Skip to content
Snippets Groups Projects
Normal view Permalink
email.php 2.77 KiB
Newer Older
Denis Walker's avatar
Moves project into "trunk" directory
Denis Walker committed
1 2 3 4 5 6 7 8 9 10 
<?php
$body = "";
$email_to = "joinus@sucs.org";
$_REQUEST['email'] = str_replace("\n", "", $_REQUEST['email']);
$headers = "From: ".$_REQUEST['email']."\n"."Reply-to: ".$_REQUEST['email'];
$subject = "Join request for user ".$_REQUEST['uname'];

// Perform data integrity checks

// Full name
Thomas Lake's avatar
Fix warnings related to ereg/eregi/ereg_match and split  
Thomas Lake committed
11 
if (preg_match("/[^\p{L}- ]/iu", $_REQUEST['realname'])) {
Denis Walker's avatar
Moves project into "trunk" directory
Denis Walker committed
12 13 14 15 16 17 18 19 20 
	$body .= "<p>That's a suspiciously unusual-looking name, <strong>" . htmlentities($_REQUEST['realname']) . "</strong>.</p>\n";
	$body .= "<p>Please click <em>Back</em> and correct it.</p>\n";
} else {
// Student number
if (!is_numeric($_REQUEST['student_number']) || strlen($_REQUEST['student_number']) <>  6) {
	$body .= "<p>The student number <strong>" . htmlentities($_REQUEST['student_number']) . "</strong> appears not to be valid.</p>\n";
	$body .= "<p>Please click <em>Back</em> and correct it.</p>\n";
} else {
// Email address
Thomas Lake's avatar
Fix warnings related to ereg/eregi/ereg_match and split  
Thomas Lake committed
21 
	list($username, $maildomain) = preg_split("/@/", $_REQUEST['email']);
Denis Walker's avatar
Moves project into "trunk" directory
Denis Walker committed
22 23 24 25 26 27 
	if (!checkdnsrr($maildomain, "MX") && !checkdnsrr($maildomain)) {
		$body .= "<p>The email address <strong>" . htmlentities($_REQUEST['email']) . "</strong> appears not to be valid.</p>\n";
		$body .= "<p>Please click <em>Back</em> and correct it.</p>\n";
	} else {
// Username
		// This test is rather inadequate. Needs improving
Thomas Lake's avatar
Fix warnings related to ereg/eregi/ereg_match and split  
Thomas Lake committed
28 
		if (!preg_match("/^[a-z0-9_]*$/i", $_REQUEST['uname'])) {
Denis Walker's avatar
Moves project into "trunk" directory
Denis Walker committed
29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 
			$body .= "<p>Usernames can only contain letters, numbers and underscores(_).</p>\n";
			$body .= "<p>Please click <em>Back</em> and choose a different one.</p>\n";
		} else {
// We're good to go
			$address = "http";
			if ($_SERVER['HTTPS']) $address .= "s";
			$address .= "://" . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'] ;
			$email_body = "This email was automatically created by the SUCS Website.\n\n";
			$email_body .= "It was created by " . $address . "\n";
			$email_body .= "from IP " . $_SERVER['REMOTE_ADDR'] . " on " . date("r") . "\n\n";
			$email_body .= "The details of the request are as follows:\n\n";
			$email_body .= "  Real name ............ {$_REQUEST['realname']}\n";
			$email_body .= "  Student number ....... {$_REQUEST['student_number']}\n";
			$email_body .= "  Email address ........ {$_REQUEST['email']}\n";
			$email_body .= "  Requested username ... {$_REQUEST['uname']}\n\n";
			$email_body .= "Please reply to this email, providing the user with details of\n";
			$email_body .= "how to join.\n\n";
			$email_body .= "-- \nSUCS Website\n";

			mail($email_to, $subject, $email_body, $headers);

			$body .= "<p>Thank you for your request to join SUCS.</p>";
			$body .= "<p>Someone from our admin team will email you shortly.</p>";
		} // username
	} // email
} // student number
} // full name

$smarty->assign("body", $body);
$smarty->assign("title", "Joining");
$pathlist[2] = "Joining";
$smarty->assign("subselect", "Joining");
Thomas Lake's avatar
Fix warnings related to ereg/eregi/ereg_match and split  
Thomas Lake committed
61 
?>