saytga kirish
\n"; include_once 'sys/inc/tfoot.php'; } elseif($set['reg_select']=='open_mail' && isset($_GET['id']) && isset($_GET['activation']) && $_GET['activation']!=NULL) { if (mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `id` = '".intval($_GET['id'])."' AND `activation` = '".my_esc($_GET['activation'])."'"),0)==1) { mysql_query("UPDATE `user` SET `activation` = null WHERE `id` = '".intval($_GET['id'])."' LIMIT 1"); $user=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '".intval($_GET['id'])."' LIMIT 1")); mysql_query("INSERT INTO `reg_mail` (`id_user`,`mail`) VALUES ('$user[id]','$user[ank_mail]')"); msg('siz royxatdan muaffaqqiatli otdingiz'); $_SESSION['id_user']=$user['id']; include_once 'sys/inc/tfoot.php'; } } if (isset($_SESSION['step']) && $_SESSION['step']==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `nick` = '".$_SESSION['reg_nick']."'"),0)==0 && isset($_POST['pass1']) && $_POST['pass1']!=NULL && $_POST['pass2'] && $_POST['pass2']!=NULL) { if ($set['reg_select']=='open_mail') { if (!isset($_POST['ank_mail']) || $_POST['ank_mail']==NULL)$err[]='Emailingizni kiriting'; elseif (!preg_match('#^[A-z0-9-\._]+@[A-z0-9]{2,}\.[A-z]{2,4}$#ui',$_POST['ank_mail']))$err[]='Emailda xato'; elseif(mysql_result(mysql_query("SELECT COUNT(*) FROM `reg_mail` WHERE `mail` = '".my_esc($_POST['ank_mail'])."'"),0)!=0) { $err[]="Bu E-mail bilan royxatdan otib bolgan"; } } if (strlen2($_POST['ank_city'])<3)$err[]='Shaharni kiriting '; if (strlen2($_POST['ank_name'])<3)$err[]='Ismingizni yozishni unutmang '; if (strlen2($_POST['ank_g_r'])<4)$err[]='tugilgan yilingizni kiriting '; if (strlen2($_POST['ank_m_r'])<2)$err[]='tugilgan oyingizni kiriting '; if (strlen2($_POST['ank_d_r'])<2)$err[]='tugilgan kuningizni kiriting '; if (strlen2($_POST['pass1'])<6)$err[]='parol 6 belgidan kam bolmasligi kerak'; if (strlen2($_POST['pass1'])>32)$err[]='Parol uzunligi 32 ta belgidan oshib ketdi'; if ($_POST['pass1']!=$_POST['pass2'])$err[]='Parol takrorlanishda xato'; if (!isset($_SESSION['captcha']) || !isset($_POST['chislo']) || $_SESSION['captcha']!=$_POST['chislo']){$err[]='TEKSHIRUV KODI XATO KIRITILDI';} if (!isset($err)) { if ($set['reg_select']=='open_mail') { $activation=md5(passgen()); mysql_query("INSERT INTO `user` (`nick`, `pass`, `date_reg`, `date_last`, `pol`, `activation`, `ank_mail`) values('".$_SESSION['reg_nick']."', '".shif($_POST['pass1'])."', '$time', '$time', '".intval($_POST['pol'])."', '$activation', '".my_esc($_POST['ank_mail'])."')",$db); $id_reg=mysql_insert_id(); $subject = "Profilni faollashtirish"; $regmail = "Assalomu alaykum $_SESSION[reg_nick]
Profilingizni faollashtirish uchun ushbu ssillka bilan kiring:
http://$_SERVER[HTTP_HOST]/reg.php?id=".mysql_insert_id()."&activation=$activation
Agar profilingiz 24-soatda faollashtirilmasa avtomatik tarzda ochiriladi
Xurmat bilan sayt mamuriyati
"; $adds="From: \"password@$_SERVER[HTTP_HOST]\" \n"; //$adds = "From: <$set[reg_mail]>\n"; //$adds .= "X-sender: <$set[reg_mail]>\n"; $adds .= "Content-Type: text/html; charset=utf-8\n"; mail($_POST['ank_mail'],'=?utf-8?B?'.base64_encode($subject).'?=',$regmail,$adds); } else mysql_query("INSERT INTO `user` (`nick`, `pass`, `date_reg`, `date_last`, `pol`) values('".$_SESSION['reg_nick']."', '".shif($_POST['pass1'])."', '$time', '$time', '".intval($_POST['pol'])."')",$db); //valerik mod отправка приветствия при регистрации $uid=mysql_insert_id(); $fname=$_SERVER['DOCUMENT_ROOT']."/sys/dat/reg_mess.txt"; if(is_file($fname)) { $reg_mess_arr=explode('|',file_get_contents($fname)); $reg_mess_on=$reg_mess_arr[0]; $reg_mess_text=$reg_mess_arr[1]; if($reg_mess_on) { $msg=mysql_escape_string($reg_mess_text); $reg_mess_text=str_replace('{name}',$_SESSION['reg_nick'],$reg_mess_text); mysql_query("INSERT INTO `konts` (`id_user`, `id_kont`, `time`) values('$uid', '1', '$time')"); mysql_query("INSERT INTO `konts_aut` (`id_user`, `id_kont`, `aut`) VALUES ('$uid','1', 'ok')"); mysql_query("INSERT INTO `mail` (`id_user`, `id_kont`, `msg`, `time`) values('2', '$uid', '$reg_mess_text', '$time')"); } } $user=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `nick` = '".my_esc($_SESSION['reg_nick'])."' AND `pass` = '".shif($_POST['pass1'])."' LIMIT 1")); if (isset($_POST['ank_d_r']) && (is_numeric($_POST['ank_d_r']) && $_POST['ank_d_r']>0 && $_POST['ank_d_r']<=31 || $_POST['ank_d_r']==NULL)) { $user['ank_d_r']=$_POST['ank_d_r']; if ($user['ank_d_r']==null)$user['ank_d_r']='null'; mysql_query("UPDATE `user` SET `ank_d_r` = $user[ank_d_r] WHERE `id` = '$user[id]' LIMIT 1"); if ($user['ank_d_r']=='null')$user['ank_d_r']=NULL; } else $err[]='tugilgan kunni togri kiriting'; if (isset($_POST['ank_m_r']) && (is_numeric($_POST['ank_m_r']) && $_POST['ank_m_r']>0 && $_POST['ank_m_r']<=12 || $_POST['ank_m_r']==NULL)) { $user['ank_m_r']=$_POST['ank_m_r']; if ($user['ank_m_r']==null)$user['ank_m_r']='null'; mysql_query("UPDATE `user` SET `ank_m_r` = $user[ank_m_r] WHERE `id` = '$user[id]' LIMIT 1"); if ($user['ank_m_r']=='null')$user['ank_m_r']=NULL; } else $err[]='tugilgan oyni togri kiriting'; if (isset($_POST['ank_g_r']) && (is_numeric($_POST['ank_g_r']) && $_POST['ank_g_r']>0 && $_POST['ank_g_r']<=date('Y') || $_POST['ank_g_r']==NULL)) { $user['ank_g_r']=$_POST['ank_g_r']; if ($user['ank_g_r']==null)$user['ank_g_r']='null'; mysql_query("UPDATE `user` SET `ank_g_r` = $user[ank_g_r] WHERE `id` = '$user[id]' LIMIT 1"); if ($user['ank_g_r']=='null')$user['ank_g_r']=NULL; } else $err[]='tugilgan yilni togri kiriting'; if (isset($_POST['ank_city']) && preg_match('#^([A-zА-я\-]*)$#ui', $_POST['ank_city'])) { $user['ank_city']=$_POST['ank_city']; mysql_query("UPDATE `user` SET `ank_city` = '".my_esc($user['ank_city'])."' WHERE `id` = '$user[id]' LIMIT 1"); } else $err[]='Shaharda adashdingiz'; if (isset($_POST['ank_strana']) && preg_match('#^([A-zА-я \-]*)$#ui', $_POST['ank_strana'])) { $user['ank_strana']=$_POST['ank_strana']; mysql_query("UPDATE `user` SET `ank_strana` = '".my_esc($user['ank_strana'])."' WHERE `id` = '$user[id]' LIMIT 1"); } else $err[]='Shahringizni togri kiriting'; if (isset($_POST['ank_name']) && preg_match('#^([A-zА-я \-]*)$#ui', $_POST['ank_name'])) { $user['ank_name']=$_POST['ank_name']; mysql_query("UPDATE `user` SET `ank_name` = '".my_esc($user['ank_name'])."' WHERE `id` = '$user[id]' LIMIT 1"); } else $err[]='Notog`ri formatdagi ism'; if (isset($_SESSION['http_referer'])) mysql_query("INSERT INTO `user_ref` (`time`, `id_user`, `type_input`, `url`) VALUES ('$time', '$user[id]', 'reg', '".my_esc($_SESSION['http_referer'])."')"); $_SESSION['id_user']=$user['id']; setcookie('id_user', $user['id'], time()+60*60*24*365); setcookie('pass', cookie_encrypt($_POST['pass1'],$user['id']), time()+60*60*24*365); if ($set['reg_select']=='open_mail') { msg('Вам необходимо активировать Ваш аккаунт по ссылке, высланной на Email'); } else { msg('Siz ro`yhatdan otdingiz tabriklaymiz.
Saytdan to`liq foydalanish uchun anketangizni to`ldirib oling ANKETANI TO`LDIRISH'); } mysql_query("UPDATE `user` SET `balls` = '".($user['balls']+2000)."' WHERE `id` = '$user[id]' LIMIT 1"); echo "
\n"; if ($set['reg_select']=='open_mail')unset($user); echo "

\n"; echo "Sozlamalar
\n"; echo "

\n"; include_once 'sys/inc/tfoot.php'; } } elseif (isset($_POST['nick']) && $_POST['nick']!=NULL ) { if (mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `nick` = '".my_esc($_POST['nick'])."'"),0)==0) { $nick=my_esc($_POST['nick']); if( !preg_match("#^([A-zА-я0-9])+$#ui", $_POST['nick']))$err[]='В нике присутствуют запрещенные символы'; if (strlen2($nick)<3)$err[]='Короткий ник'; if (strlen2($nick)>32)$err[]='Длина ника превышает 32 символа'; } else $err[]='Login "'.stripcslashes(htmlspecialchars($_POST['nick'])).'" ro`yhatdan o`tib bo`lingan'; if (!isset($err)){ $_SESSION['reg_nick']=$nick; $_SESSION['step']=1; msg ("Shu \"$nick\" loginda bemalol ro`yhatdan o`tishingiz mumkin"); } } err(); if (isset($_SESSION['step']) && $_SESSION['step']==1){ echo "
\n"; } else { echo "
\n"; } echo "saytga kirish
\n"; include_once 'sys/inc/tfoot.php'; ?>