2 // This file uses two additional include files:
4 // 1) templates/register_notice.txt - displayed above the registration form
5 // 2) register_expire_do.php - contains user expiration queries when necessary
7 set_include_path(dirname(__FILE__
) ."/include" . PATH_SEPARATOR
.
10 require_once 'classes/ttrssmailer.php';
11 require_once "autoload.php";
12 require_once "functions.php";
13 require_once "sessions.php";
14 require_once "sanity_check.php";
15 require_once "config.php";
16 require_once "db.php";
20 $action = $_REQUEST["action"];
22 if (!init_plugins()) return;
24 if ($_REQUEST["format"] == "feed") {
25 header("Content-Type: text/xml");
27 print '<?xml version="1.0" encoding="utf-8"?>';
28 print "<feed xmlns=\"http://www.w3.org/2005/Atom\">
29 <id>".htmlspecialchars(SELF_URL_PATH
. "/register.php")."</id>
30 <title>Tiny Tiny RSS registration slots</title>
31 <link rel=\"self\" href=\"".htmlspecialchars(SELF_URL_PATH
. "/register.php?format=feed")."\"/>
32 <link rel=\"alternate\" href=\"".htmlspecialchars(SELF_URL_PATH
)."\"/>";
34 if (ENABLE_REGISTRATION
) {
35 $result = db_query( "SELECT COUNT(*) AS cu FROM ttrss_users");
36 $num_users = db_fetch_result($result, 0, "cu");
38 $num_users = REG_MAX_USERS
- $num_users;
39 if ($num_users < 0) $num_users = 0;
40 $reg_suffix = "enabled";
43 $reg_suffix = "disabled";
47 <id>".htmlspecialchars(SELF_URL_PATH
)."/register.php?$num_users"."</id>
48 <link rel=\"alternate\" href=\"".htmlspecialchars(SELF_URL_PATH
. "/register.php")."\"/>";
50 print "<title>$num_users slots are currently available, registration $reg_suffix</title>";
51 print "<summary>$num_users slots are currently available, registration $reg_suffix</summary>";
60 /* Remove users which didn't login after receiving their registration information */
62 if (DB_TYPE
== "pgsql") {
63 db_query( "DELETE FROM ttrss_users WHERE last_login IS NULL
64 AND created < NOW() - INTERVAL '1 day' AND access_level = 0");
66 db_query( "DELETE FROM ttrss_users WHERE last_login IS NULL
67 AND created < DATE_SUB(NOW(), INTERVAL 1 DAY) AND access_level = 0");
70 if (file_exists("register_expire_do.php")) {
71 require_once "register_expire_do.php";
74 if ($action == "check") {
75 header("Content-Type: application/xml");
77 $login = trim(db_escape_string( $_REQUEST['login']));
79 $result = db_query( "SELECT id FROM ttrss_users WHERE
80 LOWER(login) = LOWER('$login')");
82 $is_registered = db_num_rows($result) > 0;
86 printf("%d", $is_registered);
96 <title
>Create
new account
</title
>
97 <meta http
-equiv
="Content-Type" content
="text/html; charset=utf-8">
98 <link rel
="stylesheet" type
="text/css" href
="css/utility.css">
99 <script type
="text/javascript" src
="js/functions.js"></script
>
100 <script type
="text/javascript" src
="lib/prototype.js"></script
>
101 <script type
="text/javascript" src
="lib/scriptaculous/scriptaculous.js?load=effects,dragdrop,controls"></script
>
104 <script type
="text/javascript">
106 function checkUsername() {
109 var f
= document
.forms
['register_form'];
110 var login
= f
.login
.value
;
113 new Effect
.Highlight(f
.login
);
114 f
.sub_btn
.disabled
= true;
118 var query
= "register.php?action=check&login=" +
121 new Ajax
.Request(query
, {
122 onComplete
: function(transport
) {
126 var reply
= transport
.responseXML
;
128 var result
= reply
.getElementsByTagName('result')[0];
129 var result_code
= result
.firstChild
.nodeValue
;
131 if (result_code
== 0) {
132 new Effect
.Highlight(f
.login
, {startcolor
: '#00ff00'});
133 f
.sub_btn
.disabled
= false;
135 new Effect
.Highlight(f
.login
, {startcolor
: '#ff0000'});
136 f
.sub_btn
.disabled
= true;
139 exception_error("checkUsername_callback", e
);
145 exception_error("checkUsername", e
);
152 function validateRegForm() {
155 var f
= document
.forms
['register_form'];
157 if (f
.login
.value
.length
== 0) {
158 new Effect
.Highlight(f
.login
);
162 if (f
.email
.value
.length
== 0) {
163 new Effect
.Highlight(f
.email
);
167 if (f
.turing_test
.value
.length
== 0) {
168 new Effect
.Highlight(f
.turing_test
);
175 exception_error("validateRegForm", e
);
184 <div
class="floatingLogo"><img src
="images/logo_small.png"></div
>
186 <h1
><?php
echo __("Create new account") ?
></h1
>
188 <div
class="content">
191 if (!ENABLE_REGISTRATION
) {
192 print_error(__("New user registrations are administratively disabled."));
194 print "<p><form method=\"GET\" action=\"backend.php\">
195 <input type=\"hidden\" name=\"op\" value=\"logout\">
196 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">
202 <?php
if (REG_MAX_USERS
> 0) {
203 $result = db_query( "SELECT COUNT(*) AS cu FROM ttrss_users");
204 $num_users = db_fetch_result($result, 0, "cu");
207 <?php
if (!REG_MAX_USERS ||
$num_users < REG_MAX_USERS
) { ?
>
209 <!-- If you have any rules
or ToS you
'd like to display, enter them here -->
211 <?php if (file_exists("templates/register_notice.txt")) {
212 require_once "templates/register_notice.txt";
215 <?php if (!$action) { ?>
217 <p><?php echo __('Your temporary password will be sent to the specified email
. Accounts
, which were not logged in once
, are erased automatically
24 hours after temporary password is sent
.') ?></p>
219 <form action="register.php" method="POST" name="register_form">
220 <input type="hidden" name="action" value="do_register">
223 <td><?php echo __('Desired login
:') ?></td><td>
224 <input name="login" required>
226 <input type="submit" value="<?php echo __('Check availability
') ?>" onclick='return checkUsername()'>
228 <tr><td><?php echo __('Email
:') ?></td><td>
229 <input name="email" type="email" required>
231 <tr><td><?php echo __('How much is two plus two
:') ?></td><td>
232 <input name="turing_test" required></td></tr>
233 <tr><td colspan="2" align="right">
234 <input type="submit" name="sub_btn" value="<?php echo __('Submit registration
') ?>"
235 disabled="disabled" onclick='return validateRegForm()'>
240 <?php print "<p><form method=\"GET\" action=\"index.php\">
241 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">
244 <?php } else if ($action == "do_register") { ?>
247 $login = mb_strtolower(trim(db_escape_string( $_REQUEST["login"])));
248 $email = trim(db_escape_string( $_REQUEST["email"]));
249 $test = trim(db_escape_string( $_REQUEST["turing_test"]));
251 if (!$login || !$email || !$test) {
252 print_error(__("Your registration information is incomplete."));
253 print "<p><form method=\"GET\" action=\"index.php\">
254 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">
259 if ($test == "four" || $test == "4") {
261 $result = db_query( "SELECT id FROM ttrss_users WHERE
264 $is_registered = db_num_rows($result) > 0;
266 if ($is_registered) {
267 print_error(__('Sorry
, this username is already taken
.'));
268 print "<p><form method=\"GET\" action=\"index.php\">
269 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">
273 $password = make_password();
275 $salt = substr(bin2hex(get_random_bytes(125)), 0, 250);
276 $pwd_hash = encrypt_password($password, $salt, true);
278 db_query( "INSERT INTO ttrss_users
279 (login,pwd_hash,access_level,last_login, email, created, salt)
280 VALUES ('$login', '$pwd_hash', 0, null, '$email', NOW(), '$salt')");
282 $result = db_query( "SELECT id FROM ttrss_users WHERE
283 login = '$login' AND pwd_hash = '$pwd_hash'");
285 if (db_num_rows($result) != 1) {
286 print_error(__('Registration failed
.'));
287 print "<p><form method=\"GET\" action=\"index.php\">
288 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">
292 $new_uid = db_fetch_result($result, 0, "id");
294 initialize_user( $new_uid);
298 "You are receiving this message, because you (or somebody else) have opened\n".
299 "an account at Tiny Tiny RSS.\n".
301 "Your login information is as follows:\n".
304 "Password: $password\n".
306 "Don't forget to login at least once to your
new account
, otherwise\n
".
307 "it will be deleted in
24 hours
.\n".
309 "If that wasn
't you, just ignore this message. Thanks.";
311 $mail = new ttrssMailer();
312 $mail->IsHTML(false);
313 $rc = $mail->quickMail($email, "", "Registration information for Tiny Tiny RSS", $reg_text, false);
315 if (!$rc) print_error($mail->ErrorInfo);
322 "New user had registered at your Tiny Tiny RSS installation.\n".
328 $mail = new ttrssMailer();
329 $mail->IsHTML(false);
330 $rc = $mail->quickMail(REG_NOTIFY_ADDRESS, "", "Registration notice for Tiny Tiny RSS", $reg_text, false);
331 if (!$rc) print_error($mail->ErrorInfo);
333 print_notice(__("Account created successfully."));
335 print "<p><form method=\"GET\" action=\"index.php\">
336 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">
344 print_error('Plese check the form again
, you have failed the robot test
.');
345 print "<p><form method=\"GET\" action=\"index.php\">
346 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">
355 <?php print_notice(__('New user registrations are currently closed
.')) ?>
357 <?php print "<p><form method=\"GET\" action=\"index.php\">
358 <input type=\"submit\" value=\"".__("Return to Tiny Tiny RSS")."\">