2 /***************************************************************************
3 * Copyright (C) 2003-2007 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
22 class RegisterModule
extends PLModule
27 'register' => $this->make_hook('register', AUTH_PUBLIC
),
28 'register/end' => $this->make_hook('end', AUTH_PUBLIC
),
29 'register/end.php' => $this->make_hook('end_old', AUTH_PUBLIC
),
30 'register/success' => $this->make_hook('success', AUTH_MDP
),
34 function handler_register(&$page, $hash = null
)
37 $sub_state = S
::v('sub_state', Array());
38 if (!isset($sub_state['step'])) {
39 $sub_state['step'] = 0;
41 if (!isset($sub_state['backs'])) {
42 $sub_state['backs'] = array();
44 if (Get
::has('back') && Get
::i('back') < $sub_state['step']) {
45 $sub_state['step'] = max(0,Get
::i('back'));
47 unset($state['backs']);
48 $sub_state['backs'][] = $state;
49 if (count($sub_state['backs']) == 3) {
50 $alert .= "Tentative d'inscription tres hesitante - ";
54 // Compatibility with old sources, keep it atm
55 if (!$hash && Env
::has('hash')) {
56 $hash = Env
::v('hash');
61 "SELECT m.uid, u.promo, u.nom, u.prenom, u.matricule, FIND_IN_SET('watch', u.flags)
62 FROM register_marketing AS m
63 INNER JOIN auth_user_md5 AS u ON u.user_id = m.uid
64 WHERE m.hash={?}", $hash);
65 if (list($uid, $promo, $nom, $prenom, $ourmat, $watch) = $res->fetchOneRow()) {
66 $sub_state['uid'] = $uid;
67 $sub_state['hash'] = $hash;
68 $sub_state['promo'] = $promo;
69 $sub_state['nom'] = $nom;
70 $sub_state['prenom'] = $prenom;
71 $sub_state['ourmat'] = $ourmat;
72 $sub_state['watch'] = $watch;
75 "REPLACE INTO register_mstats (uid,sender,success)
76 SELECT m.uid, m.sender, 0
77 FROM register_marketing AS m
78 WHERE m.hash", $sub_state['hash']);
82 switch ($sub_state['step']) {
84 require_once('wiki.inc.php');
85 wiki_require_page('Reference.Charte');
86 if (Post
::has('step1')) {
87 $sub_state['step'] = 1;
88 if (isset($sub_state['hash'])) {
89 $sub_state['step'] = 3;
90 require_once(dirname(__FILE__
) . '/register/register.inc.php');
91 create_aliases($sub_state);
97 if (Post
::has('promo')) {
98 $promo = Post
::i('promo');
99 $res = XDB
::query("SELECT COUNT(*)
101 WHERE perms='pending' AND deces = '0000-00-00'
104 if (!$res->fetchOneCell()) {
105 $err = "La promotion saisie est incorrecte ou tous les camardes de cette promo sont inscrits !";
107 $sub_state['step'] = 2;
108 $sub_state['promo'] = $promo;
109 if ($promo >= 1996 && $promo<2000) {
110 $sub_state['mat'] = ($promo %
100)*10 . '???';
111 } elseif($promo >= 2000) {
112 $sub_state['mat'] = 100 +
($promo %
100) . '???';
120 require_once(dirname(__FILE__
) . '/register/register.inc.php');
121 $sub_state['prenom'] = Post
::v('prenom');
122 $sub_state['nom'] = Post
::v('nom');
123 $sub_state['mat'] = Post
::v('mat');
124 $err = check_new_user($sub_state);
126 if ($err !== true
) { break; }
127 $err = create_aliases($sub_state);
130 $sub_state['step'] = 3;
137 require_once(dirname(__FILE__
) . '/register/register.inc.php');
138 if (!isvalid_email(Post
::v('email'))) {
139 $err[] = "Le champ 'E-mail' n'est pas valide.";
140 } elseif (!isvalid_email_redirection(Post
::v('email'))) {
141 $err[] = $sub_state['forlife']." doit renvoyer vers un email existant ".
142 "valide, en particulier, il ne peut pas être renvoyé vers lui-même.";
144 $birth = trim(Env
::v('naissance'));
145 if (!preg_match('/^[0-3][0-9][01][0-9][12][90][0-9][0-9]$/', $birth)) {
146 $err[] = "La 'Date de naissance' n'est pas correcte.";
148 $year = (int)substr($birth, 4, 4);
149 $promo = (int)$sub_state['promo'];
150 if ($year > $promo - 15 ||
$year < $promo - 30) {
151 $err[] = "La 'Date de naissance' n'est pas correcte.";
152 $alert = "Date de naissance incorrecte a l'inscription - ";
156 // Check if the given email is known as dangerous
157 $res = Xdb
::iterRow("SELECT w.state, w.description, a.alias
159 INNER JOIN emails_watch AS w ON (e.email = w.email AND w.state != 'safe')
160 INNER JOIN aliases AS a ON (e.uid = a.id AND a.type = 'a_vie')
162 ORDER BY a.alias", Post
::v('email'));
164 while(list($gstate, $gdescription, $alias) = $res->next()) {
166 $description = $gdescription;
169 if (count($aliases) != 0) {
170 $alert .= "Email surveille propose a l'inscription - ";
172 if ($sub_state['watch']) {
173 $alter .= "Inscription d'un utilisateur surveillé - ";
176 if (check_ip('unsafe')) {
181 $err = join('<br />', $err);
183 $sub_state['naissance'] = sprintf("%s-%s-%s",
187 $sub_state['email'] = Post
::v('email');
188 if (check_ip('unsafe')) {
189 $err = "Une erreur s'est produite lors de l'inscription."
190 . " Merci de contacter <a href='register@polytechnique.org'>register@polytechnique.org</a>"
191 . " pour nous faire part de cette erreur";
192 $alert .= "Tentative d'inscription depuis une IP surveillee";
194 $sub_state['step'] = 4;
195 if (count($sub_state['backs']) >= 3) {
196 $alert .= "Fin d'une inscription hésitante";
198 finish_ins($sub_state);
205 $_SESSION['sub_state'] = $sub_state;
207 send_warning_mail($alert);
209 $page->changeTpl('register/step'.intval($sub_state['step']).'.tpl');
215 function handler_end_old(&$page)
217 return $this->handler_end($page, Env
::v('hash'));
220 function handler_end(&$page, $hash = null
)
224 $page->changeTpl('register/end.tpl');
225 $_SESSION['sub_state'] = array('step' => 5);
226 require_once('user.func.inc.php');
230 "SELECT r.uid, r.forlife, r.bestalias, r.mailorg2,
231 r.password, r.email, r.naissance, u.nom, u.prenom,
233 FROM register_pending AS r
234 INNER JOIN auth_user_md5 AS u ON r.uid = u.user_id
235 WHERE hash={?} AND hash!='INSCRIT'", $hash);
238 if (!$hash ||
!list($uid, $forlife, $bestalias, $mailorg2, $password, $email,
239 $naissance, $nom, $prenom, $promo, $femme) = $res->fetchOneRow())
241 $page->kill("<p>Cette adresse n'existe pas, ou plus, sur le serveur.</p>
242 <p>Causes probables :</p>
244 <li>Vérifie que tu visites l'adresse du dernier
245 e-mail reçu s'il y en a eu plusieurs.</li>
246 <li>Tu as peut-être mal copié l'adresse reçue par
247 mail, vérifie-la à la main.</li>
248 <li>Tu as peut-être attendu trop longtemps pour
249 confirmer. Les pré-inscriptions sont annulées
250 tous les 30 jours.</li>
251 <li>Tu es en fait déjà inscrit.</li>
257 /***********************************************************/
258 /****************** REALLY CREATE ACCOUNT ******************/
259 /***********************************************************/
261 XDB
::execute('UPDATE auth_user_md5
262 SET password={?}, perms="user",
263 date=NOW(), naissance={?}, date_ins = NOW()
264 WHERE user_id={?}', $password, $naissance, $uid);
265 XDB
::execute('REPLACE INTO auth_user_quick (user_id) VALUES ({?})', $uid);
266 XDB
::execute('INSERT INTO aliases (id,alias,type)
267 VALUES ({?}, {?}, "a_vie")', $uid,
269 XDB
::execute('INSERT INTO aliases (id,alias,type,flags)
270 VALUES ({?}, {?}, "alias", "bestalias")',
273 XDB
::execute('INSERT INTO aliases (id,alias,type)
274 VALUES ({?}, {?}, "alias")', $uid,
278 require_once('emails.inc.php');
279 $redirect = new Redirect($uid);
280 $redirect->add_email($email);
282 // on cree un objet logger et on log l'inscription
283 $logger = new CoreLogger($uid);
284 $logger->log('inscription', $email);
286 XDB
::execute('UPDATE register_pending SET hash="INSCRIT" WHERE uid={?}', $uid);
289 $platal->on_subscribe($forlife, $uid, $promo, $password);
291 $mymail = new PlMailer('register/inscription.reussie.tpl');
292 $mymail->assign('forlife', $forlife);
293 $mymail->assign('prenom', $prenom);
296 if (!start_connexion($uid,false
)) {
299 $_SESSION['auth'] = AUTH_MDP
;
301 /***********************************************************/
302 /************* envoi d'un mail au démarcheur ***************/
303 /***********************************************************/
305 "SELECT DISTINCT sa.alias, IF(s.nom_usage,s.nom_usage,s.nom) AS nom,
306 s.prenom, FIND_IN_SET('femme', s.flags) AS femme
307 FROM register_marketing AS m
308 INNER JOIN auth_user_md5 AS s ON ( m.sender = s.user_id )
309 INNER JOIN aliases AS sa ON ( sa.id = m.sender
310 AND FIND_IN_SET('bestalias', sa.flags) )
311 WHERE m.uid = {?}", $uid);
312 XDB
::execute("UPDATE register_mstats SET success=NOW() WHERE uid={?}", $uid);
314 while (list($salias, $snom, $sprenom, $sfemme) = $res->next()) {
315 $mymail = new PlMailer();
316 $mymail->setSubject("$prenom $nom s'est inscrit à Polytechnique.org !");
317 $mymail->setFrom('"Marketing Polytechnique.org" <register@polytechnique.org>');
318 $mymail->addTo("\"$sprenom $snom\" <$salias@{$globals->mail->domain}>");
319 $msg = ($sfemme?
'Chère':'Cher')." $sprenom,\n\n"
320 . "Nous t'écrivons pour t'informer que {$prenom} {$nom} (X{$promo}), "
321 . "que tu avais incité".($femme?
'e':'')." à s'inscrire à Polytechnique.org, "
322 . "vient à l'instant de terminer son inscription.\n\n"
323 . "Merci de ta participation active à la reconnaissance de ce site !!!\n\n"
324 . "Bien cordialement,\n"
325 . "L'équipe Polytechnique.org";
326 $mymail->setTxtBody(wordwrap($msg, 72));
330 /**** send a mail to X.org administrators ****/
331 if ($globals->register
->notif
) {
332 $mymail = new PlMailer();
333 $mymail->setSubject("Inscription de $prenom $nom (X$promo)");
334 $mymail->setFrom('"Webmaster Polytechnique.org" <web@polytechnique.org>');
335 $mymail->addTo($globals->register
->notif
);
336 $msg = "$prenom $nom (X$promo) a terminé son inscription avec les données suivantes :\n"
338 . " - prenom : $prenom\n"
339 . " - promo : $promo\n"
340 . " - naissance : $naissance\n"
341 . " - forlife : $forlife\n"
342 . " - email : $email\n"
343 . " - sexe : $femme\n"
344 . " - ip : " . (@$_SERVER['HTTP_X_FORWARDED_FOR'] ?
$_SERVER['HTTP_X_FORWARDED_FOR']
345 : $_SERVER['REMOTE_ADDR']) . "\n"
346 . " - proxy : " . (@$_SERVER['HTTP_X_FORWARDED_FOR'] ?
$_SERVER['REMOTE_ADDR'] : "") . "\n";
347 $mymail->setTxtBody($msg);
351 Marketing
::clear($uid);
353 pl_redirect('register/success');
354 $page->assign('uid', $uid);
357 function handler_success(&$page)
359 $page->changeTpl('register/success.tpl');
361 $_SESSION['sub_state'] = array('step' => 5);
362 if (Env
::has('response2')) {
363 $_SESSION['password'] = $password = Post
::v('response2');
365 XDB
::execute('UPDATE auth_user_md5 SET password={?}
366 WHERE user_id={?}', $password,
370 $log->log('passwd', '');
372 if (Cookie
::v('ORGaccess')) {
373 require_once('secure_hash.inc.php');
374 setcookie('ORGaccess', hash_encrypt($password), (time()+
25920000), '/', '' ,0);
377 $page->assign('mdpok', true
);
380 $res = XDB
::iterRow("SELECT sub, domain
382 WHERE uid = {?} AND type = 'list'
385 $current_domain = null
;
387 while (list($sub, $domain) = $res->next()) {
388 if ($current_domain != $domain) {
389 $current_domain = $domain;
390 $client = new MMList(S
::v('uid'), S
::v('password'), $domain);
392 list($details, ) = $client->get_members($sub);
393 $lists["$sub@$domain"] = $details;
395 $page->assign_by_ref('lists', $lists);
397 $page->addJsLink('motdepasse.js');
401 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: