<?

$section="register";

require('./session.php');

$firsterr=0;
$lasterr=0;
$disperr=0;
$passerr=0;
$passerr2=0;
$emailerr=0;
$ziperr=0;
$charerr=0;

$confirm = ( isset($HTTP_GET_VARS["confirm"]) ? $HTTP_GET_VARS["confirm"] : 0 );

if ($_REQUEST['submitted']==1) {

$firstname=$_POST['firstname'];
$lastname=$_POST['lastname'];
$displayname=$_POST['displayname'];
$passwd=$_POST['passwd'];
$passwd2=$_POST['passwd2'];
$email=$_POST['email'];
$useridnum=md5($email);
$zipcode=$_POST['zipcode'];
$char=$_POST['char'];
$codenum=$_POST['codenum'];
$enc = md5(date('r', time())); 

if ($firstname==''){$firsterr='first name';}
if ($lastname==''){$lasterr='last name';}
if ($passwd==''){$passerr='password';}
if ($passwd2==''){$passerr2='retype password';}
if ($email==''){$emailerr='email address';}
if ($zipcode==''){$ziperr='zip code';}
if ($char==''){$charerr='enter the characters below';}

require('./accessdb.php');

if ($displayname!=''){
$query="SELECT * FROM filam_members WHERE displayname='$displayname'";
$num=mysql_numrows(mysql_query($query));
if (strlen($displayname)>15){$disperr='display name too long';}
}


if ($email!=''){
$query="SELECT * FROM filam_members WHERE email='$email'";
$num=mysql_numrows(mysql_query($query));
if ($num>0){$emailerr='email already in use';}

  // First, we check that there's one @ symbol, and that the lengths are right
  if (!ereg("^[^@]{1,64}@[^@]{1,255}$", $email)) {
    // Email invalid because wrong number of characters in one section, or wrong number of @ symbols.
        $emailerr='invalid email address';
  }
  // Split it into sections to make life easier
  $email_array = explode("@", $email);
  $local_array = explode(".", $email_array[0]);
  for ($i = 0; $i < sizeof($local_array); $i++) {
     if (!ereg("^(([A-Za-z0-9!#$%&#038;'*+/=?^_`{|}~-][A-Za-z0-9!#$%&#038;'*+/=?^_`{|}~\.-]{0,63})|(\"[^(\\|\")]{0,62}\"))$", $local_array[$i])) {
        $emailerr='invalid email address';
    }
  }  
  if (!ereg("^\[?[0-9\.]+\]?$", $email_array[1])) { // Check if domain is IP. If not, it should be valid domain name
    $domain_array = explode(".", $email_array[1]);
    if (sizeof($domain_array) < 2) {
        $emailerr='invalid email address';
    }
    for ($i = 0; $i < sizeof($domain_array); $i++) {
      if (!ereg("^(([A-Za-z0-9][A-Za-z0-9-]{0,61}[A-Za-z0-9])|([A-Za-z0-9]+))$", $domain_array[$i])) {
        $emailerr='invalid email address';
      }
    }
  }
}

if ($zipcode!=''){
$query="SELECT * FROM zip_code WHERE zip_code='$zipcode'";
$num=mysql_numrows(mysql_query($query));
if ($num==0){$ziperr='invalid zip code';}
}

if ($passwd2!=''){
if ($passwd2!=$passwd){$passerr2='password does not match';}
}

if ($char!=''){
if ($codenum==1){$code="k3p7dw";}
if ($codenum==2){$code="4zqmj5";}
if ($codenum==3){$code="sw28th";}
if ($char!=$code){$charerr='characters do not match';}
}

if ($firsterr=='0' && $lasterr=='0' && $disperr=='0' && $passerr=='0' && $passerr2=='0' && $emailerr=='0' && $ziperr=='0' && $charerr=='0'){

$query="SELECT * FROM zip_code WHERE zip_code='$zipcode'";
$result=mysql_query($query);
$city=mysql_result($result,0,"city");
$state=mysql_result($result,0,"state_name");

$query="INSERT INTO `filam_members` (firstname, lastname, displayname, password, email, city, state, zipcode, userid, confirmnum) VALUES ('$firstname', '$lastname', '$displayname', '$passwd', '$email', '$city', '$state', '$zipcode', '$useridnum', '$enc')"; 
mysql_query($query) or die('Error, insert query failed');


//define the receiver of the email 
$to = $email;
//define the subject of the email 
$subject = "filamconnect.com - Confirm your account registration."; 

//define the headers we want passed. Note that they are separated with \r\n 
$headers = "From: filamconnect@filamconnect.com";
//define attachment name
$attachment_file = "";

//read the attachment file contents into a string,
//encode it with MIME base64,
//and split it into smaller chunks
$attachment = chunk_split(base64_encode(file_get_contents($attachment_file))); 

$message  = "Dear $firstname,\n\n";
$message .= "Thank you for creating an account with us.  Please click the following link to complete and confirm your registration.\n";
$message .= "http://www.filamconnect.com/register.suphp?confirm=$enc\n\n";
$message .= "Sincerely,\n";
$message .= "filamconnect.com\n\n";
$message .= "NOTE: Please do not reply to this email as we are unable to respond to your reply from this address.\n";

//send the email 
$mail_sent = @mail( $to, $subject, $message, $headers ); 
//if the message is sent successfully print "Mail sent". Otherwise print "Mail failed" 
$confirm='1';



//  LET JED KNOW SOMEONE REGISTERED FOR AN ACCOUNT

$to = 'jedalan@gmail.com';
//define the subject of the email 
$subject = "filamconnect.com - Account registration."; 

//define the headers we want passed. Note that they are separated with \r\n 
$headers = "From: filamconnect@filamconnect.com";
//define attachment name
$attachment_file = "";

//read the attachment file contents into a string,
//encode it with MIME base64,
//and split it into smaller chunks
$attachment = chunk_split(base64_encode(file_get_contents($attachment_file))); 

$message  = "Member # $useridnum has registered for an account.\n\n";

//send the email 
$mail_sent = @mail( $to, $subject, $message, $headers ); 
//if the message is sent successfully print "Mail sent". Otherwise print "Mail failed" 



}


}
?>

<HTML>
<HEAD>
<TITLE>filamconnect.com</TITLE>
<META 
content="filipino, american, fil-am, filam, california, orange county, san francisco, bay area, community, church, network, tagalog" 
name=keywords>
<META NAME="GENERATOR" Content="Microsoft Visual Studio">
<META HTTP-EQUIV="Content-Type" content="text/html; charset=UTF-8">
<link href="filamconnect.css" type="text/css" rel="stylesheet">
<link rel="shortcut icon" href="favicon.ico">
<script type="text/javascript">


</script>
</HEAD>


<BODY link=white vlink=white background=bg.jpg onload="initialize()" onunload="GUnload()">
<?
require('./header.php');
require('./filam.php');
?>

<table cellpadding=0 width=100%><tr><td valign=top>

<!--MAINBOX-->
  <!--TITLE-->
<table cellspacing=0 cellpadding=5 width=100%>
<tr><td colspan=2 class=title>Create your account.
</td></tr></table>
  <!--END TITLE-->

<?

echo "<form style='margin-bottom:0;' method=POST action=''><br><br>
<table cellpadding=1 cellspacing=0 width=666><tr><td align=center>
<table cellpadding=1 cellspacing=0 bgcolor=61666B><tr><td>
<table cellpadding=10 cellspacing=0 bgcolor=BEC7D5><tr>";

if ($confirm=='0'){echo "<td align=left width=400 height=250><table cellpadding=3 cellspacing=0>

<tr><td class=form colspan=2><input type=text name=firstname value='$firstname' size=20> ";
if ($firsterr=='0'){echo "<b>first name</b>";}
else {echo "<font class=smallredarial><b>$firsterr</b></font>";}
echo "</td></tr>

<tr><td class=form colspan=2><input type=text name=lastname value='$lastname' size=20> ";
if ($lasterr=='0'){echo "<b>last name</b>";}
else {echo "<font class=smallredarial><b>$lasterr</b></font>";}
echo "</td></tr>

<tr><td class=form colspan=2><input type=text name=displayname value='$displayname' size=20> ";
if ($disperr=='0'){echo "<b>display name*</b>";}
else {echo "<font class=smallredarial><b>$disperr</b></font>";}
echo "</td></tr>

<tr><td colspan=2 class=form align=left><font class=formsmall>
*NOTE:  Enter a display name if you don't want your full name displayed in the People section.
</td></tr>

<tr><td class=form colspan=2><input type=password name=passwd value='$passwd' size=20> ";
if ($passerr=='0'){echo "<b>password</b>";}
else {echo "<font class=smallredarial><b>$passerr</b></font>";}
echo "</td></tr>

<tr><td class=form colspan=2><input type=password name=passwd2 value='$passwd2' size=20> ";
if ($passerr2=='0'){echo "<b>retype password</b>";}
else {echo "<font class=smallredarial><b>$passerr2</b></font>";}
echo "</td></tr>

<tr><td class=form colspan=2><input type=text name=email value='$email' size=20> ";
if ($emailerr=='0'){echo "<b>email address</b>";}
else {echo "<font class=smallredarial><b>$emailerr</b></font>";}
echo "</td></tr>

<tr><td class=form colspan=2><input type=text name=zipcode value='$zipcode' size=5> ";
if ($ziperr=='0'){echo "<b>zip code</b>";}
else {echo "<font class=smallredarial><b>$ziperr</b></font>";}
echo "</td></tr>

<tr><td class=form colspan=2><input type=text name=char value='$char' size=5> ";
if ($charerr=='0'){echo "<b>enter the characters you see</b>";}
else {echo "<font class=smallredarial><b>$charerr</b></font>";}
echo "</td></tr>

<tr><td colspan=2><table width=400><tr><td rowspan=2 align=left>";

$codenum=rand(1, 3);
echo "<img src='regcodes/$codenum.gif'><input type=hidden name=codenum value='$codenum' size=20>";

echo "</td></tr>
<tr><td align=right></td></tr>
<tr><td colspan=2>
<table><tr><td class=blue>
By clicking Submit, you are acknowledging that you have read the 
<a href=terms.php class=blue>Terms of Service</a> and 
<a href=privacy.php class=blue>Privacy Policy</a>.</td>
<td><input type=submit value='Submit'><input type='hidden' name='submitted' value='1'></td>
</td></tr></table>
</table></td></tr></table>";
}

if ($confirm=='1'){echo "<td align=center width=400 height=250><font class=smallred>Salamat! An email has been sent to the email address you provided. 
Please follow its instructions to finish creating your account.</font>";}





elseif ($confirm!='0' || $confirm!=0){

echo "<td align=center width=400 height=250><font class=smallred>";

$query="SELECT * FROM filam_members WHERE confirmnum='$confirm'";
$result=mysql_query($query);
$num=mysql_numrows($result);
if ($num!=0){

$todaysdate = date("Y-m-d");

$query="UPDATE `filam_members` SET `confirmed` = 1, `memberdate` = '$todaysdate' WHERE confirmnum='$confirm'"; 
mysql_query($query) or die('Error, insert query failed');

$userid=mysql_result($result,$i,"userid");
$newdir = "members/$userid";
mkdir($newdir, 0777);
chmod($newdir, 0777);

$file = 'members/thumbnail_generator_original.php';
$newfile = 'members/thumbnail_generator.php';
copy($file, $newfile);

$file2 = 'members/thumbnail_generator2_original.php';
$newfile2 = 'members/thumbnail_generator2.php';
copy($file2, $newfile2);

$file = "members/thumbnail_generator.php";
$file2 = "members/thumbnail_generator2.php";
$newfile = "members/$userid/thumbnail_generator.php";
$newfile2 = "members/$userid/thumbnail_generator2.php";

rename($file,$newfile);
rename($file2,$newfile2);
chmod($newfile, 0644);
chmod($newfile2, 0644);

$file = "members/index.html";
$tempfile = "members/tempindex.html";
$newfile = "members/$userid/index.html";
copy($file, $tempfile);
rename($tempfile,$newfile);
chmod($newfile, 0644);

echo "Salamat! You've just confirmed your account registration.  Click <a href=loginsecond.php class=smallform><b>here</b></a> to login and complete your user profile.";


//  LET JED KNOW SOMEONE DELETED THEIR ACCOUNT

$to = 'jedalan@gmail.com';
//define the subject of the email 
$subject = "filamconnect.com - Account confirmed."; 

//define the headers we want passed. Note that they are separated with \r\n 
$headers = "From: filamconnect@filamconnect.com";
//define attachment name
$attachment_file = "";

//read the attachment file contents into a string,
//encode it with MIME base64,
//and split it into smaller chunks
$attachment = chunk_split(base64_encode(file_get_contents($attachment_file))); 

$message  = "Member # $userid has confirmed his/her account.\n\n";

//send the email 
$mail_sent = @mail( $to, $subject, $message, $headers ); 
//if the message is sent successfully print "Mail sent". Otherwise print "Mail failed" 



}
else {echo "Sorry, this confirmation link is invalid.";}

echo "</font>";
}



?>
</td></tr></table></td></tr></table></td></tr></table><br><br><br>
</td></tr><? require('./footer.php'); ?></table>
</td>



       <td bgcolor=9BB6E1 valign=top height=850 width=130 align=center>
<? require('./googleads.php'); ?>
       </td>
   </tr>
  </TABLE>


</TD></TR></TABLE>

</BODY>
</HTML>