X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=modules%2Fregister.php;h=1a58b3ae58d1e99c08f45b0aa681253f5d6df3dc;hb=1b602af5faa3a20d03b7ec28ffcba3e7f36a8514;hp=35491458de95664a3117b3c403b7091847e43f10;hpb=a7de4ef724d1a3b0bf978a50ce7cc9d23412c7a0;p=platal.git diff --git a/modules/register.php b/modules/register.php index 3549145..1a58b3a 100644 --- a/modules/register.php +++ b/modules/register.php @@ -58,17 +58,19 @@ class RegisterModule extends PLModule if ($hash) { $res = XDB::query( - "SELECT m.uid, u.promo, u.nom, u.prenom, u.matricule + "SELECT m.uid, u.promo, u.nom, u.prenom, u.matricule, u.naissance_ini, FIND_IN_SET('watch', u.flags) FROM register_marketing AS m INNER JOIN auth_user_md5 AS u ON u.user_id = m.uid WHERE m.hash={?}", $hash); - if (list($uid, $promo, $nom, $prenom, $ourmat) = $res->fetchOneRow()) { + if (list($uid, $promo, $nom, $prenom, $ourmat, $naiss, $watch) = $res->fetchOneRow()) { $sub_state['uid'] = $uid; $sub_state['hash'] = $hash; $sub_state['promo'] = $promo; $sub_state['nom'] = $nom; $sub_state['prenom'] = $prenom; $sub_state['ourmat'] = $ourmat; + $sub_state['watch'] = $watch; + $sub_state['naissance_ini'] = $naiss; XDB::execute( "REPLACE INTO register_mstats (uid,sender,success) @@ -149,6 +151,7 @@ class RegisterModule extends PLModule if ($year > $promo - 15 || $year < $promo - 30) { $err[] = "La 'Date de naissance' n'est pas correcte."; $alert = "Date de naissance incorrecte a l'inscription - "; + $sub_state['wrong_naissance'] = $birth; } } @@ -168,6 +171,9 @@ class RegisterModule extends PLModule if (count($aliases) != 0) { $alert .= "Email surveille propose a l'inscription - "; } + if ($sub_state['watch']) { + $alter .= "Inscription d'un utilisateur surveillé - "; + } if (check_ip('unsafe')) { unset($err); @@ -180,10 +186,13 @@ class RegisterModule extends PLModule substr($birth,4,4), substr($birth,2,2), substr($birth,0,2)); + if ($sub_state['naissance_ini'] != '0000-00-00' && $sub_state['naissance'] != $sub_state['naissance_ini']) { + $alert .= "Date de naissance incorrecte à l'inscription - "; + } $sub_state['email'] = Post::v('email'); if (check_ip('unsafe')) { $err = "Une erreur s'est produite lors de l'inscription." - . " Merci de contacter register@polytechnique.org" + . " Merci de contacter register@polytechnique.org" . " pour nous faire part de cette erreur"; $alert .= "Tentative d'inscription depuis une IP surveillee"; } else { @@ -217,22 +226,31 @@ class RegisterModule extends PLModule { global $globals; + $page->changeTpl('register/end.tpl'); $_SESSION['sub_state'] = array('step' => 5); + + if (check_ip('unsafe')) { + send_warning_mail('Une IP surveillée a tenté de finaliser son inscription'); + XDB::execute('DELETE FROM register_pending + WHERE hash = {?} AND hash != \'INSCRIT\'', $hash); + return PL_FORBIDDEN; + } + require_once('user.func.inc.php'); if ($hash) { $res = XDB::query( "SELECT r.uid, r.forlife, r.bestalias, r.mailorg2, r.password, r.email, r.naissance, u.nom, u.prenom, - u.promo, u.flags + u.promo, FIND_IN_SET('femme', u.flags), u.naissance_ini FROM register_pending AS r INNER JOIN auth_user_md5 AS u ON r.uid = u.user_id WHERE hash={?} AND hash!='INSCRIT'", $hash); } if (!$hash || !list($uid, $forlife, $bestalias, $mailorg2, $password, $email, - $naissance, $nom, $prenom, $promo, $femme) = $res->fetchOneRow()) + $naissance, $nom, $prenom, $promo, $femme, $naiss_ini) = $res->fetchOneRow()) { $page->kill("
Cette adresse n'existe pas, ou plus, sur le serveur.
Causes probables :
@@ -289,7 +307,7 @@ class RegisterModule extends PLModule $mymail->assign('prenom', $prenom); $mymail->send(); - if (!start_connexion($uid,false)) { + if (!start_connexion($uid, false)) { return PL_FORBIDDEN; } $_SESSION['auth'] = AUTH_MDP; @@ -313,7 +331,7 @@ class RegisterModule extends PLModule $mymail->setFrom('"Marketing Polytechnique.org"