root/branches/dsss-smi/reg.php

<?PHP
/*
 *  Copyright (c) 2006  Gregor Richards
 *  
 *  Permission is hereby granted, free of charge, to any person obtaining a
 *  copy of this software and associated documentation files (the "Software"),
 *  to deal in the Software without restriction, including without limitation
 *  the rights to use, copy, modify, merge, publish, distribute, sublicense,
 *  and/or sell copies of the Software, and to permit persons to whom the
 *  Software is furnished to do so, subject to the following conditions:
 *  
 *  The above copyright notice and this permission notice shall be included in
 *  all copies or substantial portions of the Software.
 *  
 *  THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 *  IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 *  FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 *  AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 *  LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
 *  FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
 *  DEALINGS IN THE SOFTWARE.
 */

require("chkpw.php");

if (!isset($_POST['un']) ||
    !isset($_POST['pw']) ||
    !isset($_POST['pw2'])) die("Username, password or second password not supplied!");

// check that the username is valid
if (preg_match("/[^A-Za-z0-9-'_\[\]]/", $_POST['un'])) die("Invalid username.");

// check that the passwords match
if ($_POST['pw'] != $_POST['pw2']) die("Passwords don't match.");

// check that the user does not already exist
if (isset($pws[$_POST['un']])) die("Username already exists.");

// add it
if (!adduser($_POST['un'], $_POST['pw'])) die("Failed to register user.");
?>
<HTML><head><title>DSSS Source Management Interface - Registration</title></head><body>
You are now registered. Go back in your browser and log in to start using DSSS SMI.
</body></HTML>