arman/science-ation
1
1
Fork 0
forked from science-ation/science-ation
Code Pull Requests Activity

Fix the version loading/detection in common inc, and properly put debug info in the footer in 'debug' versions (odd numbered versions)

Browse Source 
Check for a valid email address before sending an email
Check for a valid email address when trying to create a new participant account
This commit is contained in:
james 2006-02-14 21:50:41 +00:00
parent eae0ebde0c
commit 54769f999a
2 changed files with 39 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
common.inc.php
View File

@ -38,7 +38,7 @@ else
$prependdir=""; $prependdir="";
$sfiabversion=@file($prependdir."version.txt"); $sfiabversion=@file($prependdir."version.txt");
$config['version']=$sfiabversion[0]; $config['version']=trim($sfiabversion[0]);
//make sure the data subdirectory is writable, if its not, then we're screwed, so make sure it is! //make sure the data subdirectory is writable, if its not, then we're screwed, so make sure it is!
@ -478,10 +478,12 @@ global $config;
<div id="footer"> <div id="footer">
<? <?
//we only show the debug session variables if we have an ODD numbered version. //we only show the debug session variables if we have an ODD numbered version.
$lastdigit=$config['version'][strlen($config['version']-1)]; $lastdigit=$config['version'][strlen($config['version'])-1];
if($lastdigit%2!=0) if($lastdigit%2!=0)
{
echo "DEBUG:";
print_r($_SESSION); print_r($_SESSION);
}
echo "SFIAB Version ".$config['version']; echo "SFIAB Version ".$config['version'];
?> ?>
</div> </div>
@ -707,6 +709,10 @@ function outputStatus($status)
function email_send($val,$to,$sub_subject=array(),$sub_body=array()) function email_send($val,$to,$sub_subject=array(),$sub_body=array())
{ {
//if our "to" doesnt look like a valid email, then forget about sending it.
if(!eregi('[a-zA-Z0-9._-]+@[a-zA-Z0-9._-]+\.([a-zA-Z]{2,4})', $to))
return;
$q=mysql_query("SELECT * FROM emails WHERE val='$val'"); $q=mysql_query("SELECT * FROM emails WHERE val='$val'");
if($r=mysql_fetch_object($q)) if($r=mysql_fetch_object($q))
{ {

49
register_participants.php
View File

@ -306,29 +306,40 @@
} }
else else
{ {
$regnum=0; //they can only create a new registraiton if they have a valid email address, so lets do a quick ereg check on their email
//now create the new registration record, and assign a random/unique registration number to then. if(eregi('[a-zA-Z0-9._-]+@[a-zA-Z0-9._-]+\.([a-zA-Z]{2,4})', $_SESSION['email']))
do
{ {
//random number between
//100000 and 999999 (six digit integer) $regnum=0;
$regnum=rand(100000,999999); //now create the new registration record, and assign a random/unique registration number to then.
$q=mysql_query("SELECT * FROM registrations WHERE num='$regnum' AND year=".$config['FAIRYEAR']); do
}while(mysql_num_rows($q)>0); {
//random number between
//100000 and 999999 (six digit integer)
$regnum=rand(100000,999999);
$q=mysql_query("SELECT * FROM registrations WHERE num='$regnum' AND year=".$config['FAIRYEAR']);
}while(mysql_num_rows($q)>0);
//actually insert it //actually insert it
mysql_query("INSERT INTO registrations (num,email,start,status,year) VALUES (". mysql_query("INSERT INTO registrations (num,email,start,status,year) VALUES (".
"'$regnum',". "'$regnum',".
"'".$_SESSION['email']."',". "'".$_SESSION['email']."',".
"NOW(),". "NOW(),".
"'new',". "'new',".
$config['FAIRYEAR']. $config['FAIRYEAR'].
")"); ")");
email_send("new_participant",$_SESSION['email'],array("FAIRNAME"=>i18n($config['fairname'])),array("REGNUM"=>$regnum)); email_send("new_participant",$_SESSION['email'],array("FAIRNAME"=>i18n($config['fairname'])),array("REGNUM"=>$regnum));
echo i18n("You have been identified as a new registrant. An email has been sent to <b>%1</b> which contains your new <b>registration number</b>. Please check your email to obtain your <b>registration number</b> and then enter it below:",array($_SESSION['email']),array("email address")); echo i18n("You have been identified as a new registrant. An email has been sent to <b>%1</b> which contains your new <b>registration number</b>. Please check your email to obtain your <b>registration number</b> and then enter it below:",array($_SESSION['email']),array("email address"));
echo "<input type=\"hidden\" name=\"action\" value=\"new\">"; echo "<input type=\"hidden\" name=\"action\" value=\"new\">";
}
else
{
echo error(i18n("The email address you entered (%1) appears to be invalid. You must use a proper email address in order to create an account",array($_SESSION['email'])));
echo "<a href=\"register_participants.php\">".i18n("Return to participant registration")."</a>";
$showform=false;
}
} }
} }