16199b4c18
fix moon custom login page logo not showing after upload add registration now allowed in demo mode, add warning when registration is disabled
189 lines
8.2 KiB
PHP
189 lines
8.2 KiB
PHP
<?php
|
|
|
|
/**
|
|
* PHP Mikrotik Billing (https://github.com/hotspotbilling/phpnuxbill/)
|
|
* by https://t.me/ibnux
|
|
**/
|
|
if ($_app_stage != 'Live') {
|
|
_alert(Lang::T('You do not have permission to access this page in demo mode'), 'danger', "login");
|
|
}
|
|
if ($_c['disable_registration'] == 'noreg') {
|
|
_alert(Lang::T('Registration Disabled'), 'danger', "login");
|
|
}
|
|
if (isset($routes['1'])) {
|
|
$do = $routes['1'];
|
|
} else {
|
|
$do = 'register-display';
|
|
}
|
|
|
|
$otpPath = $CACHE_PATH . File::pathFixer('/sms/');
|
|
|
|
switch ($do) {
|
|
case 'post':
|
|
$otp_code = _post('otp_code');
|
|
$username = alphanumeric(_post('username'), "+_.@-");
|
|
$email = _post('email');
|
|
$fullname = _post('fullname');
|
|
$password = _post('password');
|
|
$cpassword = _post('cpassword');
|
|
$address = _post('address');
|
|
|
|
// Separate phone number input if OTP is required
|
|
if (!empty($config['sms_url']) && $_c['sms_otp_registration'] == 'yes') {
|
|
$phone_number = alphanumeric(_post('phone_number'), "+_.@-");
|
|
} else {
|
|
$phone_number = $username; // When OTP is not required, treat username as phone number
|
|
}
|
|
|
|
$msg = '';
|
|
if (Validator::Length($username, 35, 2) == false) {
|
|
$msg .= 'Username should be between 3 to 55 characters' . '<br>';
|
|
}
|
|
if (Validator::Length($fullname, 36, 2) == false) {
|
|
$msg .= 'Full Name should be between 3 to 25 characters' . '<br>';
|
|
}
|
|
if (!Validator::Length($password, 35, 2)) {
|
|
$msg .= 'Password should be between 3 to 35 characters' . '<br>';
|
|
}
|
|
if (!Validator::Email($email)) {
|
|
$msg .= 'Email is not Valid<br>';
|
|
}
|
|
if ($password != $cpassword) {
|
|
$msg .= Lang::T('Passwords does not match') . '<br>';
|
|
}
|
|
|
|
// OTP verification if OTP is enabled
|
|
if (!empty($config['sms_url']) && $_c['sms_otp_registration'] == 'yes') {
|
|
$otpPath .= sha1($phone_number . $db_pass) . ".txt";
|
|
run_hook('validate_otp'); #HOOK
|
|
// Expire after 10 minutes
|
|
if (file_exists($otpPath) && time() - filemtime($otpPath) > 1200) {
|
|
unlink($otpPath);
|
|
r2(U . 'register', 's', 'Verification code expired');
|
|
} else if (file_exists($otpPath)) {
|
|
$code = file_get_contents($otpPath);
|
|
if ($code != $otp_code) {
|
|
$ui->assign('username', $username);
|
|
$ui->assign('fullname', $fullname);
|
|
$ui->assign('address', $address);
|
|
$ui->assign('email', $email);
|
|
$ui->assign('phone_number', $phone_number);
|
|
$ui->assign('notify', 'Wrong Verification code');
|
|
$ui->assign('notify_t', 'd');
|
|
$ui->assign('_title', Lang::T('Register'));
|
|
$ui->display('customer/register-otp.tpl');
|
|
exit();
|
|
} else {
|
|
unlink($otpPath);
|
|
}
|
|
} else {
|
|
r2(U . 'register', 's', 'No Verification code');
|
|
}
|
|
}
|
|
|
|
// Check if username already exists
|
|
$d = ORM::for_table('tbl_customers')->where('username', $username)->find_one();
|
|
if ($d) {
|
|
$msg .= Lang::T('Account already exists') . '<br>';
|
|
}
|
|
|
|
if ($msg == '') {
|
|
run_hook('register_user'); #HOOK
|
|
$d = ORM::for_table('tbl_customers')->create();
|
|
$d->username = alphanumeric($username, "+_.@-");
|
|
$d->password = $password;
|
|
$d->fullname = $fullname;
|
|
$d->address = $address;
|
|
$d->email = $email;
|
|
$d->phonenumber = $phone_number;
|
|
if ($d->save()) {
|
|
$user = $d->id();
|
|
r2(U . 'login', 's', Lang::T('Register Success! You can login now'));
|
|
} else {
|
|
$ui->assign('username', $username);
|
|
$ui->assign('fullname', $fullname);
|
|
$ui->assign('address', $address);
|
|
$ui->assign('email', $email);
|
|
$ui->assign('phone_number', $phone_number);
|
|
$ui->assign('notify', 'Failed to register');
|
|
$ui->assign('notify_t', 'd');
|
|
$ui->assign('_title', Lang::T('Register'));
|
|
run_hook('view_otp_register'); #HOOK
|
|
$ui->display('customer/register-rotp.tpl');
|
|
}
|
|
} else {
|
|
$ui->assign('username', $username);
|
|
$ui->assign('fullname', $fullname);
|
|
$ui->assign('address', $address);
|
|
$ui->assign('email', $email);
|
|
$ui->assign('phone_number', $phone_number);
|
|
$ui->assign('notify', $msg);
|
|
$ui->assign('notify_t', 'd');
|
|
$ui->assign('_title', Lang::T('Register'));
|
|
// Check if OTP is enabled
|
|
if (!empty($config['sms_url']) && $_c['sms_otp_registration'] == 'yes') {
|
|
// Display register-otp.tpl if OTP is enabled
|
|
$ui->display('customer/register-otp.tpl');
|
|
} else {
|
|
// Display register.tpl if OTP is not enabled
|
|
$ui->display('customer/register.tpl');
|
|
}
|
|
}
|
|
break;
|
|
|
|
default:
|
|
if (!empty($config['sms_url']) && $_c['sms_otp_registration'] == 'yes') {
|
|
$phone_number = _post('phone_number');
|
|
if (!empty($phone_number)) {
|
|
$d = ORM::for_table('tbl_customers')->where('username', $phone_number)->find_one();
|
|
if ($d) {
|
|
r2(U . 'register', 's', Lang::T('Account already exists'));
|
|
}
|
|
if (!file_exists($otpPath)) {
|
|
mkdir($otpPath);
|
|
touch($otpPath . 'index.html');
|
|
}
|
|
$otpPath .= sha1($phone_number . $db_pass) . ".txt";
|
|
if (file_exists($otpPath) && time() - filemtime($otpPath) < 600) {
|
|
$ui->assign('phone_number', $phone_number);
|
|
$ui->assign('notify', 'Please wait ' . (600 - (time() - filemtime($otpPath))) . ' seconds before sending another SMS');
|
|
$ui->assign('notify_t', 'd');
|
|
$ui->assign('_title', Lang::T('Register'));
|
|
$ui->display('customer/register-otp.tpl');
|
|
} else {
|
|
$otp = rand(100000, 999999);
|
|
file_put_contents($otpPath, $otp);
|
|
if($config['phone_otp_type'] == 'whatsapp'){
|
|
Message::sendWhatsapp($phone_number, $config['CompanyName'] . "\n\n".Lang::T("Registration code")."\n$otp");
|
|
}else if($config['phone_otp_type'] == 'both'){
|
|
Message::sendWhatsapp($phone_number, $config['CompanyName'] . "\n\n".Lang::T("Registration code")."\n$otp");
|
|
Message::sendSMS($phone_number, $config['CompanyName'] . "\n\n".Lang::T("Registration code")."\n$otp");
|
|
}else{
|
|
Message::sendSMS($phone_number, $config['CompanyName'] . "\n\n".Lang::T("Registration code")."\n$otp");
|
|
}
|
|
$ui->assign('phone_number', $phone_number);
|
|
$ui->assign('notify', 'Registration code has been sent to your phone');
|
|
$ui->assign('notify_t', 's');
|
|
$ui->assign('_title', Lang::T('Register'));
|
|
$ui->display('customer/register-otp.tpl');
|
|
}
|
|
} else {
|
|
$ui->assign('_title', Lang::T('Register'));
|
|
run_hook('view_otp_register'); #HOOK
|
|
$ui->display('customer/register-rotp.tpl');
|
|
}
|
|
} else {
|
|
$ui->assign('username', "");
|
|
$ui->assign('fullname', "");
|
|
$ui->assign('address', "");
|
|
$ui->assign('email', "");
|
|
$ui->assign('otp', false);
|
|
$ui->assign('_title', Lang::T('Register'));
|
|
run_hook('view_register'); #HOOK
|
|
$ui->display('customer/register.tpl');
|
|
}
|
|
break;
|
|
}
|
|
|
|
?>
|