PageRenderTime 40ms CodeModel.GetById 8ms RepoModel.GetById 0ms app.codeStats 1ms

/wp-signup.php

https://bitbucket.org/aqge/deptandashboard
PHP | 451 lines | 369 code | 70 blank | 12 comment | 81 complexity | 0be2424382479fe6552bd1f21ebc5432 MD5 | raw file
Possible License(s): AGPL-1.0, GPL-2.0, LGPL-2.1
  1. <?php
  2. /** Sets up the WordPress Environment. */
  3. require( dirname(__FILE__) . '/wp-load.php' );
  4. add_action( 'wp_head', 'wp_no_robots' );
  5. require( './wp-blog-header.php' );
  6. if ( is_array( get_site_option( 'illegal_names' )) && isset( $_GET[ 'new' ] ) && in_array( $_GET[ 'new' ], get_site_option( 'illegal_names' ) ) == true ) {
  7. wp_redirect( network_home_url() );
  8. die();
  9. }
  10. function do_signup_header() {
  11. do_action( 'signup_header' );
  12. }
  13. add_action( 'wp_head', 'do_signup_header' );
  14. if ( !is_multisite() ) {
  15. wp_redirect( site_url('wp-login.php?action=register') );
  16. die();
  17. }
  18. if ( !is_main_site() ) {
  19. wp_redirect( network_home_url( 'wp-signup.php' ) );
  20. die();
  21. }
  22. // Fix for page title
  23. $wp_query->is_404 = false;
  24. function wpmu_signup_stylesheet() {
  25. ?>
  26. <style type="text/css">
  27. .mu_register { width: 90%; margin:0 auto; }
  28. .mu_register form { margin-top: 2em; }
  29. .mu_register .error { font-weight:700; padding:10px; color:#333333; background:#FFEBE8; border:1px solid #CC0000; }
  30. .mu_register input[type="submit"],
  31. .mu_register #blog_title,
  32. .mu_register #user_email,
  33. .mu_register #blogname,
  34. .mu_register #user_name { width:100%; font-size: 24px; margin:5px 0; }
  35. .mu_register .prefix_address,
  36. .mu_register .suffix_address {font-size: 18px;display:inline; }
  37. .mu_register label { font-weight:700; font-size:15px; display:block; margin:10px 0; }
  38. .mu_register label.checkbox { display:inline; }
  39. .mu_register .mu_alert { font-weight:700; padding:10px; color:#333333; background:#ffffe0; border:1px solid #e6db55; }
  40. </style>
  41. <?php
  42. }
  43. add_action( 'wp_head', 'wpmu_signup_stylesheet' );
  44. get_header();
  45. do_action( 'before_signup_form' );
  46. ?>
  47. <div id="content" class="widecolumn">
  48. <div class="mu_register">
  49. <?php
  50. function show_blog_form($blogname = '', $blog_title = '', $errors = '') {
  51. global $current_site;
  52. // Blog name
  53. if ( !is_subdomain_install() )
  54. echo '<label for="blogname">' . __('Site Name:') . '</label>';
  55. else
  56. echo '<label for="blogname">' . __('Site Domain:') . '</label>';
  57. if ( $errmsg = $errors->get_error_message('blogname') ) { ?>
  58. <p class="error"><?php echo $errmsg ?></p>
  59. <?php }
  60. if ( !is_subdomain_install() )
  61. echo '<span class="prefix_address">' . $current_site->domain . $current_site->path . '</span><input name="blogname" type="text" id="blogname" value="'. esc_attr($blogname) .'" maxlength="60" /><br />';
  62. else
  63. echo '<input name="blogname" type="text" id="blogname" value="'.esc_attr($blogname).'" maxlength="60" /><span class="suffix_address">.' . ( $site_domain = preg_replace( '|^www\.|', '', $current_site->domain ) ) . '</span><br />';
  64. if ( !is_user_logged_in() ) {
  65. if ( !is_subdomain_install() )
  66. $site = $current_site->domain . $current_site->path . __( 'sitename' );
  67. else
  68. $site = __( 'domain' ) . '.' . $site_domain . $current_site->path;
  69. echo '<p>(<strong>' . sprintf( __('Your address will be %s.'), $site ) . '</strong>) ' . __( 'Must be at least 4 characters, letters and numbers only. It cannot be changed, so choose carefully!' ) . '</p>';
  70. }
  71. // Blog Title
  72. ?>
  73. <label for="blog_title"><?php _e('Site Title:') ?></label>
  74. <?php if ( $errmsg = $errors->get_error_message('blog_title') ) { ?>
  75. <p class="error"><?php echo $errmsg ?></p>
  76. <?php }
  77. echo '<input name="blog_title" type="text" id="blog_title" value="'.esc_attr($blog_title).'" />';
  78. ?>
  79. <div id="privacy">
  80. <p class="privacy-intro">
  81. <label for="blog_public_on"><?php _e('Privacy:') ?></label>
  82. <?php _e('Allow my site to appear in search engines like Google, Technorati, and in public listings around this network.'); ?>
  83. <br style="clear:both" />
  84. <label class="checkbox" for="blog_public_on">
  85. <input type="radio" id="blog_public_on" name="blog_public" value="1" <?php if ( !isset( $_POST['blog_public'] ) || $_POST['blog_public'] == '1' ) { ?>checked="checked"<?php } ?> />
  86. <strong><?php _e( 'Yes' ); ?></strong>
  87. </label>
  88. <label class="checkbox" for="blog_public_off">
  89. <input type="radio" id="blog_public_off" name="blog_public" value="0" <?php if ( isset( $_POST['blog_public'] ) && $_POST['blog_public'] == '0' ) { ?>checked="checked"<?php } ?> />
  90. <strong><?php _e( 'No' ); ?></strong>
  91. </label>
  92. </p>
  93. </div>
  94. <?php
  95. do_action('signup_blogform', $errors);
  96. }
  97. function validate_blog_form() {
  98. $user = '';
  99. if ( is_user_logged_in() )
  100. $user = wp_get_current_user();
  101. return wpmu_validate_blog_signup($_POST['blogname'], $_POST['blog_title'], $user);
  102. }
  103. function show_user_form($user_name = '', $user_email = '', $errors = '') {
  104. // User name
  105. echo '<label for="user_name">' . __('Username:') . '</label>';
  106. if ( $errmsg = $errors->get_error_message('user_name') ) {
  107. echo '<p class="error">'.$errmsg.'</p>';
  108. }
  109. echo '<input name="user_name" type="text" id="user_name" value="'. esc_attr($user_name) .'" maxlength="60" /><br />';
  110. _e( '(Must be at least 4 characters, letters and numbers only.)' );
  111. ?>
  112. <label for="user_email"><?php _e( 'Email&nbsp;Address:' ) ?></label>
  113. <?php if ( $errmsg = $errors->get_error_message('user_email') ) { ?>
  114. <p class="error"><?php echo $errmsg ?></p>
  115. <?php } ?>
  116. <input name="user_email" type="text" id="user_email" value="<?php echo esc_attr($user_email) ?>" maxlength="200" /><br /><?php _e('We send your registration email to this address. (Double-check your email address before continuing.)') ?>
  117. <?php
  118. if ( $errmsg = $errors->get_error_message('generic') ) {
  119. echo '<p class="error">' . $errmsg . '</p>';
  120. }
  121. do_action( 'signup_extra_fields', $errors );
  122. }
  123. function validate_user_form() {
  124. return wpmu_validate_user_signup($_POST['user_name'], $_POST['user_email']);
  125. }
  126. function signup_another_blog($blogname = '', $blog_title = '', $errors = '') {
  127. global $current_site;
  128. $current_user = wp_get_current_user();
  129. if ( ! is_wp_error($errors) ) {
  130. $errors = new WP_Error();
  131. }
  132. // allow definition of default variables
  133. $filtered_results = apply_filters('signup_another_blog_init', array('blogname' => $blogname, 'blog_title' => $blog_title, 'errors' => $errors ));
  134. $blogname = $filtered_results['blogname'];
  135. $blog_title = $filtered_results['blog_title'];
  136. $errors = $filtered_results['errors'];
  137. echo '<h2>' . sprintf( __( 'Get <em>another</em> %s site in seconds' ), $current_site->site_name ) . '</h2>';
  138. if ( $errors->get_error_code() ) {
  139. echo '<p>' . __( 'There was a problem, please correct the form below and try again.' ) . '</p>';
  140. }
  141. ?>
  142. <p><?php printf( __( 'Welcome back, %s. By filling out the form below, you can <strong>add another site to your account</strong>. There is no limit to the number of sites you can have, so create to your heart&#8217;s content, but write responsibly!' ), $current_user->display_name ) ?></p>
  143. <?php
  144. $blogs = get_blogs_of_user($current_user->ID);
  145. if ( !empty($blogs) ) { ?>
  146. <p><?php _e( 'Sites you are already a member of:' ) ?></p>
  147. <ul>
  148. <?php foreach ( $blogs as $blog ) {
  149. $home_url = get_home_url( $blog->userblog_id );
  150. echo '<li><a href="' . esc_url( $home_url ) . '">' . $home_url . '</a></li>';
  151. } ?>
  152. </ul>
  153. <?php } ?>
  154. <p><?php _e( 'If you&#8217;re not going to use a great site domain, leave it for a new user. Now have at it!' ) ?></p>
  155. <form id="setupform" method="post" action="wp-signup.php">
  156. <input type="hidden" name="stage" value="gimmeanotherblog" />
  157. <?php do_action( 'signup_hidden_fields' ); ?>
  158. <?php show_blog_form($blogname, $blog_title, $errors); ?>
  159. <p class="submit"><input type="submit" name="submit" class="submit" value="<?php esc_attr_e( 'Create Site' ) ?>" /></p>
  160. </form>
  161. <?php
  162. }
  163. function validate_another_blog_signup() {
  164. global $wpdb, $blogname, $blog_title, $errors, $domain, $path;
  165. $current_user = wp_get_current_user();
  166. if ( !is_user_logged_in() )
  167. die();
  168. $result = validate_blog_form();
  169. extract($result);
  170. if ( $errors->get_error_code() ) {
  171. signup_another_blog($blogname, $blog_title, $errors);
  172. return false;
  173. }
  174. $public = (int) $_POST['blog_public'];
  175. $meta = apply_filters( 'signup_create_blog_meta', array( 'lang_id' => 1, 'public' => $public ) ); // deprecated
  176. $meta = apply_filters( 'add_signup_meta', $meta );
  177. wpmu_create_blog( $domain, $path, $blog_title, $current_user->ID, $meta, $wpdb->siteid );
  178. confirm_another_blog_signup($domain, $path, $blog_title, $current_user->user_login, $current_user->user_email, $meta);
  179. return true;
  180. }
  181. function confirm_another_blog_signup($domain, $path, $blog_title, $user_name, $user_email = '', $meta = '') {
  182. ?>
  183. <h2><?php printf( __( 'The site %s is yours.' ), "<a href='http://{$domain}{$path}'>{$blog_title}</a>" ) ?></h2>
  184. <p>
  185. <?php printf( __( '<a href="http://%1$s">http://%2$s</a> is your new site. <a href="%3$s">Log in</a> as &#8220;%4$s&#8221; using your existing password.' ), $domain.$path, $domain.$path, "http://" . $domain.$path . "wp-login.php", $user_name ) ?>
  186. </p>
  187. <?php
  188. do_action( 'signup_finished' );
  189. }
  190. function signup_user($user_name = '', $user_email = '', $errors = '') {
  191. global $current_site, $active_signup;
  192. if ( !is_wp_error($errors) )
  193. $errors = new WP_Error();
  194. if ( isset( $_POST[ 'signup_for' ] ) )
  195. $signup[ esc_html( $_POST[ 'signup_for' ] ) ] = 'checked="checked"';
  196. else
  197. $signup[ 'blog' ] = 'checked="checked"';
  198. //TODO - This doesn't seem to do anything do we really need it?
  199. $signup['user'] = isset( $signup['user'] ) ? $signup['user'] : '';
  200. // allow definition of default variables
  201. $filtered_results = apply_filters('signup_user_init', array('user_name' => $user_name, 'user_email' => $user_email, 'errors' => $errors ));
  202. $user_name = $filtered_results['user_name'];
  203. $user_email = $filtered_results['user_email'];
  204. $errors = $filtered_results['errors'];
  205. ?>
  206. <h2><?php printf( __( 'Get your own %s account in seconds' ), $current_site->site_name ) ?></h2>
  207. <form id="setupform" method="post" action="wp-signup.php">
  208. <input type="hidden" name="stage" value="validate-user-signup" />
  209. <?php do_action( 'signup_hidden_fields' ); ?>
  210. <?php show_user_form($user_name, $user_email, $errors); ?>
  211. <p>
  212. <?php if ( $active_signup == 'blog' ) { ?>
  213. <input id="signupblog" type="hidden" name="signup_for" value="blog" />
  214. <?php } elseif ( $active_signup == 'user' ) { ?>
  215. <input id="signupblog" type="hidden" name="signup_for" value="user" />
  216. <?php } else { ?>
  217. <input id="signupblog" type="radio" name="signup_for" value="blog" <?php echo $signup['blog'] ?> />
  218. <label class="checkbox" for="signupblog"><?php _e('Gimme a site!') ?></label>
  219. <br />
  220. <input id="signupuser" type="radio" name="signup_for" value="user" <?php echo $signup['user'] ?> />
  221. <label class="checkbox" for="signupuser"><?php _e('Just a username, please.') ?></label>
  222. <?php } ?>
  223. </p>
  224. <p class="submit"><input type="submit" name="submit" class="submit" value="<?php esc_attr_e('Next') ?>" /></p>
  225. </form>
  226. <?php
  227. }
  228. function validate_user_signup() {
  229. $result = validate_user_form();
  230. extract($result);
  231. if ( $errors->get_error_code() ) {
  232. signup_user($user_name, $user_email, $errors);
  233. return false;
  234. }
  235. if ( 'blog' == $_POST['signup_for'] ) {
  236. signup_blog($user_name, $user_email);
  237. return false;
  238. }
  239. wpmu_signup_user($user_name, $user_email, apply_filters( 'add_signup_meta', array() ) );
  240. confirm_user_signup($user_name, $user_email);
  241. return true;
  242. }
  243. function confirm_user_signup($user_name, $user_email) {
  244. ?>
  245. <h2><?php printf( __( '%s is your new username' ), $user_name) ?></h2>
  246. <p><?php _e( 'But, before you can start using your new username, <strong>you must activate it</strong>.' ) ?></p>
  247. <p><?php printf(__( 'Check your inbox at <strong>%1$s</strong> and click the link given.' ), $user_email) ?></p>
  248. <p><?php _e( 'If you do not activate your username within two days, you will have to sign up again.' ); ?></p>
  249. <?php
  250. do_action( 'signup_finished' );
  251. }
  252. function signup_blog($user_name = '', $user_email = '', $blogname = '', $blog_title = '', $errors = '') {
  253. if ( !is_wp_error($errors) )
  254. $errors = new WP_Error();
  255. // allow definition of default variables
  256. $filtered_results = apply_filters('signup_blog_init', array('user_name' => $user_name, 'user_email' => $user_email, 'blogname' => $blogname, 'blog_title' => $blog_title, 'errors' => $errors ));
  257. $user_name = $filtered_results['user_name'];
  258. $user_email = $filtered_results['user_email'];
  259. $blogname = $filtered_results['blogname'];
  260. $blog_title = $filtered_results['blog_title'];
  261. $errors = $filtered_results['errors'];
  262. if ( empty($blogname) )
  263. $blogname = $user_name;
  264. ?>
  265. <form id="setupform" method="post" action="wp-signup.php">
  266. <input type="hidden" name="stage" value="validate-blog-signup" />
  267. <input type="hidden" name="user_name" value="<?php echo esc_attr($user_name) ?>" />
  268. <input type="hidden" name="user_email" value="<?php echo esc_attr($user_email) ?>" />
  269. <?php do_action( 'signup_hidden_fields' ); ?>
  270. <?php show_blog_form($blogname, $blog_title, $errors); ?>
  271. <p class="submit"><input type="submit" name="submit" class="submit" value="<?php esc_attr_e('Signup') ?>" /></p>
  272. </form>
  273. <?php
  274. }
  275. function validate_blog_signup() {
  276. // Re-validate user info.
  277. $result = wpmu_validate_user_signup($_POST['user_name'], $_POST['user_email']);
  278. extract($result);
  279. if ( $errors->get_error_code() ) {
  280. signup_user($user_name, $user_email, $errors);
  281. return false;
  282. }
  283. $result = wpmu_validate_blog_signup($_POST['blogname'], $_POST['blog_title']);
  284. extract($result);
  285. if ( $errors->get_error_code() ) {
  286. signup_blog($user_name, $user_email, $blogname, $blog_title, $errors);
  287. return false;
  288. }
  289. $public = (int) $_POST['blog_public'];
  290. $meta = array ('lang_id' => 1, 'public' => $public);
  291. $meta = apply_filters( 'add_signup_meta', $meta );
  292. wpmu_signup_blog($domain, $path, $blog_title, $user_name, $user_email, $meta);
  293. confirm_blog_signup($domain, $path, $blog_title, $user_name, $user_email, $meta);
  294. return true;
  295. }
  296. function confirm_blog_signup($domain, $path, $blog_title, $user_name = '', $user_email = '', $meta) {
  297. ?>
  298. <h2><?php printf( __( 'Congratulations! Your new site, %s, is almost ready.' ), "<a href='http://{$domain}{$path}'>{$blog_title}</a>" ) ?></h2>
  299. <p><?php _e( 'But, before you can start using your site, <strong>you must activate it</strong>.' ) ?></p>
  300. <p><?php printf( __( 'Check your inbox at <strong>%s</strong> and click the link given.' ), $user_email) ?></p>
  301. <p><?php _e( 'If you do not activate your site within two days, you will have to sign up again.' ); ?></p>
  302. <h2><?php _e( 'Still waiting for your email?' ); ?></h2>
  303. <p>
  304. <?php _e( 'If you haven&#8217;t received your email yet, there are a number of things you can do:' ) ?>
  305. <ul id="noemail-tips">
  306. <li><p><strong><?php _e( 'Wait a little longer. Sometimes delivery of email can be delayed by processes outside of our control.' ) ?></strong></p></li>
  307. <li><p><?php _e( 'Check the junk or spam folder of your email client. Sometime emails wind up there by mistake.' ) ?></p></li>
  308. <li><?php printf( __( 'Have you entered your email correctly? You have entered %s, if it&#8217;s incorrect, you will not receive your email.' ), $user_email ) ?></li>
  309. </ul>
  310. </p>
  311. <?php
  312. do_action( 'signup_finished' );
  313. }
  314. // Main
  315. $active_signup = get_site_option( 'registration' );
  316. if ( !$active_signup )
  317. $active_signup = 'all';
  318. $active_signup = apply_filters( 'wpmu_active_signup', $active_signup ); // return "all", "none", "blog" or "user"
  319. // Make the signup type translatable.
  320. $i18n_signup['all'] = _x('all', 'Multisite active signup type');
  321. $i18n_signup['none'] = _x('none', 'Multisite active signup type');
  322. $i18n_signup['blog'] = _x('blog', 'Multisite active signup type');
  323. $i18n_signup['user'] = _x('user', 'Multisite active signup type');
  324. if ( is_super_admin() )
  325. echo '<div class="mu_alert">' . sprintf( __( 'Greetings Site Administrator! You are currently allowing &#8220;%s&#8221; registrations. To change or disable registration go to your <a href="%s">Options page</a>.' ), $i18n_signup[$active_signup], esc_url( network_admin_url( 'settings.php' ) ) ) . '</div>';
  326. $newblogname = isset($_GET['new']) ? strtolower(preg_replace('/^-|-$|[^-a-zA-Z0-9]/', '', $_GET['new'])) : null;
  327. $current_user = wp_get_current_user();
  328. if ( $active_signup == 'none' ) {
  329. _e( 'Registration has been disabled.' );
  330. } elseif ( $active_signup == 'blog' && !is_user_logged_in() ) {
  331. if ( is_ssl() )
  332. $proto = 'https://';
  333. else
  334. $proto = 'http://';
  335. $login_url = site_url( 'wp-login.php?redirect_to=' . urlencode($proto . $_SERVER['HTTP_HOST'] . '/wp-signup.php' ));
  336. echo sprintf( __( 'You must first <a href="%s">log in</a>, and then you can create a new site.' ), $login_url );
  337. } else {
  338. $stage = isset( $_POST['stage'] ) ? $_POST['stage'] : 'default';
  339. switch ( $stage ) {
  340. case 'validate-user-signup' :
  341. if ( $active_signup == 'all' || $_POST[ 'signup_for' ] == 'blog' && $active_signup == 'blog' || $_POST[ 'signup_for' ] == 'user' && $active_signup == 'user' )
  342. validate_user_signup();
  343. else
  344. _e( 'User registration has been disabled.' );
  345. break;
  346. case 'validate-blog-signup':
  347. if ( $active_signup == 'all' || $active_signup == 'blog' )
  348. validate_blog_signup();
  349. else
  350. _e( 'Site registration has been disabled.' );
  351. break;
  352. case 'gimmeanotherblog':
  353. validate_another_blog_signup();
  354. break;
  355. case 'default':
  356. default :
  357. $user_email = isset( $_POST[ 'user_email' ] ) ? $_POST[ 'user_email' ] : '';
  358. do_action( 'preprocess_signup_form' ); // populate the form from invites, elsewhere?
  359. if ( is_user_logged_in() && ( $active_signup == 'all' || $active_signup == 'blog' ) )
  360. signup_another_blog($newblogname);
  361. elseif ( is_user_logged_in() == false && ( $active_signup == 'all' || $active_signup == 'user' ) )
  362. signup_user( $newblogname, $user_email );
  363. elseif ( is_user_logged_in() == false && ( $active_signup == 'blog' ) )
  364. _e( 'Sorry, new registrations are not allowed at this time.' );
  365. else
  366. _e( 'You are logged in already. No need to register again!' );
  367. if ( $newblogname ) {
  368. $newblog = get_blogaddress_by_name( $newblogname );
  369. if ( $active_signup == 'blog' || $active_signup == 'all' )
  370. printf( __( '<p><em>The site you were looking for, <strong>%s</strong> does not exist, but you can create it now!</em></p>' ), $newblog );
  371. else
  372. printf( __( '<p><em>The site you were looking for, <strong>%s</strong>, does not exist.</em></p>' ), $newblog );
  373. }
  374. break;
  375. }
  376. }
  377. ?>
  378. </div>
  379. </div>
  380. <?php do_action( 'after_signup_form' ); ?>
  381. <?php get_footer(); ?>