Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // check that the request comes from Fortumo server
- if(!in_array($_SERVER['REMOTE_ADDR'],
- array('81.20.151.38', '81.20.148.122', '209.20.83.207'))) {
- die("Error: Unknown IP");
- }
- // check the signature
- $secret = '(my correct secred id not shown in these demo)'; // insert your secret between ''
- if(!empty($secret) && !check_signature($_GET, $secret)) {
- die("Error: Invalid signature");
- }
- $sender = $_GET['sender'];
- $amount = $_GET['amount'];
- $cuid = $_GET['cuid'];
- $payment_id = $_GET['payment_id'];
- //find or create payment by payment_id
- //add $sender, $amount and $cuid to payment if needed
- if(preg_match("/failed/i", $_GET['status'])) {
- // mark payment as failed
- } else {
- // mark payment successful
- $db_name = 'de1936_wtd'; // The Database
- $db_ip = 'localhost'; // Server IP Adress
- $db_user = 'de1936_wtd'; // MSSQL User
- $db_pass = '123456'; // MSSQL Password
- $password = rand(100000, 999999);
- $connection = mysql_connect($db_ip, $db_user, $db_pass) or die(mysql_error());
- mysql_select_db($db_name);
- mysql_query("INSERT INTO `accounts` (
- `account_name`,
- `account_username`,
- `account_password`,
- `account_disabled`,
- `account_admin`,
- `theme`
- ) VALUES (
- '$sender',
- '$sender',
- '$password',
- 'no',
- 'no',
- 'default'
- )")or die(mysql_error());
- $afara = mysql_query("SELECT account_password FROM accounts WHERE account_name='$sender'") or die(mysql_error());
- $final = mysql_result($afara, 0);
- $pusid = mysql_query("SELECT account_id FROM accounts WHERE account_name='$sender'") or die(mysql_error());
- $usid = mysql_result($pusid, 0);
- echo 'Thank you! Your username is: ',$sender,' and your password is: ', $final;
- mysql_query("INSERT INTO `accounts_has_perms` (
- `account_id`,
- `share_id`,
- `perm_list`,
- `perm_download`,
- `perm_write`,
- `perm_modify`
- ) VALUES (
- '$usid',
- '2',
- 'yes',
- 'yes',
- 'no',
- 'no'
- )")or die(mysql_error());
- mysql_query("INSERT INTO `accounts_has_perms` (
- `account_id`,
- `share_id`,
- `perm_list`,
- `perm_download`,
- `perm_write`,
- `perm_modify`
- ) VALUES (
- '$usid',
- '3',
- 'yes',
- 'yes',
- 'no',
- 'no'
- )")or die(mysql_error());
- mysql_query("INSERT INTO `accounts_has_perms` (
- `account_id`,
- `share_id`,
- `perm_list`,
- `perm_download`,
- `perm_write`,
- `perm_modify`
- ) VALUES (
- '$usid',
- '4',
- 'yes',
- 'yes',
- 'no',
- 'no'
- )")or die(mysql_error());
- mysql_query("INSERT INTO `accounts_has_perms` (
- `account_id`,
- `share_id`,
- `perm_list`,
- `perm_download`,
- `perm_write`,
- `perm_modify`
- ) VALUES (
- '$usid',
- '5',
- 'yes',
- 'yes',
- 'no',
- 'no'
- )")or die(mysql_error());
- mysql_query("INSERT INTO `accounts_has_perms` (
- `account_id`,
- `share_id`,
- `perm_list`,
- `perm_download`,
- `perm_write`,
- `perm_modify`
- ) VALUES (
- '$usid',
- '6',
- 'yes',
- 'yes',
- 'no',
- 'no'
- )")or die(mysql_error());
- mysql_query("INSERT INTO `accounts_has_perms` (
- `account_id`,
- `share_id`,
- `perm_list`,
- `perm_download`,
- `perm_write`,
- `perm_modify`
- ) VALUES (
- '$usid',
- '7',
- 'yes',
- 'yes',
- 'no',
- 'no'
- )")or die(mysql_error());
- mysql_query("INSERT INTO `accounts_has_perms` (
- `account_id`,
- `share_id`,
- `perm_list`,
- `perm_download`,
- `perm_write`,
- `perm_modify`
- ) VALUES (
- '$usid',
- '8',
- 'yes',
- 'yes',
- 'no',
- 'no'
- )")or die(mysql_error());
- }
- function check_signature($params_array, $secret) {
- ksort($params_array);
- $str = '';
- foreach ($params_array as $k=>$v) {
- if($k != 'sig') {
- $str .= "$k=$v";
- }
- }
- $str .= $secret;
- $signature = md5($str);
- return ($params_array['sig'] == $signature);
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement