site/signup/signup-handler.php

<?php
require __DIR__.'/../vendor/autoload.php';

if ($_SERVER["SERVER_NAME"] != "localhost")
    require_once "/home/ben/ultimate-email/support/smtp.php";

$reserved_names = ['git', 'irc', 'mail', 'pad', 'sudo', 'root', 'admin', 'postmaster', 'paste', 'quotes'];

$message = "";
if (isset($_REQUEST["username"]) && isset($_REQUEST["email"])) {
    // Check the name.
    $name = trim($_REQUEST["username"]);
    if ($name == "")
        $message .= "<li>please fill in your desired username</li>";
    if (strlen($name) > 32)
        $message .= "<li>username too long (32 character max)</li>";
    if (!preg_match('/^[A-Za-z][A-Za-z0-9]{2,31}$/', $name))
        $message .= "<li>username contains invalid characters (lowercase only, must start with a letter)</li>";
    if (posix_getpwnam($name) || in_array($name, $reserved_names))
        $message .= "<li>sorry, the username $name is unavailable</li>";

    // Check the e-mail address.
    $email = trim($_REQUEST["email"]);
    if ($email == "")
        $message .= "<li>please fill in your email address</li>";
    else {
        $result = SMTP::MakeValidEmailAddress($_REQUEST["email"]);
        if (!$result["success"])
            $message .= "<li>invalid email address: " . htmlspecialchars($result["error"]) . "</li>";
        elseif ($result["email"] != $email)
            $message .= "<li>invalid email address. did you mean:  " . htmlspecialchars($result["email"]) . "</li>";
    }

    if ($_REQUEST["sshkey"] == "") {
        $message .= "<li>ssh key required: please create one and submit the public key</li>";
    }


    if ($message == "") { // no validation errors
        $msgbody = "
desired username: {$_REQUEST["username"]}
contact email: {$_REQUEST["email"]}
reason: {$_REQUEST["interest"]}
ssh key:
{$_REQUEST["sshkey"]}
";

        if (mail('sudoers', 'new tilde.team signup', $msgbody, "Reply-To: {$_REQUEST["email"]}")) {
            echo '<div class="alert alert-success" role="alert">
                    email sent! i\'ll get back to you soon with login instructions! <a href="/">back to tilde.team home</a>
                  </div>';
        } else {
            echo '<div class="alert alert-danger" role="alert">
                    something went wrong... please send an email to <a href="mailto:sudoers@tilde.team">sudoers@tilde.team</a> with details of what happened
                  </div>';
        }

    } else {
        ?>
        <div class="alert alert-warning" role="alert">
            <strong>please correct the following errors: </strong>
            <?=$message?>
        </div>
        <?php
    }
}
?>
cleanup, move faq to wiki 2018-06-09 03:17:35 +00:00			`<?php`
			`require __DIR__.'/../vendor/autoload.php';`

			`if ($_SERVER["SERVER_NAME"] != "localhost")`
			`require_once "/home/ben/ultimate-email/support/smtp.php";`

check against reserved usernames 2018-06-20 16:02:28 +00:00			`$reserved_names = ['git', 'irc', 'mail', 'pad', 'sudo', 'root', 'admin', 'postmaster', 'paste', 'quotes'];`

cleanup, move faq to wiki 2018-06-09 03:17:35 +00:00			`$message = "";`
			`if (isset($_REQUEST["username"]) && isset($_REQUEST["email"])) {`
			`// Check the name.`
			`$name = trim($_REQUEST["username"]);`
			`if ($name == "")`
			`$message .= "<li>please fill in your desired username</li>";`
			`if (strlen($name) > 32)`
			`$message .= "<li>username too long (32 character max)</li>";`
			`if (!preg_match('/^[A-Za-z][A-Za-z0-9]{2,31}$/', $name))`
			`$message .= "<li>username contains invalid characters (lowercase only, must start with a letter)</li>";`
check against reserved usernames 2018-06-20 16:02:28 +00:00			`if (posix_getpwnam($name) \|\| in_array($name, $reserved_names))`
cleanup, move faq to wiki 2018-06-09 03:17:35 +00:00			`$message .= "<li>sorry, the username $name is unavailable</li>";`

			`// Check the e-mail address.`
			`$email = trim($_REQUEST["email"]);`
			`if ($email == "")`
			`$message .= "<li>please fill in your email address</li>";`
			`else {`
			`$result = SMTP::MakeValidEmailAddress($_REQUEST["email"]);`
			`if (!$result["success"])`
			`$message .= "<li>invalid email address: " . htmlspecialchars($result["error"]) . "</li>";`
			`elseif ($result["email"] != $email)`
			`$message .= "<li>invalid email address. did you mean: " . htmlspecialchars($result["email"]) . "</li>";`
			`}`

			`if ($_REQUEST["sshkey"] == "") {`
			`$message .= "<li>ssh key required: please create one and submit the public key</li>";`
			`}`


			`if ($message == "") { // no validation errors`
remove swiftmailer dependency 2018-06-12 00:22:34 +00:00			`$msgbody = "`
			`desired username: {$_REQUEST["username"]}`
			`contact email: {$_REQUEST["email"]}`
			`reason: {$_REQUEST["interest"]}`
			`ssh key:`
			`{$_REQUEST["sshkey"]}`
			`";`
cleanup, move faq to wiki 2018-06-09 03:17:35 +00:00
send mail to admins 2018-06-11 22:39:13 +00:00			`if (mail('sudoers', 'new tilde.team signup', $msgbody, "Reply-To: {$_REQUEST["email"]}")) {`
use local sendmail 2018-06-11 22:36:01 +00:00			`echo '<div class="alert alert-success" role="alert">`
			`email sent! i\'ll get back to you soon with login instructions! <a href="/">back to tilde.team home</a>`
			`</div>';`
			`} else {`
			`echo '<div class="alert alert-danger" role="alert">`
			`something went wrong... please send an email to <a href="mailto:sudoers@tilde.team">sudoers@tilde.team</a> with details of what happened`
			`</div>';`
			`}`
cleanup, move faq to wiki 2018-06-09 03:17:35 +00:00
			`} else {`
			`?>`
			`<div class="alert alert-warning" role="alert">`
			`<strong>please correct the following errors: </strong>`
			`<?=$message?>`
			`</div>`
			`<?php`
			`}`
			`}`
			`?>`