servnest
/
servnest
1
1
Fork 0
Code Issues 4 Pull Requests Releases Wiki Activity
servnest/public/auth/register.php

75 lines
2.4 KiB
PHP
Raw Normal View History

Close HTML using function, better error handling
2022-05-22 14:59:45 +02:00
<?php require "../../common/html.php"; ?>
Initial commit
2021-01-22 21:58:46 +01:00
New interface
2022-06-06 23:14:50 +02:00
<p>Déjà un compte ? <a class="auth" href="login">Se connecter</a></p>
Changer de mot de passe Niver, $_SESSION[sftp_enabled], +enregistrement NS pour le serveur de noms
2021-02-12 15:32:48 +01:00
<?php
Initial commit
2021-01-22 21:58:46 +01:00
Changer de mot de passe Niver, $_SESSION[sftp_enabled], +enregistrement NS pour le serveur de noms
2021-02-12 15:32:48 +01:00
if (isset($_POST['username']) AND isset($_POST['password'])) {
Initial commit
2021-01-22 21:58:46 +01:00
Use HTTP error codes, better error handling
2022-05-20 02:19:45 +02:00
checkPasswordFormat($_POST['password']);
Initial commit
2021-01-22 21:58:46 +01:00
Use HTTP error codes, better error handling
2022-05-20 02:19:45 +02:00
checkUsernameFormat($_POST['username']);
3
2021-01-25 13:39:31 +01:00
Fix autologin when creating accounts
2022-05-21 19:41:46 +02:00
$userExist = userExist($_POST['username']);
Close HTML using function, better error handling
2022-05-22 14:59:45 +02:00
if ($userExist === false) {
Initial commit
2021-01-22 21:58:46 +01:00
Create SFTP directory at account creation
2022-05-05 23:40:36 +02:00
// Setup SFTP directory
umask(0002);
Fix autologin when creating accounts
2022-05-21 19:41:46 +02:00
if (mkdir(CONF['ht']['ht_path'] . "/" . $_POST['username'], 0775) !== true)
Use HTTP error codes, better error handling
2022-05-20 02:19:45 +02:00
serverError("Can't create user directory.");
Fix symlink security flaw when sudoing chgrp
2022-06-10 14:53:25 +02:00
exec(CONF['ht']['sudo_path'] . " " . CONF['ht']['chgrp_path'] . " " . CONF['ht']['sftpgo_group'] . " " . CONF['ht']['ht_path'] . "/" . $_POST['username'] . " --no-dereference", $stdout, $code);
Create SFTP directory at account creation
2022-05-05 23:40:36 +02:00
if ($code !== 0)
Use HTTP error codes, better error handling
2022-05-20 02:19:45 +02:00
serverError("Can't change user directory group.");
Create SFTP directory at account creation
2022-05-05 23:40:36 +02:00
2 spaces > tab
2022-04-18 16:05:00 +02:00
$password = hashPassword($_POST['password']);
Initial commit
2021-01-22 21:58:46 +01:00
2 spaces > tab
2022-04-18 16:05:00 +02:00
$db = new PDO('sqlite:' . DB_PATH);
Initial commit
2021-01-22 21:58:46 +01:00
Use HTTP error codes, better error handling
2022-05-20 02:19:45 +02:00
$stmt = $db->prepare("INSERT INTO users(username, password, registration_date) VALUES(:username, :password, :registration_date)");
Initial commit
2021-01-22 21:58:46 +01:00
2 spaces > tab
2022-04-18 16:05:00 +02:00
$time = date("Y-m-d H:i:s");
Initial commit
2021-01-22 21:58:46 +01:00
Fix autologin when creating accounts
2022-05-21 19:41:46 +02:00
$stmt->bindParam(':username', $_POST['username']);
2 spaces > tab
2022-04-18 16:05:00 +02:00
$stmt->bindParam(':password', $password);
$stmt->bindParam(':registration_date', $time);
Initial commit
2021-01-22 21:58:46 +01:00
2 spaces > tab
2022-04-18 16:05:00 +02:00
$stmt->execute();
Initial commit
2021-01-22 21:58:46 +01:00
Fix autologin when creating accounts
2022-05-21 19:41:46 +02:00
$_SESSION['username'] = $_POST['username'];
Fix some recent regressions
2022-05-20 01:08:40 +02:00
header('Location: ' . CONF['common']['prefix'] . '/');
2 spaces > tab
2022-04-18 16:05:00 +02:00
exit;
}
Changer de mot de passe Niver, $_SESSION[sftp_enabled], +enregistrement NS pour le serveur de noms
2021-02-12 15:32:48 +01:00
}
Initial commit
2021-01-22 21:58:46 +01:00
?>
Changer de mot de passe Niver, $_SESSION[sftp_enabled], +enregistrement NS pour le serveur de noms
2021-02-12 15:32:48 +01:00
<form method="post">
2 spaces > tab
2022-04-18 16:05:00 +02:00
Use plain CSS instead of Less
2022-05-31 23:28:32 +02:00
<details>
<summary><label for="username">Identifiant</label></summary>
Uniquement composé de lettres minuscules.
</details>
<input id="username" minlength="4" maxlength="32" pattern="<?= USERNAME_REGEX ?>" required="" name="username" type="text" placeholder="lain"><span></span><br>
<?php
if (isset($userExist) AND $userExist === true) {
echo "<br>Cet identifiant est déjà utilisé. Choisissez-en un autre.";
}
?>
<details>
<summary><label for="password">Clé de passe</label></summary>
<p>Une clé de passe sécurisée est trop compliquée à deviner pour une attaque qui testerais automatiquement plein de clés de passe tout en connaissant d'autres informations et secrets sur vous.</p>
<p>Minimum 8 caractères si elle contient minuscule, majuscule et chiffre, ou minimum 10 caractères sinon.</p>
</details>
2 spaces > tab
2022-04-18 16:05:00 +02:00
Use plain CSS instead of Less
2022-05-31 23:28:32 +02:00
<input autocomplete="new-password" id="password" minlength="8" maxlength="1024" pattern="<?= PASSWORD_REGEX ?>" required="" name="password" type="password" placeholder="************"><span title="Le format nest pas valide"></span><br>
2 spaces > tab
2022-04-18 16:05:00 +02:00
<input type="submit">
Changer de mot de passe Niver, $_SESSION[sftp_enabled], +enregistrement NS pour le serveur de noms
2021-02-12 15:32:48 +01:00
</form>
Close HTML using function, better error handling
2022-05-22 14:59:45 +02:00
<?php closeHTML(); ?>