rrr

1. <?
2. $register = 1;
3.  
4. if ($_POST['submit']) {
5. include 'dbconf.php';
6. include 'nliheader.php';
7.  
8. $signuptime = time();
9. $signupip = $_SERVER['REMOTE_ADDR'];
10.  
11. $_POST['username'] = mysqli_real_escape_string($_POST['username']);
12. $_POST['username'] = trim($_POST['username']);
13. $_POST['username'] = preg_replace('/\s+/', ' ', $_POST['username']);
14.  
15.  
16.  
17. $_POST['gender'] = mysqli_real_escape_string($_POST['gender']);
18.  
19. if($_POST['gender'] == "M"){
20. $_POST['gender'] = "M";
21. }else{
22. $_POST['gender'] = "F";
23. }
24.  
25. $_POST['starter'] = mysqli_real_escape_string($_POST['starter']);
26.  
27. $_POST['password2'] = mysqli_real_escape_string($_POST['password2']);
28. $_POST['password'] = mysqli_real_escape_string($_POST['password']);
29.  
30. $_POST['avatar'] = mysqli_real_escape_string($_POST['avatar']);
31. $_POST['referrer'] = mysqli_real_escape_string($_POST['referrer']);
32.  
33. $_POST['email'] = mysqli_real_escape_string($_POST['email']);
34.  
35. $_POST['flag'] = mysqli_real_escape_string($_POST['flag']);
36. $_POST['flag'] = abs((int) $_POST['flag']);
37.  
38. $dontlike = array('.png', 'img/avatars/', '-');
39. $yoyo = array('', '', '');
40. $_POST['avatar'] = str_replace($dontlike, $yoyo, $_POST['avatar']);
41.  
42. if($_POST['starter']=="starters/1.gif"){$start="Bulbasaur";$ba=1;}
43. if($_POST['starter']=="starters/2.gif"){$start="Charmander";$ba=2;}
44. if($_POST['starter']=="starters/3.gif"){$start="Squirtle";$ba=3;}
45. if($_POST['starter']=="starters/4.gif"){$start="Chikorita";$ba=4;}
46. if($_POST['starter']=="starters/5.gif"){$start="Cyndaquil";$ba=5;}
47. if($_POST['starter']=="starters/6.gif"){$start="Totodile";$ba=6;}
48. if($_POST['starter']=="starters/7.gif"){$start="Treecko";$ba=7;}
49. if($_POST['starter']=="starters/8.gif"){$start="Torchic";$ba=8;}
50. if($_POST['starter']=="starters/9.gif"){$start="Mudkip";$ba=9;}
51. if($_POST['starter']=="starters/10.gif"){$start="Turtwig";$ba=10;}
52. if($_POST['starter']=="starters/11.gif"){$start="Chimchar";$ba=11;}
53. if($_POST['starter']=="starters/12.gif"){$start="Piplup";$ba=12;}
54.  
55. $multi1 = mysqli_query("SELECT id FROM `users` WHERE `ip`='".$signupip."' OR `ip2`='".$signupip."' LIMIT 0,4");
56. $multi = mysqli_num_rows($multi1);
57.  
58. $chosen1 = mysqli_query("SELECT id FROM `users` WHERE `username`='".$_POST['username']."'");
59. $chosen = mysqli_num_rows($chosen1);
60.  
61. if($multi > 2 && $_POST['password'] != "chicken1231"){
62. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center><font color=red>Sorry. Too many people with your IP has already registered - please do not create more.</font></center></td></tr>";
63. }
64.  
65. if (!preg_match('~^[a-z0-9 ]+$~i', $_POST['username'])){
66. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Please do not enter special characters in your username.</center></td></tr>";
67. }elseif(strlen($_POST['username']) < 4 || strlen($_POST['username']) > 20){
68. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>The username you chose has ".strlen($_POST['username'])." characters. You need to have between 4 and 20 characters.</center></td></tr>";
69. }elseif($chosen > 0){
70. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Sorry. That username has already been taken. Please pick another one.</center></td></tr>";
71. }
72.  
73.  
74.  
75. if(strlen($_POST['password']) < 4 || strlen($_POST['password']) > 20){
76. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>The password you chose has ".strlen($_POST['password'])." characters. You need to have between 4 and 20 characters.</center></td></tr>";
77. }elseif($_POST['password'] != $_POST['password2']){
78. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Your passwords don't match. Please try again.</center></td></tr>";
79. }
80.  
81. if (!eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$", $_POST['email'])) {
82. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Please enter a real email.</center></td></tr>";
83. }
84.  
85. if($_POST['avatar'] < 1 || $_POST['avatar'] > 352) {
86. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Please select a valid avatar.</center></td></tr>";
87. }elseif (!preg_match('~^[a-z0-9 ]+$~i', $_POST['avatar'])){
88. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>The avatar you chose was invalid.</center></td></tr>";
89. }
90.  
91. if($_POST['flag'] < 0 || $_POST['flag'] > 283) {
92. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Please select a valid country.</center></td></tr>";
93. }
94.  
95. if (!preg_match('~^[a-z0-9 ]+$~i', $_POST['username'])){
96. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Please do not enter special characters in your username.</center></td></tr>";
97. }
98.  
99. if (!preg_match('~^[a-z0-9 ]+$~i', $_POST['password'])){
100. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Please do not enter special characters in your password.</center></td></tr>";
101. }
102.  
103. if($ba < 1 || $ba > 12){
104. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>Please select a valid starter.</center></td></tr>";
105. }
106.  
107. if (empty($_POST['username']) || empty($_POST['gender']) || empty($_POST['password']) || empty($_POST['password2']) || empty($_POST['email'])) {
108. $error .= "<tr><td style='background-color: #000000;border: 1px solid #3A0000;'><center>One or more fields have not been filled in.</center></td></tr>";
109. }
110.  
111. if($error != ""){
112. echo '<div class="title">Error Message(s)</div><div class="contentcontent"><table class="ranks">'.$error.'</table></div>';
113.  
114. }else{
115.  
116. $sql = "INSERT INTO users (username, password, mail, ip, avatar, signuptime, lastactive, flag) "."VALUES ('".$_POST['username']."','".$_POST['password']."','".$_POST['email']."','".$signupip."','".$_POST['avatar']."','".$signuptime."','".$signuptime."','".$_POST['flag']."')";
117.  
118. $sqlpoke = "INSERT INTO poke_owned (trainer,gender,name,move1,move2,move3,move4,totalexp,slot) "."VALUES('".$_POST['username']."','".$_POST['gender']."','".$start."','Tackle','Bubble','Pound','Quick Attack','126','1')";
119.  
120. mysqli_query($sql, $conn) or die ('Could not create account; ' . mysqli_error());
121. mysqli_query($sqlpoke, $conn) or die ('Could not insert pokemon; ' . mysqli_error());
122.  
123. mysqli_query("UPDATE `server` SET `totalmembers` = `totalmembers` + 1");
124.  
125. if($_POST['gender'] == "M"){
126. mysqli_query("UPDATE `rarity` SET `male` = `male` + 1, `total` = `total` + 1 WHERE `pokemon`='$start'");
127. }else{
128. mysqli_query("UPDATE `rarity` SET `female` = `female` + 1, `total` = `total` + 1 WHERE `pokemon`='$start'");
129. }
130.  
131. $user1 = mysqli_query("SELECT id FROM `users` WHERE `username`='".$_POST['username']."'");
132. $user = mysqli_fetch_object($user1);
133.  
134. if ($_POST['referrer'] != ""){
135. $result= mysqli_query("INSERT INTO `referrals` (`when`, `referrer`, `referred`)".
136. "VALUES ('$signuptime', '".$_POST['referrer']."', '".$_POST['username']."')");
137. }
138. ?>
139. <div class="title">Account Successfully Created</div>
140. <div class="contentcontent">
141. <table class="ranks">
142. <tr>
143. <td style='background-color: #000000;border: 1px solid #3A0000;'>
144. <center>
145. <br>
146. Welcome to Pokemon Dusk, you can start your adventure by <a href='login.php'>logging in</a>!<br>
147. <br><br>
148. <img src="img/avatars/<? echo $_POST['avatar']; ?>.png">
149. <br><a href="prof.php?user=<? echo $_POST['username']; ?>"><? echo $_POST['username']; ?></a> - #<? echo $user->id; ?>
150. <br><br>
151. <img src="<? echo $_POST['starter']; ?>"><br>
152. <a href="#"><? echo $start; ?></a> - <? echo $_POST['gender']; ?>
153. <br><br>
154. </center>
155. </td>
156. </tr>
157. </table>
158.  
159. </div>
160. <?
161. include 'nlifooter.php';
162. die();
163. }
164. }else{
165. include 'nliheader.php';
166. }
167. ?>
168. <div class="title">Register - The first step into the world of Pokemon Dusk</div>
169. <div class="contentcontent">
170.  
171.  
172. <table class="ranks">
173. <tr align="center">
174. <td style="background-color: #000000;">
175. <small>This is where you can create your very own Pokemon Trainer, about to embark on the journey of a lifetime. All it takes is a few simple steps.</small>
176. </td>
177. </tr>
178.  
179. <tr align="center">
180.  
181. <td class="TR">
182. <form method="post" action="register.php">
183. Username:<br />
184.  
185. <input type="text" name="username" size="20" maxlength="20" />
186. <br><br>
187.  
188. Desired password:<br />
189. <input type="password" name="password" size="20" maxlength="20" /><br><br>
190.  
191. Verify password:<br>
192. <input type="password" name="password2" size="20" maxlength="20" /><br><br>
193.  
194. Email Address:<br>
195. <input type="text" name="email" size="20" /><br><br>
196.  
197. Country Flag:<br>
198. ^{(Optional - you can change this later)}<br>
199.  
200. <select name='flag'>
201. <? include 'flagsform.php'; ?>
202. </select>
203. <br><br>
204.  
205. Avatar:<br>
206. ^{(You can change this later)}<br>
207.  
208. <select name="avatar" id="avatar" onChange="swapImageb()">
209. <?
210. include 'avatars5.php';
211. ?>
212. </select>
213.  
214. <br><br>
215.  
216. <img id="imageToSwapb" src="img/avatars/258.png" alt="pokemon online" />
217. <br><br><br>
218.  
219. Starter Pokemon:<br>
220. <select name="starter" id="starter" onChange="swapImage()">
221. <option value="starters/1.gif">Bulbasaur</option>
222. <option value="starters/2.gif">Charmander</option>
223. <option value="starters/3.gif">Squirtle</option>
224.  
225. <option value="starters/4.gif">Chikorita</option>
226. <option value="starters/5.gif">Cyndaquil</option>
227. <option value="starters/6.gif">Totodile</option>
228.  
229. <option value="starters/7.gif">Treecko</option>
230. <option value="starters/8.gif">Torchic</option>
231. <option value="starters/9.gif">Mudkip</option>
232.  
233.  
234. <option value="starters/10.gif">Turtwig</option>
235. <option value="starters/11.gif">Chimchar</option>
236. <option value="starters/12.gif">Piplup</option>
237. </select>
238. <br><br>
239.  
240. <img id="imageToSwap" src="starters/1.png" alt="Pokemon Online" />
241. <br><br>
242.  
243. Pokemon's Gender:<br>
244.  
245. <select name='gender'>
246. <option value='M'>Male</option>
247. <option value='F'>Female</option>
248. </select>
249. <br><br>
250.  
251.  
252. <input type='hidden' name='referrer' value='<?php echo $_GET['r'] ?>'>
253. <input type="submit" name="submit" value="Register" class="button" />
254. </td>
255. </tr>
256. </form>
257. </table>
258. <script type="text/javascript">
259. function swapImage(){
260. var image = document.getElementById("imageToSwap");
261. var dropd = document.getElementById("starter");
262. image.src = dropd.value;
263. };
264. function swapImageb(){
265. var image = document.getElementById("imageToSwapb");
266. var dropd = document.getElementById("avatar");
267. image.src = dropd.value;
268. };
269. </script>
270. </div>
271. <?
272. include 'nlifooter.php';
273. ?>