servnest/public/auth/register.php

<?php require "../../common/html.php"; ?>

<p>Déjà un compte ? <a class="auth" href="login">Se connecter</a></p>

<form method="post">

	<details>
		<summary><label for="username">Identifiant</label></summary>
		Uniquement composé de lettres minuscules.
	</details>
	<input id="username" maxlength="32" pattern="<?= USERNAME_REGEX ?>" required="" name="username" type="text" placeholder="<?= PLACEHOLDER_USERNAME ?>"><br>

	<details>
		<summary><label for="password">Clé de passe</label></summary>
		<p>Une clé de passe sécurisée est trop compliquée à deviner pour une attaque qui testerais automatiquement plein de clés de passe tout en connaissant d'autres informations et secrets sur vous.</p>
		<p>Minimum 8 caractères si elle contient minuscule, majuscule et chiffre, ou minimum 10 caractères sinon.</p>
	</details>

	<input autocomplete="new-password" id="password" minlength="8" maxlength="1024" pattern="<?= PASSWORD_REGEX ?>" required="" name="password" type="password" placeholder="<?= PLACEHOLDER_PASSWORD ?>"><br>

	<input type="submit">
</form>

<?php

switchToFormProcess(requireLogin: false);

checkPasswordFormat($_POST['password']);

checkUsernameFormat($_POST['username']);

if (userExist($_POST['username']) !== false)
	userError("Ce nom de compte est déjà utilisé.");

// Setup SFTP directory
umask(0002);
if (mkdir(CONF['ht']['ht_path'] . "/" . $_POST['username'], 0775) !== true)
	serverError("Can't create user directory.");
exec(CONF['ht']['sudo_path'] . " " . CONF['ht']['chgrp_path'] . " " . CONF['ht']['sftpgo_group'] . " " . CONF['ht']['ht_path'] . "/" . $_POST['username'] . " --no-dereference", result_code: $code);
if ($code !== 0)
	serverError("Can't change user directory group.");

// Setup Tor config directory
if (mkdir(CONF['ht']['tor_config_path'] . "/" . $_POST['username'], 0755) !== true)
	serverError("Can't create Tor config directory.");

// Setup Tor keys directory
exec(CONF['ht']['sudo_path'] . " -u " . CONF['ht']['tor_user'] . " " . CONF['ht']['mkdir_path'] . " --mode=0700 " . CONF['ht']['tor_keys_path'] . "/" . $_POST['username'], result_code: $code);
if ($code !== 0)
	serverError("Can't create Tor keys directory.");

$db = new PDO('sqlite:' . DB_PATH);

$stmt = $db->prepare("INSERT INTO users(username, password, registration_date) VALUES(:username, :password, :registration_date)");

$stmt->bindValue(':username', $_POST['username']);
$stmt->bindValue(':password', hashPassword($_POST['password']));
$stmt->bindValue(':registration_date', date("Y-m-d H:i:s"));

$stmt->execute();

$_SESSION['username'] = $_POST['username'];

redir();

success("Compte créé.");
Close HTML using function, better error handling 2022-05-22 14:59:45 +02:00			`<?php require "../../common/html.php"; ?>`
Initial commit 2021-01-22 21:58:46 +01:00
New interface 2022-06-06 23:14:50 +02:00			`<p>Déjà un compte ? <a class="auth" href="login">Se connecter</a></p>`

Update auth forms 2022-06-10 21:14:47 +02:00			`<form method="post">`
Fix autologin when creating accounts 2022-05-21 19:41:46 +02:00
Update auth forms 2022-06-10 21:14:47 +02:00			`<details>`
			`<summary><label for="username">Identifiant</label></summary>`
			`Uniquement composé de lettres minuscules.`
			`</details>`
Allow any unicode letter and number in user's values 2022-06-25 16:43:58 +02:00			`<input id="username" maxlength="32" pattern="<?= USERNAME_REGEX ?>" required="" name="username" type="text" placeholder="<?= PLACEHOLDER_USERNAME ?>"><br>`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`<details>`
			`<summary><label for="password">Clé de passe</label></summary>`
			`<p>Une clé de passe sécurisée est trop compliquée à deviner pour une attaque qui testerais automatiquement plein de clés de passe tout en connaissant d'autres informations et secrets sur vous.</p>`
			`<p>Minimum 8 caractères si elle contient minuscule, majuscule et chiffre, ou minimum 10 caractères sinon.</p>`
			`</details>`
Create SFTP directory at account creation 2022-05-05 23:40:36 +02:00
Update auth forms 2022-06-10 21:14:47 +02:00			`<input autocomplete="new-password" id="password" minlength="8" maxlength="1024" pattern="<?= PASSWORD_REGEX ?>" required="" name="password" type="password" placeholder="<?= PLACEHOLDER_PASSWORD ?>"><br>`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`<input type="submit">`
			`</form>`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`<?php`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`switchToFormProcess(requireLogin: false);`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`checkPasswordFormat($_POST['password']);`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`checkUsernameFormat($_POST['username']);`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`if (userExist($_POST['username']) !== false)`
			`userError("Ce nom de compte est déjà utilisé.");`
Fix autologin when creating accounts 2022-05-21 19:41:46 +02:00
Update auth forms 2022-06-10 21:14:47 +02:00			`// Setup SFTP directory`
			`umask(0002);`
			`if (mkdir(CONF['ht']['ht_path'] . "/" . $_POST['username'], 0775) !== true)`
			`serverError("Can't create user directory.");`
Store Tor config and keys in $username/$dir 2022-06-22 00:37:06 +02:00			`exec(CONF['ht']['sudo_path'] . " " . CONF['ht']['chgrp_path'] . " " . CONF['ht']['sftpgo_group'] . " " . CONF['ht']['ht_path'] . "/" . $_POST['username'] . " --no-dereference", result_code: $code);`
Update auth forms 2022-06-10 21:14:47 +02:00			`if ($code !== 0)`
			`serverError("Can't change user directory group.");`
Changer de mot de passe Niver, $_SESSION[sftp_enabled], +enregistrement NS pour le serveur de noms 2021-02-12 15:32:48 +01:00
Store Tor config and keys in $username/$dir 2022-06-22 00:37:06 +02:00			`// Setup Tor config directory`
			`if (mkdir(CONF['ht']['tor_config_path'] . "/" . $_POST['username'], 0755) !== true)`
			`serverError("Can't create Tor config directory.");`

			`// Setup Tor keys directory`
			`exec(CONF['ht']['sudo_path'] . " -u " . CONF['ht']['tor_user'] . " " . CONF['ht']['mkdir_path'] . " --mode=0700 " . CONF['ht']['tor_keys_path'] . "/" . $_POST['username'], result_code: $code);`
			`if ($code !== 0)`
			`serverError("Can't create Tor keys directory.");`

Update auth forms 2022-06-10 21:14:47 +02:00			`$db = new PDO('sqlite:' . DB_PATH);`
Initial commit 2021-01-22 21:58:46 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`$stmt = $db->prepare("INSERT INTO users(username, password, registration_date) VALUES(:username, :password, :registration_date)");`
2 spaces > tab 2022-04-18 16:05:00 +02:00
del-http-onion.php + query() 2022-06-11 23:42:48 +02:00			`$stmt->bindValue(':username', $_POST['username']);`
			`$stmt->bindValue(':password', hashPassword($_POST['password']));`
			`$stmt->bindValue(':registration_date', date("Y-m-d H:i:s"));`
Use plain CSS instead of Less 2022-05-31 23:28:32 +02:00
Update auth forms 2022-06-10 21:14:47 +02:00			`$stmt->execute();`
2 spaces > tab 2022-04-18 16:05:00 +02:00
Update auth forms 2022-06-10 21:14:47 +02:00			`$_SESSION['username'] = $_POST['username'];`
2 spaces > tab 2022-04-18 16:05:00 +02:00
redir() 2022-06-17 15:45:52 +02:00			`redir();`
Changer de mot de passe Niver, $_SESSION[sftp_enabled], +enregistrement NS pour le serveur de noms 2021-02-12 15:32:48 +01:00
Update auth forms 2022-06-10 21:14:47 +02:00			`success("Compte créé.");`