API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 2nd, 2017
99
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.97 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3. // check that the request comes from Fortumo server
  4. if(!in_array($_SERVER['REMOTE_ADDR'],
  5. array('81.20.151.38', '81.20.148.122', '209.20.83.207'))) {
  6. die("Error: Unknown IP");
  7. }
  8.  
  9. // check the signature
  10. $secret = '(my correct secred id not shown in these demo)'; // insert your secret between ''
  11. if(!empty($secret) && !check_signature($_GET, $secret)) {
  12. die("Error: Invalid signature");
  13. }
  14.  
  15. $sender = $_GET['sender'];
  16. $amount = $_GET['amount'];
  17. $cuid = $_GET['cuid'];
  18. $payment_id = $_GET['payment_id'];
  19.  
  20. //find or create payment by payment_id
  21. //add $sender, $amount and $cuid to payment if needed
  22.  
  23. if(preg_match("/failed/i", $_GET['status'])) {
  24. // mark payment as failed
  25. } else {
  26.  
  27. // mark payment successful
  28. $db_name = 'de1936_wtd'; // The Database
  29. $db_ip = 'localhost'; // Server IP Adress
  30. $db_user = 'de1936_wtd'; // MSSQL User
  31. $db_pass = '123456'; // MSSQL Password
  32. $password = rand(100000, 999999);
  33. $connection = mysql_connect($db_ip, $db_user, $db_pass) or die(mysql_error());
  34. mysql_select_db($db_name);
  35.  
  36. mysql_query("INSERT INTO `accounts` (
  37. `account_name`,
  38. `account_username`,
  39. `account_password`,
  40. `account_disabled`,
  41. `account_admin`,
  42. `theme`
  43. ) VALUES (
  44. '$sender',
  45. '$sender',
  46. '$password',
  47. 'no',
  48. 'no',
  49. 'default'
  50. )")or die(mysql_error());
  51.  
  52. $afara = mysql_query("SELECT account_password FROM accounts WHERE account_name='$sender'") or die(mysql_error());
  53. $final = mysql_result($afara, 0);
  54. $pusid = mysql_query("SELECT account_id FROM accounts WHERE account_name='$sender'") or die(mysql_error());
  55. $usid = mysql_result($pusid, 0);
  56.  
  57. echo 'Thank you! Your username is: ',$sender,' and your password is: ', $final;
  58.  
  59. mysql_query("INSERT INTO `accounts_has_perms` (
  60. `account_id`,
  61. `share_id`,
  62. `perm_list`,
  63. `perm_download`,
  64. `perm_write`,
  65. `perm_modify`
  66. ) VALUES (
  67. '$usid',
  68. '2',
  69. 'yes',
  70. 'yes',
  71. 'no',
  72. 'no'
  73. )")or die(mysql_error());
  74.  
  75. mysql_query("INSERT INTO `accounts_has_perms` (
  76. `account_id`,
  77. `share_id`,
  78. `perm_list`,
  79. `perm_download`,
  80. `perm_write`,
  81. `perm_modify`
  82. ) VALUES (
  83. '$usid',
  84. '3',
  85. 'yes',
  86. 'yes',
  87. 'no',
  88. 'no'
  89. )")or die(mysql_error());
  90.  
  91. mysql_query("INSERT INTO `accounts_has_perms` (
  92. `account_id`,
  93. `share_id`,
  94. `perm_list`,
  95. `perm_download`,
  96. `perm_write`,
  97. `perm_modify`
  98. ) VALUES (
  99. '$usid',
  100. '4',
  101. 'yes',
  102. 'yes',
  103. 'no',
  104. 'no'
  105. )")or die(mysql_error());
  106.  
  107. mysql_query("INSERT INTO `accounts_has_perms` (
  108. `account_id`,
  109. `share_id`,
  110. `perm_list`,
  111. `perm_download`,
  112. `perm_write`,
  113. `perm_modify`
  114. ) VALUES (
  115. '$usid',
  116. '5',
  117. 'yes',
  118. 'yes',
  119. 'no',
  120. 'no'
  121. )")or die(mysql_error());
  122.  
  123. mysql_query("INSERT INTO `accounts_has_perms` (
  124. `account_id`,
  125. `share_id`,
  126. `perm_list`,
  127. `perm_download`,
  128. `perm_write`,
  129. `perm_modify`
  130. ) VALUES (
  131. '$usid',
  132. '6',
  133. 'yes',
  134. 'yes',
  135. 'no',
  136. 'no'
  137. )")or die(mysql_error());
  138.  
  139. mysql_query("INSERT INTO `accounts_has_perms` (
  140. `account_id`,
  141. `share_id`,
  142. `perm_list`,
  143. `perm_download`,
  144. `perm_write`,
  145. `perm_modify`
  146. ) VALUES (
  147. '$usid',
  148. '7',
  149. 'yes',
  150. 'yes',
  151. 'no',
  152. 'no'
  153. )")or die(mysql_error());
  154.  
  155. mysql_query("INSERT INTO `accounts_has_perms` (
  156. `account_id`,
  157. `share_id`,
  158. `perm_list`,
  159. `perm_download`,
  160. `perm_write`,
  161. `perm_modify`
  162. ) VALUES (
  163. '$usid',
  164. '8',
  165. 'yes',
  166. 'yes',
  167. 'no',
  168. 'no'
  169. )")or die(mysql_error());
  170.  
  171.  
  172. }
  173.  
  174. function check_signature($params_array, $secret) {
  175. ksort($params_array);
  176.  
  177. $str = '';
  178. foreach ($params_array as $k=>$v) {
  179. if($k != 'sig') {
  180. $str .= "$k=$v";
  181. }
  182. }
  183. $str .= $secret;
  184. $signature = md5($str);
  185.  
  186. return ($params_array['sig'] == $signature);
  187. }
  188. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!