rsemcs/dynmap/web/standalone/register.php

77 lines
1.9 KiB
PHP
Raw Normal View History

2022-05-12 09:33:18 +00:00
<?php
ob_start();
require 'dynmap_login.php';
ob_end_clean();
session_start();
if (isset($_POST['j_password'])) {
$password = $_POST['j_password'];
} else {
$password = '';
}
if (isset($_POST['j_verify_password'])) {
$verify = $_POST['j_verify_password'];
} else {
$verify = '';
}
if (strcmp($password, $verify)) {
echo "{ \"result\": \"verifyfailed\" }";
return;
}
if (isset($_POST['j_username'])) {
$userid = $_POST['j_username'];
} else {
$userid = '-guest-';
}
if (isset($_POST['j_passcode'])) {
$passcode = $_POST['j_passcode'];
} else {
$passcode = '';
}
$good = false;
$useridlc = strtolower($userid);
$_SESSION['userid'] = '-guest-';
$good = false;
if (strcmp($useridlc, '-guest-')) {
if (isset($pendingreg[$useridlc])) {
if (!strcmp($passcode, $pendingreg[$useridlc])) {
$ctx = hash_init('sha256');
hash_update($ctx, $pwdsalt);
hash_update($ctx, $password);
$hash = hash_final($ctx);
$_SESSION['userid'] = $userid;
$good = true;
$newlines[] = '<?php /*';
$lines = file('dynmap_reg.php');
if (!empty($lines)) {
$cnt = count($lines) - 1;
for ($i = 1; $i < $cnt; $i++) {
list($uid, $pc, $hsh) = explode('=', rtrim($lines[$i]));
if ($uid == $useridlc) {
continue;
}
if (array_key_exists($uid, $pendingreg)) {
$newlines[] = $uid . '=' . $pc . '=' . $hsh;
}
}
}
$newlines[] = $useridlc . '=' . $passcode . '=' . $hash;
$newlines[] = '*/ ?>';
file_put_contents('dynmap_reg.php', implode("\n", $newlines));
}
}
}
if ($good) {
echo "{ \"result\": \"success\" }";
} else {
echo "{ \"result\": \"registerfailed\" }";
}