X-Git-Url: http://git.harvie.cz/?a=blobdiff_plain;f=wwwroot%2Finc%2Feventz%2Fregister_users.inc;h=ebb06a6eb8e9a169b9b7a738a84867195a1a363b;hb=ac3bdc7218ef24f47f2d6adaae65c59079900665;hp=13460177f89100699a004d5698c5e1957c469f87;hpb=51ff32267c4949bad6a8dddc502cbc01ed56edc8;p=mirrors%2FKyberia-bloodline.git

diff --git a/wwwroot/inc/eventz/register_users.inc b/wwwroot/inc/eventz/register_users.inc
index 1346017..ebb06a6 100644
--- a/wwwroot/inc/eventz/register_users.inc
+++ b/wwwroot/inc/eventz/register_users.inc
@@ -1,51 +1,54 @@
+<?
+// XXX not used at all. Registration is performed from cron
 function register_users() {
 global $permissions,$node,$db,$error;
 $user_id=$_SESSION['user_id'];
 $user_name=$_SESSION['user_name'];
-$hello="ahoj, tymto ta vitam v systeme kyberia.sk. do systemu ta zaregistrovala moja malickost. v pripade ze budes mat akykolvek problem, kontaktuj ma prosim cez postunnako prve by si mal navstivit forum Zaciname s kyberiounntoto je automaticky vygenerovana sprava";
-require(SYSTEM_ROOT."/inc/phpmailer.inc");
+$hello="ahoj, tymto ta vitam v systeme ".SYSTEM_URL.". do systemu ta zaregistrovala moja malickost. v pripade ze budes mat akykolvek problem, kontaktuj ma prosim cez postunnako prve by si mal navstivit forum Zaciname s kyberiou\n\ntoto je automaticky vygenerovana sprava";
+require(INCLUDE_DIR."phpmailer.inc");
 $mail = new PHPMailer();
-$mail->IsSMTP(); // send via SMTP
-$mail->Host = "onyx.hysteria.sk"; // SMTP servers
-$mail->From = "admin@kyberia.sk";
-$mail->FromName = "kyberia.sk admin";
+$mail->IsSMTP(); // send via SMTP // XXX use constants from config file
+$mail->Host = "molly.kyberia.cz"; // SMTP servers
+$mail->From = "root@kyberia.cz";
+$mail->FromName = "kyberia.cz admin";
 $mail->WordWrap = 50; // set word wrap
-$mail->Subject = "kyberia.sk uspesna registracia";
+$mail->Subject = "kyberia.cz uspesna registracia";
 
 
 if (!$permissions['w']) {
-$error="you don't have permissions for performing this event";
-return false;
+	$error="you don't have permissions for performing this event";
+	return false;
 }
 
-foreach ($_POST['waiting'] as $user =>$value) {
-$set=$db->query("select email,login,node_creator from users left join nodes on nodes.node_id=users.user_id where user_id='$user'");
-$set->next();
-$email=$set->getString('email');
-$login=$set->getString('login');
+foreach ($_POST['waiting'] as $user =>$value) { //XXX SQLi
+	$set=$db->query("select email,login,node_creator from users".
+			"left join nodes on nodes.node_id=users.user_id".
+			"where user_id='$user'");
+	$set->next();
+	$email=$set->getString('email');
+	$login=$set->getString('login');
 
-$application_id=$set->getString('node_creator');
+	$application_id=$set->getString('node_creator');
 
-$params['node_creator']=$user_id;
-$params['node_parent']=$application_id;
-$params['node_name']="$login registered";
-$params['node_content']="user $login successfully registered by $user_name";
-nodes::addNode($params);
-
-$db->query("update nodes set node_creator=node_id where node_id='$user'");
-$db->query("insert into mail set mail_user='$user',mail_to='$user',mail_from='$user_id',mail_text='$hello'");
-$db->query("insert into mail set mail_user='$user_id',mail_to='$user',mail_from='$user_id',mail_text='$hello'");
-$db->query("update users set user_mail='1',user_mail_name='$user_name' where user_id='$user'");
-$mail->ClearAddresses();
-$mail->AddAddress($email); // optional name
-$mail->AltBody = "bol si uspesne zaregistrovany do komunity kyberia.sk s loginom $login . njoy";
-if(!$mail->Send())
-{
-$error="could not sent mail";
-return false;
-}
+	$params['node_creator']=$user_id;
+	$params['node_parent']=$application_id;
+	$params['node_name']="$login registered";
+	$params['node_content']="user $login successfully registered by $user_name";
+	nodes::addNode($params);
 
+	$db->query("update nodes set node_creator=node_id where node_id='$user'");
+	$db->query("insert into mail set mail_user='$user',mail_to='$user',mail_from='$user_id',mail_text='$hello'");
+	$db->query("insert into mail set mail_user='$user_id',mail_to='$user',mail_from='$user_id',mail_text='$hello'");
+	$db->query("update users set user_mail='1',user_mail_name='$user_name' where user_id='$user'");
+	$mail->ClearAddresses();
+	$mail->AddAddress($email); // optional name
+	$mail->AltBody = "bol si uspesne zaregistrovany do komunity "
+			.SYSTEM_URL." s loginom $login . njoy";
+	if(!$mail->Send()){
+		$error="could not sent mail";
+		return false;
+	}
 }
 return true;
 }
-?>
\ No newline at end of file
+?>