Viewing file:  adduser.php (4.86 KB) -rw-rw-rw-
Select action/file-type:
 (+) |  (+) |  (+) | Code (+) | Session (+) |  (+) | SDB (+) |  (+) |  (+) |  (+) |  (+) |  (+) |
<?
//prevents caching
header("Expires: Sat, 01 Jan 2000 00:00:00 GMT");
header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
header("Cache-Control: post-check=0, pre-check=0",false);
session_cache_limiter();
session_start();
//require the config file
require ("../config.php");
require ("../functions.php");
if ($page == ""){$page = 1;}
if ($max_results == ""){$max_results = 5;}
//check required fields
if (($_POST[username] == ""))
{
echo "The Username Field can not be left blank. Please <a href=\"adminpage.php?page=$page&max_results=$max_results\">Go Back</a> and re-enter the information";
exit;
}
//check the password length
$pass_len = password_check($min_pass, $max_pass, $_POST[password]);
if ($pass_len == "no")
{
echo "<p>Password entre $min_pass y $max_pass caracteres de longitud, por favor <a href=\"adminpage.php?page=$page&max_results=$max_results\">Go Back </a>intentelo de nuevo.</p>";
exit;
}
//check for authority to view this page
if (allow_access(Administrators) != "yes")
{
echo "not authorized to perform this function";
}
//make the connection to the database
$connection = @mysql_connect($server, $dbusername, $dbpassword) or die(mysql_error());
$db = @mysql_select_db($db_name,$connection)or die(mysql_error());
//make query to database
$sql ="SELECT * FROM $table_name WHERE username= '$_POST[username]'";
$result = @mysql_query($sql,$connection) or die(mysql_error());
//get the number of rows in the result set
$num = mysql_num_rows($result);
//check if that username already exists
if ($num != 0){
echo "<P>Ese nombre de usuario ya existe.</P>";
echo "<P><a href=\"#\" onClick=\"history.go(-1)\">Pruebe otro nombre.</a></p>";
echo "$_POST[username]";
exit;
}else{
//or add it to the database
$sql_add = "INSERT INTO $table_name (firstname, lastname, username, password, group1, group2, group3,
pchange, email, redirect, verified, last_login, id) VALUES
('$_POST[firstname]', '$_POST[lastname]', '$_POST[username]', password('$_POST[password]'),
'$_POST[group1]', '$_POST[group2]', '$_POST[group3]', '$_POST[pchange]', '$_POST[email]',
'$_POST[redirect]', '1', 'last_login()', '')";
$result = @mysql_query($sql_add,$connection) or die(mysql_error());
}
if ($_POST[email_user] == "Yes")
{
$mailheaders = "From: $domain\n";
$mailheaders .= "Dear $_POST[firstname] $_POST[lastname],\n";
$mailheaders .= "\n";
$mailheaders .= "An account has been created for you at $domain.\n";
$mailheaders .= "Please log in with the following account information:\n";
$mailheaders .= "Username: $_POST[username]\n";
$mailheaders .= "Password: $_POST[password]\n";
$mailheaders .= "\n";
$mailheaders .= "Please login at:\n";
$mailheaders .= "$base_dir/login.html\n";
$mailheaders .= "Should you have any complications, please email the System Administrator at:\n";
$mailheaders .= "$adminemail\n";
$to = "$_POST[email]";
$subject = "Your account has been created !!";
mail($to, $subject, $mailheaders, "From: No Reply <$adminemail>\n");
}
?>
<html>
<head>
<meta http-equiv="Content-Language" content="en-us">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<link rel="stylesheet" type="text/css" href="adminpage.css">
<meta http-equiv="refresh" content="5; url=adminpage.php">
<title>Add User</title>
</head>
<body>
<p><b><font face="Tahoma">User Added:</font></b></p>
<table border="1" id="table1">
<tr>
<td width="154"><font face="Tahoma" size="2">Nombre</td>
<td><?php echo $_POST[firstname]; ?></font></td>
</tr>
<tr>
<td width="154"><font face="Tahoma" size="2">Apellido</td>
<td><?php echo $_POST[lastname]; ?></font></td>
</tr>
<tr>
<td width="154"><font face="Tahoma" size="2">Usuario:</td>
<td><?php echo $_POST[username]; ?></font></td>
</tr>
<tr>
<td width="154"><font face="Tahoma" size="2">Password:</td>
<td><?php echo $_POST[password]; ?></font></td>
</tr>
<tr>
<tr>
<td width="154"><font face="Tahoma" size="2">E-Mail:</td>
<td><?php echo $_POST[email]; ?></font></td>
</tr>
<td width="154"><font face="Tahoma" size="2">Grupo:</td>
<td><?php echo $_POST[group1]; ?> </td>
</tr>
<tr>
<td width="154"> </td>
<td><?php echo $_POST[group2]; ?> </td>
</tr>
<tr>
<td width="154"> </td>
<td><?php echo $_POST[group3]; ?> </font></td>
</tr>
<tr>
<td width="154"><font face="Tahoma" size="2">Redirigir a:</font></td>
<td><?php echo $_POST[redirect]; ?></font></td>
</tr>
<tr>
<td width="154"><font face="Tahoma" size="2">Password Change Req'd:</td>
<td><?php if($_POST[pchange] == "1"){$ans1="Yes";}else{$ans1="No";} echo $ans1; ?></td>
</tr>
<tr>
<td width="154"><font face="Tahoma" size="2">User E-Mailed:</td>
<td><?php echo $_POST[email_user]; ?></font></td>
</tr>
</table>
</body>
</html>
|