid registration";
- }
- }
- }
- if (empty($error)) {
- $error[] = false;
- }
- if (count($error) === 1) {
- echo json_encode(array(
- "error" => $error[0]
- ), JSON_PRETTY_PRINT);
- } else {
- echo json_encode(array(
- "error" => $error
- ), JSON_PRETTY_PRINT);
- }
- } else if ($action === "info") {
- $username = sanitize_user($_GET["username"]);
- if (empty($username)) {
- $error[] = "empty username";
- }
- if (empty($error)) {
- $error[] = false;
- }
- if (!empty($username)) {
- if (strlen($username) > 15) {
- $long = true;
- } else {
- $long = false;
- }
- if (in_array(strtolower($username), $reservedUsernames)) {
- $reserved = true;
- } else {
- $reserved = false;
- }
- if (username_exists($username)) {
- $registered = true;
- } else {
- $registered = false;
- }
- if ($error[0] !== false) {
- echo json_encode(array(
- "error" => $error[0]
- ), JSON_PRETTY_PRINT);
- } else if ($registered === true) {
- $user = get_user_by("login", $username);
- echo json_encode(array(
- "error" => $error[0],
- "registered" => $registered,
- "id" => $user->ID
- ), JSON_PRETTY_PRINT);
- } else {
- echo json_encode(array(
- "error" => $error[0],
- "registered" => $registered,
- "long" => $long,
- "reserved" => $reserved
- ), JSON_PRETTY_PRINT);
- }
- }
- } else {
- echo json_encode(array(
- "error" => "invalid action"
- ), JSON_PRETTY_PRINT);
- }
- } else {
- echo json_encode(array(
- "error" => "invalid token"
- ), JSON_PRETTY_PRINT);
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement