useradd.php
872 Bytes
<?php
require_once "include.php";
if ($user->isAdmin()) {
if ((strlen(preg_replace('/[^a-f0-9]+/', '', $_POST['password_'])) == 32) &&
(isset($_POST['username_'])) &&
(strlen($_POST['username_']) > 2)) {
$cleanname = preg_replace('/[%"\'<>]+/', '', $_POST['realname']);
$real = ((isset($_POST['realname'])) && ($_POST['realname'] >= '') && ($_POST['realname'] == $cleanname)) ? $_POST['realname'] : $_POST['username_'];
$urec = array(
'id' => 0,
'username' => $_POST['username_'],
'realname' => $real,
'admin' => $_POST['admin'],
'password' => $_POST['password_'],
);
$nuser = new User($urec);
if ($nuser->getId() == 0) {
problem();
}
} else {
problem();
}
} else {
access_denied();
}
?>