0byt3m1n1
Path:
/
home
/
k
/
a
/
s
/
kassiope
/
www
/
utilisateurs
/
[
Home
]
File: enregistrement.php
<? include ("../configuration.inc.php"); /* Le formulaire e été soumis, essaye de créer un nouveau compte d'utilisateur */ if (sizeof($_POST) > 0) { $frm = $_POST; $message_erreur = valide_form($frm, $erreurs); if (empty($message_erreur)) { insere_utilisateur($frm); $DOC_TITLE = "[GAIABOUTIK.FR]"; if ($_SESSION['caddie']->compte_elements() > 0) { if (empty($_SESSION['caddie']->zone) || empty($_SESSION['caddie']->type)) { header("Location:$wwwroot/achat/caddie_affichage.php"); } else { header("Location:$wwwroot/achat/achat_maintenant.php"); } } else { include($repertoire_modele."/haut.php"); echo header_page(REGISTER); afficher_enregistrement_succes(); echo footer_page(); include($repertoire_modele."/bas.php"); } die; } } $DOC_TITLE = "[GAIABOUTIK.FR]"; include($repertoire_modele."/haut.php"); echo header_page(REGISTER); if (!empty($message_erreur)) { echo '<div class="alert alert-danger">'.MSG_ERR_FORM."</div>"; } if (!empty($noticemsg)) { echo '<div class="alert alert-danger">'; echo $noticemsg; echo '</div>'; } affiche_formulaire_enregistrement(); echo footer_page(); include($repertoire_modele."/bas.php"); /****************************************************************************** * FONCTIONS *****************************************************************************/ function valide_form(&$frm, &$erreurs) { /* Valide le formulaire d'inscription et renvoie éventuellement un message d'erreur */ $erreurs = array(); $msg = array(); if (empty($frm['mot_passe'])) { $erreurs['mot_passe'] = true; $msg['mot_passe'] = stripslashes(MSG_ERR_PASSWORD); } if (empty($frm['prenom'])) { $erreurs['prenom'] = true; $msg['prenom'] = stripslashes(MSG_ERR_FIRSTNAME); } if (empty($frm['nom_famille'])) { $erreurs['nom_famille'] = true; $msg['nom_famille'] = stripslashes(MSG_ERR_NAME); } if (empty($frm['email'])) { $erreurs['email'] = true; $msg['email'] = stripslashes(MSG_ERR_EMAIL); } elseif (!preg_match('`^[[:alnum:]]([-_.]?[[:alnum:]])*@[[:alnum:]]([-_.]?[[:alnum:]])*.([a-z]{2,4})$`',$frm['email'])) { $erreurs['email'] = true; $msg['email'] = stripslashes(ERR_EMAIL_BAD); } elseif ((mysql_num_rows_override(mysql_query_override("SELECT 1 FROM gaia_utilisateurs WHERE email = '".$frm['email']."'")) > 0) ) { $erreurs['email'] = true; $msg['email'] = stripslashes(ERR_EMAIL_STILL); } if (empty($frm['telephone'])) { $erreurs['telephone'] = true; $msg['telephone'] = stripslashes(MSG_ERR_TEL); } if (empty($frm['adresse'])) { $erreurs['adresse'] = true; $msg['adresse'] = stripslashes(MSG_ERR_ADDRESS); } if (empty($frm['code_postal'])) { $erreurs['code_postal'] = true; $msg['code_postal'] = stripslashes(MSG_ERR_ZIP); } if (empty($frm['ville'])) { $erreurs['ville'] = true; $msg['ville'] = stripslashes(MSG_ERR_TOWN); } return $msg; } function insere_utilisateur(&$frm) { global $support, $lg, $sendingblue_key; $mot_passe_bak = trim(addslashes($_POST['mot_passe'])); $mot_passe = md5($frm['mot_passe']); $newsletter = valide($frm['newsletter']); $commercial = valide($frm['commercial']); $n = explode('/' ,$frm['naissance']); $naissance = $n[2].'-'.$n[1].'-'.$n[0]; $sql = " INSERT INTO gaia_utilisateurs ( email , mot_passe , priv , civilite , prenom , nom_famille , societe , naissance , telephone , portable , adresse , code_postal , ville , pays , newsletter , commercial , format , date_insert , date_update ) VALUES ( '".mb_strtolower($frm['email'])."' ,'$mot_passe' ,'util' ,'".vb($frm['civilite'])."' ,'".mb_strtoupper(addslashes($frm['prenom']))."' ,'".mb_strtoupper(addslashes($frm['nom_famille']))."' ,'".(addslashes($frm['societe']))."' ,'$naissance' ,'".$frm['telephone']."' ,'".$frm['portable']."' ,'".addslashes($frm['adresse'])."' ,'".$frm['code_postal']."' ,'".addslashes($frm['ville'])."' ,'".addslashes($frm['pays'])."' ,'".intval($frm['newsletter'])."' ,'".intval($frm['commercial'])."' ,'".$frm['format']."' , now() , now() )"; /* Ajoute le nouvel utilisateur à la base */ $qid = mysql_query_override($sql) or DIE('Une erreur de connexion à la base s est produite ' . __LINE__ . '.<p>' . MYSQL_ERROR()); $clientid = mysql_insert_id_override(); if (intval($frm['newsletter'])==1) { mysql_query_override ("insert into gaia_newsletter_abo (email) values('".$frm['email']."')"); $config = SendinBlue\Client\Configuration::getDefaultConfiguration()->setApiKey('api-key', $sendingblue_key); $config = SendinBlue\Client\Configuration::getDefaultConfiguration()->setApiKey('partner-key', $sendingblue_key); $apiInstance = new SendinBlue\Client\Api\ContactsApi(new GuzzleHttp\Client(),$config); $createContact = new \SendinBlue\Client\Model\CreateContact(); // \SendinBlue\Client\Model\CreateContact | Values to create a contact try { $createContact['email'] = $frm['email']; $createContact['listIds'] = array(6); $result = $apiInstance->createContact($createContact); } catch (Exception $e) { } } else mysql_query_override ("delete from gaia_newsletter_abo where email = '".$frm['email']."'"); $d = @date("Y"); $code_client = "CLT".$d.$clientid; $code_client = substr(rand(1000,9999).$d.$clientid,-8,8); $code_client = $d.substr('0000'.$clientid,-4,4); mysql_query_override("UPDATE gaia_utilisateurs SET code_client = '".$code_client."' WHERE id_utilisateur = '".$clientid."'"); //envoi de la fiche client au commercial $message = 'Bonjour,<br /><br /> Un nouvel inscrit sur le site : <br />'. '<br />Email : '.mb_strtolower($frm['email']). '<br />Civilité : '.vb($frm['civilite']). '<br />Prénom : '.mb_strtoupper(addslashes($frm['prenom'])). '<br />Nom : '.mb_strtoupper(addslashes($frm['nom_famille'])). '<br />Société : '.(addslashes($frm['societe'])). '<br />Fonction : '.$frm['portable']. '<br />Téléphone : '.$frm['telephone']. '<br />Adresse : '.addslashes($frm['adresse']). '<br />Code postal : '.$frm['code_postal']. '<br />Ville : '.addslashes($frm['ville']); $commercial = get_commercial($frm['code_postal']); if(isset($commercial['email'])) mail_confirm($commercial['email'],'Nouvel inscrit sur Kassiope.fr',($message),"From:$support"); mail_confirm($support,'Nouvel inscrit sur Kassiope.fr',($message),"From:$support"); # Envoi du mot de passe par mail $mailSujet = SUBJECT_ACCOUNT_EMAIL; $mailObjet = OBJECT_ACCOUNT_EMAIL1." ".$frm['prenom']; $mailObjet .= OBJECT_ACCOUNT_EMAIL2." ".$frm['email']; $mailObjet .= OBJECT_ACCOUNT_EMAIL3; $mail = get_static(352); $mailObjet = mail_transform(1,$mail['description_'.$lg], $clientid, 0 ); mail_confirm($frm['email'],$mail['nom_'.$lg],($mailObjet),"From:$support"); $utilisateur = verifier_authentification(trim(addslashes(strtolower($frm['email']))), $frm['mot_passe']); if ($utilisateur) { $_SESSION['utilisateur'] = $utilisateur; $sqlProfil = "SELECT id FROM gaia_profil WHERE priv = '".$_SESSION['utilisateur']['priv']."'"; $resProfil = mysql_query_override($sqlProfil) or DIE('Une erreur de connexion à la base s est produite ' . __LINE__ . '.<p>' . MYSQL_ERROR()); $Profil = mysql_fetch_object_override($resProfil); $profilId = $Profil->id; $_SESSION["ip"] = $_SERVER['REMOTE_ADDR']; $_SESSION["url"] = $_SERVER['HTTP_HOST']; } } function affiche_formulaire_enregistrement() { GLOBAL $frm, $erreurs, $message_erreur, $wwwroot, $site; $marqueur_erreur = "<font color=RED>".addslashes("<=")."</font>"; ?> <form name="entryform" id="contact-form" method="post" action="<?=$_SERVER['PHP_SELF']?>"> <div class="row form-top"> <div class="form-group col-sm-12 col-md-4 col-lg-4 civilite"> <div class="form-check form-check-inline"> <input class="form-check-input" type="radio" name="civilite" id="inlineRadio1" value="Mlle" <?php if(vb($frm['civilite'])=="Mlle") echo "checked" ?>> <label class="form-check-label" for="inlineRadio1">Mlle</label> </div> <div class="form-check form-check-inline"> <input class="form-check-input" type="radio" name="civilite" id="inlineRadio2" value="Mme" <?php if(vb($frm['civilite'])=="Mme") echo "checked" ?>> <label class="form-check-label" for="inlineRadio2">Mme</label> </div> <div class="form-check form-check-inline"> <input class="form-check-input" type="radio" name="civilite" id="inlineRadio3" value="M." <?php if(vb($frm['civilite'])=="M.") echo "checked" ?>> <label class="form-check-label" for="inlineRadio3">M.</label> </div> </div> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo FIRST_NAME?> <span class="required">*</span></label> <input type="text" class="form-control" name="prenom" value="<?=stripslashes(vb($frm['prenom']))?>" required> <? if (isset($erreurs['prenom'])) echo $marqueur_erreur." ".$message_erreur['prenom'] ?> </div> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo NAME?> <span class="required">*</span></label> <input type="text" class="form-control" name="nom_famille" value="<?=stripslashes(vb($frm['nom_famille']))?>" required> <? if (isset($erreurs['nom_famille'])) echo $marqueur_erreur." ".$message_erreur['nom_famille'] ?> </div> <!-- <div class="form-group col-sm-6 col-md-6 col-lg-6"> <label for="username"><?echo NAISSANCE?></label> <?php $n = explode('-', vb($frm['naissance'])); $naissance = (!empty($frm['naissance'])?$n[2].'/'.$n[1].'/'.$n[0]:''); ?> <input class="form-control" type="text" name="naissance" value="<?=vb($naissance)?>" placeholder="JJ/MM/AAAA"> </div> --> <!--<div class="col-12"></div>--> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo EMAIL?> <span class="required">*</span></label> <input type="email" class="form-control" name="email" value="<?=stripslashes(vb($frm['email']))?>" required> <? if (isset($erreurs['email'])) echo $marqueur_erreur." ".$message_erreur['email'] ?> </div> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo PASSWORD?> <span class="required">*</span></label> <input type="password" class="form-control" name="mot_passe" value="<?=stripslashes(vb($frm['mot_passe']))?>" required> <? if (isset($erreurs['mot_passe'])) echo $marqueur_erreur." ".$message_erreur['mot_passe'] ?> </div> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo TELEPHONE?> <span class="required">*</span></label> <input type="text" class="form-control" name="telephone" value="<?=stripslashes(vb($frm['telephone']))?>" required> <? if (isset($erreurs['telephone'])) echo $marqueur_erreur." ".$message_erreur['telephone'] ?> </div> <div class="form-group col-sm-6 col-md-6 col-lg-6"> <label for="username"><?echo CLUB?> <span class="required">*</span></label> <input type="text" class="form-control" name="societe" value="<?=stripslashes(vb($frm['societe']))?>" required> </div> <div class="form-group col-sm-6 col-md-6 col-lg-6"> <label for="username"><?echo FONCTION?> <span class="required">*</span></label> <input type="text" class="form-control" name="portable" value="<?=stripslashes(vb($frm['portable']))?>" required> </div> <!-- <div class="form-group col-sm-6 col-md-6 col-lg-6"> <label for="username"><?echo PORTABLE?></label> <input type="text" class="form-control" name="portable" value="<?=stripslashes(vb($frm['portable']))?>"> </div> --> <div class="form-group col-sm-6 col-md-12 col-lg-12"> <label for="username"><?echo ADDRESS?> <span class="required">*</span></label> <input type="text" class="form-control" name="adresse" value="<?=stripslashes(vb($frm['adresse']))?>" required> <? if (isset($erreurs['adresse'])) echo $marqueur_erreur." ".$message_erreur['adresse'] ?> </div> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo ZIP?> <span class="required">*</span></label> <input type="text" class="form-control" name="code_postal" oninput="this.value = this.value.replace(/[^0-9.]/g, '').replace(/(\..*?)\..*/g, '$1');" value="<?=stripslashes(vb($frm['code_postal']))?>" required> <? if (isset($erreurs['code_postal'])) echo $marqueur_erreur." ".$message_erreur['code_postal'] ?> </div> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo TOWN?> <span class="required">*</span></label> <input type="text" class="form-control" name="ville" value="<?=stripslashes(vb($frm['ville']))?>" required> <? if (isset($erreurs['ville'])) echo $marqueur_erreur." ".$message_erreur['ville'] ?> </div> <div class="form-group col-sm-6 col-md-4 col-lg-4"> <label for="username"><?echo COUNTRY?></label> <select class="form-select" name="pays"> <?php $sql_pays = "SELECT id, pays_".$_SESSION['langue']." FROM gaia_pays WHERE etat = '1' ORDER BY position asc"; $res_pays = mysql_query_override($sql_pays); if ($res_pays) { if (mysql_num_rows_override($res_pays)) { while ($tab_pays = mysql_fetch_array_override($res_pays)) { echo "<option value=\"".$tab_pays['id']."\""; if (vb($frm['pays_'.$_SESSION['langue'].'']) == $tab_pays['id']) echo "selected"; echo ">".stripslashes($tab_pays['pays_'.$_SESSION['langue'].''])."</option>"; } } } ?> </select> </div> <div class="form-group col-sm-12 col-md-12 col-lg-12"> <input type="hidden" name="format" value="html"> <input type="checkbox" name="newsletter" <?=frmvalide($frm['newsletter'])?>> <?echo NEWSLETTER_YES; ?> </div> <div class="form-group col-sm-12 col-md-12 col-lg-12"> <input type="checkbox" name="commercial" <?=frmvalide($frm['commercial'])?>> <?echo COMMERCIAL_YES; ?> </div> </div> <div class="form-action1"> <div class="actions-log"> <br /><br /> <input type="submit" class="button" name="connexion" value=" <?echo REGISTER?>"> <p><sup>*</sup> <?=MANDATORY?></p> </div> </div> </form> <div class="clearfix"></div> <p><?echo CNIL; ?></p> <? }; function afficher_enregistrement_succes() { GLOBAL $frm, $wwwroot; ?> <font class="titre"><?echo HELLO; ?> <?=stripslashes($frm['prenom'])?></font> <p class="normal"> <?echo nl2br(MSG_LOGIN_OK);?> </p> <blockquote> <table> <tr> <td class="normal"><?echo EMAIL;?> :</td> <td class="normal"><b><?=$frm['email']?></b></td> </tr> <tr> <td class="normal"><?echo PASSWORD;?> :</td> <td class="normal"><b><?=stripslashes($frm['mot_passe']) ?></b></td> </tr> </table> </blockquote> <? } ?>