\n"; if ($set['guest_select']=='1') if ((!isset($_SESSION['refer']) || $_SESSION['refer']==NULL) && isset($_SERVER['HTTP_REFERER']) && $_SERVER['HTTP_REFERER']!=NULL && !preg_match('#mail\.php#',$_SERVER['HTTP_REFERER'])) $_SESSION['refer']=str_replace('&','&',preg_replace('#^http://[^/]*/#','/', $_SERVER['HTTP_REFERER'])); if ($set['reg_select']=='close') { $err=''; err(); echo "Авторизация
\n"; include_once 'sys/inc/tfoot.php'; } elseif($set['reg_select']=='open_mail' && isset($_GET['id']) && isset($_GET['activation']) && $_GET['activation']!=NULL) { if (mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `id` = '".intval($_GET['id'])."' AND `activation` = '".my_esc($_GET['activation'])."'"),0)==1) { mysql_query("UPDATE `user` SET `activation` = null WHERE `id` = '".intval($_GET['id'])."' LIMIT 1"); $user=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '".intval($_GET['id'])."' LIMIT 1")); mysql_query("INSERT INTO `reg_mail` (`id_user`,`mail`) VALUES ('$user[id]','$user[ank_mail]')"); msg(''); $_SESSION['id_user']=$user['id']; include_once 'sys/inc/tfoot.php'; } } if (isset($_SESSION['step']) && $_SESSION['step']==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `nick` = '".$_SESSION['reg_nick']."'"),0)==0 && isset($_POST['pass1']) && $_POST['pass1']!=NULL && $_POST['pass2'] && $_POST['pass2']!=NULL) { if ($set['reg_select']=='open_mail') { if (!isset($_POST['ank_mail']) || $_POST['ank_mail']==NULL)$err[]='Неоходимо ввести Email'; elseif (!preg_match('#^[A-z0-9-\._]+@[A-z0-9]{2,}\.[A-z]{2,4}$#ui',$_POST['ank_mail']))$err[]='Неверный формат Email'; elseif(mysql_result(mysql_query("SELECT COUNT(*) FROM `reg_mail` WHERE `mail` = '".my_esc($_POST['ank_mail'])."'"),0)!=0) { $err[]=""; } } $fuck_nick=mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `nick`='$_POST[ank_name]'"),0); $fuck_name=mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `ank_firstname`='$_POST[ank_firstname]'"),0); $fuck_name=mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `ank_lastname`='$_POST[ank_lastname]'"),0); if ( !preg_match("#^([A-zА-я0-9\-\_\ ])+$#ui", $_POST['ank_firstname']))$err[]=''; if ( !preg_match("#^([A-zА-я0-9\-\_\ ])+$#ui", $_POST['ank_lastname']))$err[]=''; if (strlen2($_POST['pass1'])<6)$err[]=''; if (strlen2($_POST['pass1'])>32)$err[]=''; if ($_POST['pass1']!=$_POST['pass2'])$err[]=''; if(!isset($_SESSION['captcha']) || !isset($_POST['chislo']) || $_SESSION['captcha']!=$_POST['chislo']){$err[]='';} if (!isset($err)) { if ($set['reg_select']=='open_mail') { $activation=md5(passgen()); mysql_query("INSERT INTO `user` (`nick`, `pass`, `date_reg`, `date_last`, `pol`, `activation`, `ank_mail`, `ank_firstname`, `ank_lastname`) values('".$_SESSION['reg_nick']."', '".shif($_POST['pass1'])."', '$time', '$time', '".intval($_POST['pol'])."', '$activation', '".my_esc($_POST['ank_mail'])."', '".my_esc($_POST['ank_firstname'])."', '".my_esc($_POST['ank_lastname'])."')",$db); $id_reg=mysql_insert_id(); $subject = "Активация аккаунта"; $regmail = "Здравствуйте $_SESSION[reg_nick]
Для активации Вашего аккаунта перейдите по ссылке:
http://$_SERVER[HTTP_HOST]/reg.php?id=".mysql_insert_id()."&activation=$activation
Если аккаунт не будет активирован в течении 24 часов, он будет удален
С уважением, администрация сайта
"; $adds="From: \"password@$_SERVER[HTTP_HOST]\" \n"; $adds .= "Content-Type: text/html; charset=utf-8\n"; mail($_POST['ank_mail'],'=?utf-8?B?'.base64_encode($subject).'?=',$regmail,$adds); } else mysql_query("INSERT INTO `user` (`nick`, `pass`, `date_reg`, `date_last`, `pol`, `ank_firstname`, `ank_lastname`) values('".$_SESSION['reg_nick']."', '".shif($_POST['pass1'])."', '$time', '$time', '".intval($_POST['pol'])."', '".my_esc($_POST['ank_firstname'])."','".my_esc($_POST['ank_lastname'])."')",$db); //valerik mod отправка приветствия при регистрации $uid=mysql_insert_id(); $fname=$_SERVER['DOCUMENT_ROOT']."/sys/dat/reg_mess.txt"; if(is_file($fname)) { $reg_mess_arr=explode('|',file_get_contents($fname)); $reg_mess_on=$reg_mess_arr[0]; $reg_mess_text=$reg_mess_arr[1]; if($reg_mess_on) { $msg=mysql_escape_string($reg_mess_text); $reg_mess_text=str_replace('{name}',$_SESSION['reg_nick'],$reg_mess_text); mysql_query("INSERT INTO `konts` (`id_user`, `id_kont`, `time`) values('$uid', '0', '$time')"); mysql_query("INSERT INTO `konts_aut` (`id_user`, `id_kont`, `aut`) VALUES ('$uid','0', 'ok')"); mysql_query("INSERT INTO `mail` (`id_user`, `id_kont`, `msg`, `time`) values('0', '$uid', '$reg_mess_text', '$time')"); } } //------------------------------------------------ $uid=mysql_insert_id(); $fname=$_SERVER['DOCUMENT_ROOT']."/sys/dat/reg_mess.txt"; if(is_file($fname)) { $reg_mess_arr=explode('|',file_get_contents($fname)); $reg_mess_on=$reg_mess_arr[0]; $reg_mess_text=$reg_mess_arr[1]; if($reg_mess_on) { $msg=mysql_escape_string($reg_mess_text); $reg_mess_text=str_replace('{name}',$_SESSION['reg_nick'],$reg_mess_text); mysql_query("INSERT INTO `konts` (`id_user`, `id_kont`, `time`) values('$uid', '1', '$time')"); mysql_query("INSERT INTO `konts_aut` (`id_user`, `id_kont`, `aut`) VALUES ('$uid','1', 'ok')"); mysql_query("INSERT INTO `mail` (`id_user`, `id_kont`, `msg`, `time`) values('0', '$uid', '$reg_mess_text', '$time')"); } } //------------------------------------------------ $user=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `nick` = '".my_esc($_SESSION['reg_nick'])."' AND `pass` = '".shif($_POST['pass1'])."' LIMIT 1")); if (isset($_SESSION['http_referer'])) mysql_query("INSERT INTO `user_ref` (`time`, `id_user`, `type_input`, `url`) VALUES ('$time', '$user[id]', 'reg', '".my_esc($_SESSION['http_referer'])."')"); $_SESSION['id_user']=$user['id']; setcookie('id_user', $user['id'], time()+60*60*24*365); setcookie('pass', cookie_encrypt($_POST['pass1'],$user['id']), time()+60*60*24*365); if ($set['reg_select']=='open_mail') { msg('

Вам необходимо активировать Ваш аккаунт по ссылке, высланной на Email

'); } else { msg('

Регистрация прошла успешно

'); mysql_query("INSERT INTO `users_konts` (`id_user`, `id_kont`, `time`) VALUES ('$user[id]', '$ank[id]', '$time')"); } //Реферальская система - начало if (isset($_SESSION['ref']) && is_numeric($_SESSION['ref']) && mysql_result(mysql_query("select count(*) from `user` where `id` = '".intval($_SESSION['ref'])."'"),0)!=0) { mysql_query("update `user` set `ref` = '".intval($_SESSION['ref'])."' where `id` = '$user[id]' limit 1"); mysql_query("update `user` set `balls` = `balls`+$set[refballs] where `id` = '".intval($_SESSION['ref'])."' limit 1"); } //Реферальская система - конец if (isset($_SESSION['ref']) && is_numeric($_SESSION['ref']) && mysql_result(mysql_query("select count(*) from `user` where `id` = '".intval($_SESSION['ref'])."'"),0)!=0) { mysql_query("update `user` set `ref` = '".intval($_SESSION['ref'])."' where `id` = '$user[id]' limit 1"); mysql_query("update `user` set `balls` = `balls`+$set[refballs] where `id` = '".intval($_SESSION['ref'])."' limit 1"); } echo "