Файл: public_html/reg.php
Строк: 98
<?php
include ('./system/system.php');
$title = 'Регистрация';
include ('./system/head.php');
if($user) {
header('location: /game.php');
exit();
}
if($configuring['status_reg'] == 0) {
echo '<div class="block small red center">Регистрация недоступна!</div>';
echo '<a href="?" class="link"><img src="/images/icons/forward.png"> Обновить</a>';
include (''.$_SERVER['DOCUMENT_ROOT'].'/system/foot.php');
include (''.$_SERVER['DOCUMENT_ROOT'].'/system/foot.php');
exit();
}
if(!$_COOKIE['secret_start']) {
$rand = rand(1,999);
setCookie('secret_start', $rand, time() + 600);
header('location: ?');
exit();
}
$rf = _string(_num($_GET['rf']));
$login = _string($_POST['login']);
$password = _string($_POST['password']);
$secret_password = _string($_POST['secret_password']);
$sex = _string(_num($_POST['sex']));
$race = _string(_num($_POST['race']));
$reg = date("Y-m-d");
$secret_start = _string($_POST['secret_start']);
if($login && $password && $secret_start && $secret_password){
if(strlen($login) < 5 or strlen($login) > 30) {
echo '<div class="block small red center">Длина логина 5-30 символов!</div>';
echo '<a href="?" class="link"><img src="/images/icons/forward.png"> Продолжить</a>';
include ('./system/foot.php');
exit();
}
if(strlen($password) < 6 or strlen($password) > 30) {
echo '<div class="block small red center">Длина пароля 6-30 символов!</div>';
echo '<a href="?" class="link"><img src="/images/icons/forward.png"> Продолжить</a>';
include ('./system/foot.php');
exit();
}
if(mysql_result(mysql_query('SELECT COUNT(*) FROM `users` WHERE `login` = ''.$login.'''),0) != 0) {
echo '<div class="block small red center">Такой логин уже занят!</div>';
echo '<a href="?" class="link"><img src="/images/icons/forward.png"> Продолжить</a>';
include ('./system/foot.php');
exit();
}
if(strlen($secret_password) < 3 or strlen($secret_password) > 30) {
echo '<div class="block small red center">Длина секретного пароля 3-30 символов!</div>';
echo '<a href="?" class="link"><img src="/images/icons/forward.png"> Продолжить</a>';
include ('./system/foot.php');
exit();
}
if($secret_start != $_COOKIE['secret_start']) {
echo '<div class="block small red center">Неверный проверочный код!</div>';
echo '<a href="?" class="link"><img src="/images/icons/forward.png"> Продолжить</a>';
include ('./system/foot.php');
exit();
}
if(mysql_query('INSERT INTO `users` (`login`,
`password`, `sex`,
`reg`, `level`, `silver`, `max_health`, `max_energy`, `strength`, `armor`, `race`, `secret_password`) VALUEs ("'.$login.'",
"'.$password.'", "'.$sex.'",
"'.$reg.'", "1", "50000", "50", "50", "50", "50", "'.$race.'", "'.$secret_password.'")')) {
$id = mysql_insert_id();
$user = mysql_query('SELECT * FROM `users` WHERE `id` = "'.$id.'" LIMIT 1');
$user = mysql_fetch_array($user);
if($rf) {
mysql_query("update `users` set `ref` = '".$rf."' where `id` = '".$user['id']."'");
}
setCookie('id', $user['id'], time() + 86400 * 365);
setCookie('password', $password, time() + 86400 * 365);
header('location: /game.php');
exit();
}
}
echo '<form class="block" action="" method="POST">
Логин: <br/> <input name="login" class="text" type="text" style="width: 97%;"><br>
Пароль: <br/><input name="password" class="text" type="password" style="width: 97%"><br>
Секретный пароль: <br/><input name="secret_password" class="text" type="text" style="width: 97%"><br>
Введите цифры: <b>'.$_COOKIE['secret_start'].'</b> <br/><input name="secret_start" class="text" type="text" style="width: 97%"><br>';
echo 'Пол: <br> <select name="sex">
<option value="0">Мужской</option>
<option value="1">Женский</option>
</select><br>';
if(!$race) {
$race = rand(0,1);
}
if($race == 0) {
echo 'Сторона: <br> <select name="race">
<option value="0">Парсы</option>
<option value="1">Сармане</option>
</select><br>';
}
if($race == 1) {
echo 'Сторона: <br> <select name="race">
<option value="1">Сармане</option>
<option value="0">Парсы</option>
</select><br>';
}
echo '
<input type="submit" class="submit" value="Регистрация">
</form>';
include ('./system/foot.php');
?>