The following warnings occurred:
Warning [2] Undefined variable $unreadreports - Line: 26 - File: global.php(961) : eval()'d code PHP 8.1.2-1ubuntu2.14 (Linux)
File Line Function
/global.php(961) : eval()'d code 26 errorHandler->error
/global.php 961 eval
/showthread.php 28 require_once





× This forum is read only. As of July 23, 2019, the UserSpice forums have been closed. To receive support, please join our Discord by clicking here. Thank you!
UserSpice   ›   Support Center   ›   UserSpice 4.3 and Below   ›   usersc-folder

  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
usersc-folder
Kighlander
User
Joined: Jun 2016
Posts: 22

Reputation: 0
#1
03-10-2017, 06:03 AM
Hi.

It is not easy to hold MY version of US up2date, because I had modified some files which will be overwritten after a patch. In that case I use a clean install (the numbers of modifications is not so great Wink ) for using US.

But with the new version (4.2.2) the files in the folder "usersc" will not run WHEN a user IS NOT LOGGED IN. When a user is logged in, the files in folder "usersc" work normal...

Can you check it please ?

In my case I translated e.g. the "join.php" in german, but if I click on "register", the file from "users" will be load.
And the browser's adress-line shows following:
Code:
http://mydomain.com//users/login.php?dest=usersc/join.php

Somewhere may be an error.... Wink

Your's

Kighlander
  Reply
mudmin
Lead Developer
*******
Joined: Dec 2015
Posts: 2,285

Reputation: 17
#2
03-10-2017, 06:54 AM
Yeah. The reason for the usersc folder is because if you overwrite existing files it will make upgrading hard.

I just did an install of 4.2.2 and copied the join.php form from users to usersc and edited the paths of the init and the join view and then clicked the register button and it worked fine for me.

Do you want to paste a copy of your usersc/join form in pastebin and I can take a look?
  Reply
Kighlander
User
Joined: Jun 2016
Posts: 22

Reputation: 0
#3
03-10-2017, 08:21 AM
Hi again...

Something other now happens:

Until yet I didn't change anything since my last post here.
When I click on "register" (In my menu it calls "Neu Anmelden") I was redirected to login.php and in the browser's adress-line shows something like this:
Code:
http://mydomain.com//users/login.php?dest=usersc/join.php
...and if I now sign in THERE, after entered my login-data and click on "login" I was redirected to the "join.php" in my usersc-folder...

here my "join.php" in the usersc-folder:

<pre>
Code:
<?php
/*
UserSpice 4
An Open Source PHP User Management System
by the UserSpice Team at http://UserSpice.com

This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/
// error_reporting(E_ALL);
// ini_set('display_errors', 1);
ini_set("allow_url_fopen", 1);
?>
<?php require_once '../users/init.php'; ?>
<?php require_once $abs_us_root.$us_url_root.'users/includes/header.php'; ?>
<?php require_once $abs_us_root.$us_url_root.'users/includes/navigation.php'; ?>
<?php if (!securePage($_SERVER['PHP_SELF'])){die();} ?>
<?php
$settingsQ = $db->query("SELECT * FROM settings");
$settings = $settingsQ->first();
if($settings->recaptcha == 1){
    require_once("../users/includes/recaptcha.config.php");
}
//There is a lot of commented out code for a future release of sign ups with payments
$form_method = 'POST';
$form_action = 'join.php';
$vericode = rand(100000,999999);

$form_valid=FALSE;

//Decide whether or not to use email activation
$query = $db->query("SELECT * FROM email");
$results = $query->first();
$act = $results->email_act;

//Opposite Day for Pre-Activation - Basically if you say in email
//settings that you do NOT want email activation, this lists new
//users as active in the database, otherwise they will become
//active after verifying their email.
if($act==1){
    $pre = 0;
} else {
    $pre = 1;
}

$token = Input::get('csrf');
if(Input::exists()){
    if(!Token::check($token)){
        die('Token doesn\'t match!');
    }
}

$reCaptchaValid=FALSE;

if(Input::exists()){

    $username = Input::get('username');
    $fname = Input::get('fname');
    $lname = Input::get('lname');
    $email = Input::get('email');
    $agreement_checkbox = Input::get('agreement_checkbox');

    if ($agreement_checkbox=='on'){
        $agreement_checkbox=TRUE;
    }else{
        $agreement_checkbox=FALSE;
    }

    $db = DB::getInstance();
    $settingsQ = $db->query("SELECT * FROM settings");
    $settings = $settingsQ->first();
    $validation = new Validate();
    $validation->check($_POST,array(
      'username' => array(
        'display' => 'Username',
        'required' => true,
        'min' => $settings->min_un,
        'max' => $settings->max_un,
        'unique' => 'users',
      ),
      'fname' => array(
        'display' => 'First Name',
        'required' => true,
        'min' => 2,
        'max' => 35,
      ),
      'lname' => array(
        'display' => 'Last Name',
        'required' => true,
        'min' => 2,
        'max' => 35,
      ),
      'email' => array(
        'display' => 'Email',
        'required' => true,
        'valid_email' => true,
        'unique' => 'users',
      ),

      'password' => array(
        'display' => 'Password',
        'required' => true,
        'min' => $settings->min_pw,
        'max' => $settings->max_pw,
      ),
      'confirm' => array(
        'display' => 'Confirm Password',
        'required' => true,
        'matches' => 'password',
      ),
    ));

    //if the agreement_checkbox is not checked, add error
    if (!$agreement_checkbox){
        $validation->addError(["Please read and accept terms and conditions"]);
    }

    if($validation->passed() && $agreement_checkbox){
        //Logic if ReCAPTCHA is turned ON
        if($settings->recaptcha == 1){
            require_once("includes/recaptcha.config.php");
            //reCAPTCHA 2.0 check
            $response = null;

            // check secret key
            $reCaptcha = new ReCaptcha($privatekey);

            // if submitted check response
            if ($_POST["g-recaptcha-response"]) {
                $response = $reCaptcha->verifyResponse(
                    $_SERVER["REMOTE_ADDR"],
                    $_POST["g-recaptcha-response"]);
            }
            if ($response != null && $response->success) {
                // account creation code goes here
                $reCaptchaValid=TRUE;
                $form_valid=TRUE;
            }else{
                $reCaptchaValid=FALSE;
                $form_valid=FALSE;
                $validation->addError(["Please check the reCaptcha box."]);
            }

        } //else for recaptcha

        if($reCaptchaValid || $settings->recaptcha == 0){

            //add user to the database
            $user = new User();
            $join_date = date("Y-m-d H:i:s");
            $params = array(
                'fname' => Input::get('fname'),
                'email' => $email,
                'vericode' => $vericode,
            );

            if($act == 1) {
                //Verify email address settings
                $to = rawurlencode($email);
                $subject = $settings->site_name;
                $body = email_body('_email_template_verify.php',$params);
                email($to,$subject,$body);
            }
            try {
                // echo "Trying to create user";
                $user->create(array(
                    'username' => Input::get('username'),
                    'fname' => Input::get('fname'),
                    'lname' => Input::get('lname'),
                    'email' => Input::get('email'),
                    'password' =>
                    password_hash(Input::get('password'), PASSWORD_BCRYPT, array('cost' => 12)),
                    'permissions' => 1,
                    'account_owner' => 1,
                    'stripe_cust_id' => '',
                    'join_date' => $join_date,
                    'company' => Input::get('company'),
                    'email_verified' => $pre,
                    'active' => 1,
                    'vericode' => $vericode,
                ));
            } catch (Exception $e) {
                die($e->getMessage());
            }
            Redirect::to($us_url_root.'users/joinThankYou.php');
        }

    } //Validation and agreement checbox
} //Input exists

?>
<?php header('X-Frame-Options: DENY'); ?>
<div id="page-wrapper">
<div class="container">
<?php

require 'views/_join.php';
?>

</div>
</div>

<!-- footers -->
<?php require_once $abs_us_root.$us_url_root.'users/includes/page_footer.php'; // the final html footer copyright row + the external js calls ?>

<?php     if($settings->recaptcha == 1){ ?>
<script src="https://www.google.com/recaptcha/api.js" async defer></script>
<?php } ?>
<?php require_once $abs_us_root.$us_url_root.'users/includes/html_footer.php'; // currently just the closing /body and /html ?>
</pre>


Note: I copied the "join.php" from the usersc-folder of the 4.2.1g into the new installation and I didn't change anything in the code...
  Reply
mudmin
Lead Developer
*******
Joined: Dec 2015
Posts: 2,285

Reputation: 17
#4
03-10-2017, 02:09 PM
Did you change anything in the users/includes/header.php or users/includes/navigation.php?

There are alternatives for that where you can enter information in usersc and it will work without breaking the system.
  Reply
Kighlander
User
Joined: Jun 2016
Posts: 22

Reputation: 0
#5
03-10-2017, 03:17 PM
The only thing I changed was translate the menu-items in my language....
And I implied the Facebook-Login-Button in the nav-bar in case of the join & login file...
  Reply


Forum Jump:


Users browsing this thread: 3 Guest(s)