phpbb-checkins Mailing List for phpBB (Page 582)

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Update of /cvsroot/phpbb/phpBB2/includes
In directory usw-pr-cvs1:/tmp/cvs-serv10608/includes

Modified Files:
	functions.php 
Log Message:
Fix various bugs; password length warning, proper warnings for username/email errors

Index: functions.php
===================================================================
RCS file: /cvsroot/phpbb/phpBB2/includes/functions.php,v
retrieving revision 1.107
retrieving revision 1.108
diff -C2 -r1.107 -r1.108
*** functions.php	2002/01/22 18:13:59	1.107
--- functions.php	2002/01/27 03:10:19	1.108
***************
*** 192,196 ****
  	if( isset($SID) )
  	{
! //		$boxstring .= '<input type="hidden" name="sid" value="' . $SID . '" />';
  	}
  
--- 192,196 ----
  	if( isset($SID) )
  	{
! 		$boxstring .= '<input type="hidden" name="sid" value="' . $SID . '" />';
  	}
  
***************
*** 305,309 ****
  	
  			$images[$key] = ( file_exists($new_value) ) ? $new_value : str_replace("_lang", "_english", $value);
- //			list($images_width[$key], $images_height[$key]) = getimagesize($images[$key]);
  		}
  	}
--- 305,308 ----
***************
*** 499,569 ****
  function validate_username($username)
  {
! 	global $db;
  
! 	switch(SQL_LAYER)
  	{
! 		case 'mysql':
! 		case 'mysql4':
! 			$sql_users = "SELECT u.username, g.group_name
! 				FROM " . USERS_TABLE . " u, " . GROUPS_TABLE . " g, " . USER_GROUP_TABLE . " ug
! 				WHERE ug.user_id = u.user_id
! 					AND g.group_id = ug.group_id
! 					AND	( LOWER(u.username) = '" . strtolower(str_replace("\'", "''", $username)) . "'
! 						OR LOWER(g.group_name) = '" . strtolower(str_replace("\'", "''", $username)) . "' )";
! 			$sql_disallow = "SELECT disallow_username
! 				FROM " . DISALLOW_TABLE . "
! 				WHERE '" . str_replace("\'", "''", $username) . "' LIKE disallow_username";
! 			if($result = $db->sql_query($sql_users))
! 			{
! 				if($db->sql_numrows($result) > 0)
! 				{
! 					return(FALSE);
! 				}
! 			}
! 			if($result = $db->sql_query($sql_disallow))
! 			{
! 				if($db->sql_numrows($result) > 0)
! 				{
! 					return(FALSE);
! 				}
! 			}
! 			break;
  
! 		default:
! 			$sql = "SELECT u.username, g.group_name
! 				FROM " . USERS_TABLE . " u, " . GROUPS_TABLE . " g, " . USER_GROUP_TABLE . " ug
! 				WHERE ug.user_id = u.user_id
! 					AND g.group_id = ug.group_id
! 					AND	( LOWER(u.username) = '" . strtolower(str_replace("\'", "''", $username)) . "'
! 						OR LOWER(g.group_name) = '" . strtolower(str_replace("\'", "''", $username)) . "' )
! 				UNION
! 				SELECT disallow_username, NULL
! 					FROM " . DISALLOW_TABLE . "
! 					WHERE '" . str_replace("\'", "''", $username) . "' LIKE disallow_username";
! 			if($result = $db->sql_query($sql))
! 			{
! 				if($db->sql_numrows($result) > 0)
! 				{
! 					return(FALSE);
! 				}
! 			}
! 			break;
  	}
  
  	$sql = "SELECT word 
  		FROM  " . WORDS_TABLE;
! 	if( !$words_result = $db->sql_query($sql) )
  	{
! 		message_die(GENERAL_ERROR, "Couldn't get censored words from database.", "", __LINE__, __FILE__, $sql);
! 	}
! 	else
! 	{
! 		$word_list = $db->sql_fetchrowset($words_result);
! 
! 		for($i = 0; $i < count($word_list); $i++)
  		{
! 			if( preg_match("/\b(" . str_replace("\*", "\w*?", preg_quote($word_list[$i]['word'])) . ")\b/i", $username) )
  			{
! 				return(FALSE);
  			}
  		}
--- 498,537 ----
  function validate_username($username)
  {
! 	global $db, $lang;
  
! 	$sql = "SELECT u.username, g.group_name
! 		FROM " . USERS_TABLE . " u, " . GROUPS_TABLE . " g, " . USER_GROUP_TABLE . " ug
! 		WHERE ug.user_id = u.user_id
! 			AND g.group_id = ug.group_id
! 			AND	( LOWER(u.username) = '" . strtolower(str_replace("\'", "''", $username)) . "'
! 				OR LOWER(g.group_name) = '" . strtolower(str_replace("\'", "''", $username)) . "' )";
! 	if ( $result = $db->sql_query($sql) )
  	{
! 		if ( $db->sql_fetchrow($result) )
! 		{
! 			return array('error' => $lang['Username_taken']);
! 		}
! 	}
  
! 	$sql = "SELECT disallow_username
! 		FROM " . DISALLOW_TABLE . "
! 		WHERE '" . str_replace("\'", "''", $username) . "' LIKE disallow_username";
! 	if ( $result = $db->sql_query($sql) )
! 	{
! 		if ( $db->sql_fetchrow($result) )
! 		{
! 			return array('error' => $lang['Username_disallowed']);
! 		}
  	}
  
  	$sql = "SELECT word 
  		FROM  " . WORDS_TABLE;
! 	if ( $result = $db->sql_query($sql) )
  	{
! 		while( $row = $db->sql_fetchrow($result) )
  		{
! 			if( preg_match("/\b(" . str_replace("\*", "\w*?", preg_quote($row['word'])) . ")\b/i", $username) )
  			{
! 				return array('error' => $lang['Username_disallowed']);
  			}
  		}
***************
*** 573,580 ****
  	if ( strstr($username, '"') )
  	{
! 		return FALSE;
  	}
  
! 	return(TRUE);
  }
  
--- 541,548 ----
  	if ( strstr($username, '"') )
  	{
! 		return array('error' => $lang['Username_invalid']);
  	}
  
! 	return array('error' => '');
  }

2001	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct (193)	Nov (393)	Dec (347)
2002	Jan (401)	Feb (232)	Mar (343)	Apr (129)	May (129)	Jun (116)	Jul (189)	Aug (129)	Sep (68)	Oct (172)	Nov (298)	Dec (148)
2003	Jan (264)	Feb (210)	Mar (322)	Apr (309)	May (234)	Jun (188)	Jul (215)	Aug (161)	Sep (234)	Oct (163)	Nov (110)	Dec (7)
2004	Jan (95)	Feb (107)	Mar (55)	Apr (3)	May (49)	Jun (35)	Jul (57)	Aug (43)	Sep (56)	Oct (40)	Nov (25)	Dec (21)
2005	Jan (93)	Feb (25)	Mar (22)	Apr (72)	May (45)	Jun (24)	Jul (29)	Aug (20)	Sep (50)	Oct (93)	Nov (69)	Dec (183)
2006	Jan (185)	Feb (143)	Mar (402)	Apr (260)	May (322)	Jun (367)	Jul (234)	Aug (299)	Sep (206)	Oct (288)	Nov (338)	Dec (307)
2007	Jan (296)	Feb (250)	Mar (261)	Apr (434)	May (539)	Jun (274)	Jul (440)	Aug (190)	Sep (128)	Oct (249)	Nov (86)	Dec (51)
2008	Jan (177)	Feb (67)	Mar (61)	Apr (48)	May (56)	Jun (97)	Jul (60)	Aug (64)	Sep (151)	Oct (79)	Nov (109)	Dec (123)
2009	Jan (70)	Feb (70)	Mar (73)	Apr (80)	May (22)	Jun (193)	Jul (191)	Aug (181)	Sep (120)	Oct (48)	Nov (24)	Dec

phpbb-checkins Mailing List for phpBB (Page 582)

phpBB is the world's leading open source discussion forum software.

phpbb-checkins — If you subscribed to this list, please update: code.phpbb.com