wwwroot/inc/eventz/register_users.inc

   1 <?
   2 // XXX not used at all. Registration is performed from cron
   3 function register_users() {
   4 global $permissions,$node,$db,$error;
   5 $user_id=$_SESSION['user_id'];
   6 $user_name=$_SESSION['user_name'];
   7 $hello="ahoj, tymto ta vitam v systeme ".SYSTEM_URL.". do systemu ta zaregistrovala moja malickost. v pripade ze budes mat akykolvek problem, kontaktuj ma prosim cez postunnako prve by si mal navstivit forum Zaciname s kyberiou\n\ntoto je automaticky vygenerovana sprava";
   8 require(INCLUDE_DIR."phpmailer.inc");
   9 $mail = new PHPMailer();
  10 $mail->IsSMTP(); // send via SMTP // XXX use constants from config file
  11 $mail->Host = "molly.kyberia.cz"; // SMTP servers
  12 $mail->From = "root@kyberia.cz";
  13 $mail->FromName = "kyberia.cz admin";
  14 $mail->WordWrap = 50; // set word wrap
  15 $mail->Subject = "kyberia.cz uspesna registracia";
  16
  17
  18 if (!$permissions['w']) {
  19         $error="you don't have permissions for performing this event";
  20         return false;
  21 }
  22
  23 foreach ($_POST['waiting'] as $user =>$value) { //XXX SQLi
  24         $set=$db->query("select email,login,node_creator from users".
  25                         "left join nodes on nodes.node_id=users.user_id".
  26                         "where user_id='$user'");
  27         $set->next();
  28         $email=$set->getString('email');
  29         $login=$set->getString('login');
  30
  31         $application_id=$set->getString('node_creator');
  32
  33         $params['node_creator']=$user_id;
  34         $params['node_parent']=$application_id;
  35         $params['node_name']="$login registered";
  36         $params['node_content']="user $login successfully registered by $user_name";
  37         nodes::addNode($params);
  38
  39         $db->query("update nodes set node_creator=node_id where node_id='$user'");
  40         $db->query("insert into mail set mail_user='$user',mail_to='$user',mail_from='$user_id',mail_text='$hello'");
  41         $db->query("insert into mail set mail_user='$user_id',mail_to='$user',mail_from='$user_id',mail_text='$hello'");
  42         $db->query("update users set user_mail='1',user_mail_name='$user_name' where user_id='$user'");
  43         $mail->ClearAddresses();
  44         $mail->AddAddress($email); // optional name
  45         $mail->AltBody = "bol si uspesne zaregistrovany do komunity "
  46                         .SYSTEM_URL." s loginom $login . njoy";
  47         if(!$mail->Send()){
  48                 $error="could not sent mail";
  49                 return false;
  50         }
  51 }
  52 return true;
  53 }
  54 ?>