1 | <?php |
2 | |
3 | /** Sets up the WordPress Environment. */ |
4 | require( dirname(__FILE__) . '/wp-load.php' ); |
5 | |
6 | add_action( 'wp_head', 'signuppageheaders' ) ; |
7 | |
8 | require( './wp-blog-header.php' ); |
9 | require_once( ABSPATH . WPINC . '/registration.php' ); |
10 | |
11 | if ( is_array( get_site_option( 'illegal_names' )) && isset( $_GET[ 'new' ] ) && in_array( $_GET[ 'new' ], get_site_option( 'illegal_names' ) ) == true ) { |
12 | wp_redirect( network_home_url() ); |
13 | die(); |
14 | } |
15 | |
16 | function do_signup_header() { |
17 | do_action("signup_header"); |
18 | } |
19 | add_action( 'wp_head', 'do_signup_header' ); |
20 | |
21 | function signuppageheaders() { |
22 | echo "<meta name='robots' content='noindex,nofollow' />\n"; |
23 | } |
24 | |
25 | if ( !is_multisite() ) { |
26 | wp_redirect( get_option( 'siteurl' ) . "/wp-login.php?action=register" ); |
27 | die(); |
28 | } |
29 | |
30 | if ( !is_main_site() ) { |
31 | wp_redirect( network_home_url( 'wp-signup.php' ) ); |
32 | die(); |
33 | } |
34 | |
35 | // Fix for page title |
36 | $wp_query->is_404 = false; |
37 | |
38 | function wpmu_signup_stylesheet() { |
39 | ?> |
40 | <style type="text/css"> |
41 | .mu_register { width: 90%; margin:0 auto; } |
42 | .mu_register form { margin-top: 2em; } |
43 | .mu_register .error { font-weight:700; padding:10px; color:#333333; background:#FFEBE8; border:1px solid #CC0000; } |
44 | .mu_register input[type="submit"], |
45 | .mu_register #blog_title, |
46 | .mu_register #user_email, |
47 | .mu_register #blogname, |
48 | .mu_register #user_name { width:100%; font-size: 24px; margin:5px 0; } |
49 | .mu_register .prefix_address, |
50 | .mu_register .suffix_address {font-size: 18px;display:inline; } |
51 | .mu_register label { font-weight:700; font-size:15px; display:block; margin:10px 0; } |
52 | .mu_register label.checkbox { display:inline; } |
53 | .mu_register .mu_alert { font-weight:700; padding:10px; color:#333333; background:#ffffe0; border:1px solid #e6db55; } |
54 | </style> |
55 | <?php |
56 | } |
57 | |
58 | add_action( 'wp_head', 'wpmu_signup_stylesheet' ); |
59 | get_header(); |
60 | |
61 | do_action( 'before_signup_form' ); |
62 | ?> |
63 | <div id="content" class="widecolumn"> |
64 | <div class="mu_register"> |
65 | <?php |
66 | function show_blog_form($blogname = '', $blog_title = '', $errors = '') { |
67 | global $current_site; |
68 | // Blog name |
69 | if ( !is_subdomain_install() ) |
70 | echo '<label for="blogname">' . __('Site Name:') . '</label>'; |
71 | else |
72 | echo '<label for="blogname">' . __('Site Domain:') . '</label>'; |
73 | |
74 | if ( $errmsg = $errors->get_error_message('blogname') ) { ?> |
75 | <p class="error"><?php echo $errmsg ?></p> |
76 | <?php } |
77 | |
78 | if ( !is_subdomain_install() ) |
79 | echo '<span class="prefix_address">' . $current_site->domain . $current_site->path . '</span><input name="blogname" type="text" id="blogname" value="'. esc_attr($blogname) .'" maxlength="60" /><br />'; |
80 | else |
81 | echo '<input name="blogname" type="text" id="blogname" value="'.esc_attr($blogname).'" maxlength="60" /><span class="suffix_address">.' . ( $site_domain = preg_replace( '|^www\.|', '', $current_site->domain ) ) . '</span><br />'; |
82 | |
83 | if ( !is_user_logged_in() ) { |
84 | print '(<strong>' . __( 'Your address will be ' ); |
85 | if ( !is_subdomain_install() ) |
86 | print $current_site->domain . $current_site->path . __( 'sitename' ); | //Cross Site Scripting
|
87 | else |
88 | print __( 'domain.' ) . $site_domain . $current_site->path; |
89 | echo '.</strong>) ' . __( 'Must be at least 4 characters, letters and numbers only. It cannot be changed, so choose carefully!' ) . '</p>'; |
90 | } |
91 | |
92 | // Blog Title |
93 | ?> |
94 | <label for="blog_title"><?php _e('Site Title:') ?></label> |
95 | <?php if ( $errmsg = $errors->get_error_message('blog_title') ) { ?> |
96 | <p class="error"><?php echo $errmsg ?></p> |
97 | <?php } |
98 | echo '<input name="blog_title" type="text" id="blog_title" value="'.esc_attr($blog_title).'" />'; |
99 | ?> |
100 | |
101 | <div id="privacy"> |
102 | <p class="privacy-intro"> |
103 | <label for="blog_public_on"><?php _e('Privacy:') ?></label> |
104 | <?php _e('Allow my site to appear in search engines like Google, Technorati, and in public listings around this network.'); ?> |
105 | <br style="clear:both" /> |
106 | <label class="checkbox" for="blog_public_on"> |
107 | <input type="radio" id="blog_public_on" name="blog_public" value="1" <?php if ( !isset( $_POST['blog_public'] ) || $_POST['blog_public'] == '1' ) { ?>checked="checked"<?php } ?> /> |
108 | <strong><?php _e( 'Yes' ); ?></strong> |
109 | </label> |
110 | <label class="checkbox" for="blog_public_off"> |
111 | <input type="radio" id="blog_public_off" name="blog_public" value="0" <?php if ( isset( $_POST['blog_public'] ) && $_POST['blog_public'] == '0' ) { ?>checked="checked"<?php } ?> /> |
112 | <strong><?php _e( 'No' ); ?></strong> |
113 | </label> |
114 | </p> |
115 | </div> |
116 | |
117 | <?php |
118 | do_action('signup_blogform', $errors); |
119 | } |
120 | |
121 | function validate_blog_form() { |
122 | $user = ''; |
123 | if ( is_user_logged_in() ) |
124 | $user = wp_get_current_user(); |
125 | |
126 | return wpmu_validate_blog_signup($_POST['blogname'], $_POST['blog_title'], $user); |
127 | } |
128 | |
129 | function show_user_form($user_name = '', $user_email = '', $errors = '') { |
130 | // User name |
131 | echo '<label for="user_name">' . __('Username:') . '</label>'; |
132 | if ( $errmsg = $errors->get_error_message('user_name') ) { |
133 | echo '<p class="error">'.$errmsg.'</p>'; |
134 | } |
135 | echo '<input name="user_name" type="text" id="user_name" value="'. esc_attr($user_name) .'" maxlength="60" /><br />'; |
136 | _e( '(Must be at least 4 characters, letters and numbers only.)' ); |
137 | ?> |
138 | |
139 | <label for="user_email"><?php _e( 'Email Address:' ) ?></label> |
140 | <?php if ( $errmsg = $errors->get_error_message('user_email') ) { ?> |
141 | <p class="error"><?php echo $errmsg ?></p> |
142 | <?php } ?> |
143 | <input name="user_email" type="text" id="user_email" value="<?php echo esc_attr($user_email) ?>" maxlength="200" /><br /><?php _e('We send your registration email to this address. (Double-check your email address before continuing.)') ?> |
144 | <?php |
145 | if ( $errmsg = $errors->get_error_message('generic') ) { |
146 | echo '<p class="error">' . $errmsg . '</p>'; |
147 | } |
148 | do_action( 'signup_extra_fields', $errors ); |
149 | } |
150 | |
151 | function validate_user_form() { |
152 | return wpmu_validate_user_signup($_POST['user_name'], $_POST['user_email']); |
153 | } |
154 | |
155 | function signup_another_blog($blogname = '', $blog_title = '', $errors = '') { |
156 | global $current_site; |
157 | $current_user = wp_get_current_user(); |
158 | |
159 | if ( ! is_wp_error($errors) ) { |
160 | $errors = new WP_Error(); |
161 | } |
162 | |
163 | // allow definition of default variables |
164 | $filtered_results = apply_filters('signup_another_blog_init', array('blogname' => $blogname, 'blog_title' => $blog_title, 'errors' => $errors )); |
165 | $blogname = $filtered_results['blogname']; |
166 | $blog_title = $filtered_results['blog_title']; |
167 | $errors = $filtered_results['errors']; |
168 | |
169 | echo '<h2>' . sprintf( __( 'Get <em>another</em> %s site in seconds' ), $current_site->site_name ) . '</h2>'; |
170 | |
171 | if ( $errors->get_error_code() ) { |
172 | echo '<p>' . __( 'There was a problem, please correct the form below and try again.' ) . '</p>'; |
173 | } |
174 | ?> |
175 | <p><?php printf( __( 'Welcome back, %s. By filling out the form below, you can <strong>add another site to your account</strong>. There is no limit to the number of sites you can have, so create to your heart’s content, but write responsibly!' ), $current_user->display_name ) ?></p> |
176 | |
177 | <?php |
178 | $blogs = get_blogs_of_user($current_user->ID); |
179 | if ( !empty($blogs) ) { ?> |
180 | |
181 | <p><?php _e( 'Sites you are already a member of:' ) ?></p> |
182 | <ul> |
183 | <?php foreach ( $blogs as $blog ) { |
184 | $home_url = get_home_url( $blog->userblog_id ); |
185 | echo '<li><a href="' . esc_url( $home_url ) . '">' . $home_url . '</a></li>'; |
186 | } ?> |
187 | </ul> |
188 | <?php } ?> |
189 | |
190 | <p><?php _e( 'If you’re not going to use a great site domain, leave it for a new user. Now have at it!' ) ?></p> |
191 | <form id="setupform" method="post" action="wp-signup.php"> |
192 | <input type="hidden" name="stage" value="gimmeanotherblog" /> |
193 | <?php do_action( "signup_hidden_fields" ); ?> |
194 | <?php show_blog_form($blogname, $blog_title, $errors); ?> |
195 | <p class="submit"><input type="submit" name="submit" class="submit" value="<?php esc_attr_e( 'Create Site' ) ?>" /></p> |
196 | </form> |
197 | <?php |
198 | } |
199 | |
200 | function validate_another_blog_signup() { |
201 | global $wpdb, $blogname, $blog_title, $errors, $domain, $path; |
202 | $current_user = wp_get_current_user(); |
203 | if ( !is_user_logged_in() ) |
204 | die(); |
205 | |
206 | $result = validate_blog_form(); |
207 | extract($result); | //Possible Control Flow
|
208 | |
209 | if ( $errors->get_error_code() ) { |
210 | signup_another_blog($blogname, $blog_title, $errors); |
211 | return false; |
212 | } |
213 | |
214 | $public = (int) $_POST['blog_public']; |
215 | $meta = apply_filters( 'signup_create_blog_meta', array( 'lang_id' => 1, 'public' => $public ) ); // deprecated |
216 | $meta = apply_filters( 'add_signup_meta', $meta ); |
217 | |
218 | wpmu_create_blog( $domain, $path, $blog_title, $current_user->id, $meta, $wpdb->siteid ); |
219 | confirm_another_blog_signup($domain, $path, $blog_title, $current_user->user_login, $current_user->user_email, $meta); | //Connection Handling
|
220 | return true; |
221 | } |
222 | |
223 | function confirm_another_blog_signup($domain, $path, $blog_title, $user_name, $user_email = '', $meta = '') { |
224 | ?> |
225 | <h2><?php printf( __( 'The site %s is yours.' ), "<a href='http://{$domain}{$path}'>{$blog_title}</a>" ) ?></h2> |
226 | <p> |
227 | <?php printf( __( '<a href="http://%1$s">http://%2$s</a> is your new site. <a href="%3$s">Log in</a> as “%4$s” using your existing password.' ), $domain.$path, $domain.$path, "http://" . $domain.$path . "wp-login.php", $user_name ) ?> |
228 | </p> |
229 | <?php |
230 | do_action( 'signup_finished' ); |
231 | } |
232 | |
233 | function signup_user($user_name = '', $user_email = '', $errors = '') { |
234 | global $current_site, $active_signup; |
235 | |
236 | if ( !is_wp_error($errors) ) |
237 | $errors = new WP_Error(); |
238 | if ( isset( $_POST[ 'signup_for' ] ) ) |
239 | $signup[ esc_html( $_POST[ 'signup_for' ] ) ] = 'checked="checked"'; |
240 | else |
241 | $signup[ 'blog' ] = 'checked="checked"'; |
242 | |
243 | //TODO - This doesn't seem to do anything do we really need it? |
244 | $signup['user'] = isset( $signup['user'] ) ? $signup['user'] : ''; |
245 | |
246 | // allow definition of default variables |
247 | $filtered_results = apply_filters('signup_user_init', array('user_name' => $user_name, 'user_email' => $user_email, 'errors' => $errors )); | //Connection Handling
|
248 | $user_name = $filtered_results['user_name']; |
249 | $user_email = $filtered_results['user_email']; | //Connection Handling
|
250 | $errors = $filtered_results['errors']; |
251 | |
252 | ?> |
253 | |
254 | <h2><?php printf( __( 'Get your own %s account in seconds' ), $current_site->site_name ) ?></h2> |
255 | <form id="setupform" method="post" action="wp-signup.php"> |
256 | <input type="hidden" name="stage" value="validate-user-signup" /> |
257 | <?php do_action( "signup_hidden_fields" ); ?> |
258 | <?php show_user_form($user_name, $user_email, $errors); ?> | //Connection Handling
|
259 | |
260 | <p> |
261 | <?php if ( $active_signup == 'blog' ) { ?> |
262 | <input id="signupblog" type="hidden" name="signup_for" value="blog" /> |
263 | <?php } elseif ( $active_signup == 'user' ) { ?> |
264 | <input id="signupblog" type="hidden" name="signup_for" value="user" /> |
265 | <?php } else { ?> |
266 | <input id="signupblog" type="radio" name="signup_for" value="blog" <?php echo $signup['blog'] ?> /> |
267 | <label class="checkbox" for="signupblog"><?php _e('Gimme a site!') ?></label> |
268 | <br /> |
269 | <input id="signupuser" type="radio" name="signup_for" value="user" <?php echo $signup['user'] ?> /> |
270 | <label class="checkbox" for="signupuser"><?php _e('Just a username, please.') ?></label> |
271 | <?php } ?> |
272 | </p> |
273 | |
274 | <p class="submit"><input type="submit" name="submit" class="submit" value="<?php esc_attr_e('Next') ?>" /></p> |
275 | </form> |
276 | <?php |
277 | } |
278 | |
279 | function validate_user_signup() { |
280 | $result = validate_user_form(); |
281 | extract($result); | //Possible Control Flow
|
282 | |
283 | if ( $errors->get_error_code() ) { |
284 | signup_user($user_name, $user_email, $errors); | //Connection Handling
|
285 | return false; |
286 | } |
287 | |
288 | if ( 'blog' == $_POST['signup_for'] ) { |
289 | signup_blog($user_name, $user_email); |
290 | return false; |
291 | } |
292 | |
293 | wpmu_signup_user($user_name, $user_email, apply_filters( "add_signup_meta", array() ) ); |
294 | |
295 | confirm_user_signup($user_name, $user_email); |
296 | return true; |
297 | } |
298 | |
299 | function confirm_user_signup($user_name, $user_email) { |
300 | ?> |
301 | <h2><?php printf( __( '%s is your new username' ), $user_name) ?></h2> |
302 | <p><?php _e( 'But, before you can start using your new username, <strong>you must activate it</strong>.' ) ?></p> |
303 | <p><?php printf(__( 'Check your inbox at <strong>%1$s</strong> and click the link given.' ), $user_email) ?></p> |
304 | <p><?php _e( 'If you do not activate your username within two days, you will have to sign up again.' ); ?></p> |
305 | <?php |
306 | do_action( 'signup_finished' ); |
307 | } |
308 | |
309 | function signup_blog($user_name = '', $user_email = '', $blogname = '', $blog_title = '', $errors = '') { |
310 | if ( !is_wp_error($errors) ) |
311 | $errors = new WP_Error(); |
312 | |
313 | // allow definition of default variables |
314 | $filtered_results = apply_filters('signup_blog_init', array('user_name' => $user_name, 'user_email' => $user_email, 'blogname' => $blogname, 'blog_title' => $blog_title, 'errors' => $errors )); | //Connection Handling
|
315 | $user_name = $filtered_results['user_name']; |
316 | $user_email = $filtered_results['user_email']; | //Connection Handling
|
317 | $blogname = $filtered_results['blogname']; |
318 | $blog_title = $filtered_results['blog_title']; |
319 | $errors = $filtered_results['errors']; |
320 | |
321 | if ( empty($blogname) ) |
322 | $blogname = $user_name; |
323 | ?> |
324 | <form id="setupform" method="post" action="wp-signup.php"> |
325 | <input type="hidden" name="stage" value="validate-blog-signup" /> |
326 | <input type="hidden" name="user_name" value="<?php echo esc_attr($user_name) ?>" /> |
327 | <input type="hidden" name="user_email" value="<?php echo esc_attr($user_email) ?>" /> |
328 | <?php do_action( "signup_hidden_fields" ); ?> |
329 | <?php show_blog_form($blogname, $blog_title, $errors); ?> |
330 | <p class="submit"><input type="submit" name="submit" class="submit" value="<?php esc_attr_e('Signup') ?>" /></p> |
331 | </form> |
332 | <?php |
333 | } |
334 | |
335 | function validate_blog_signup() { |
336 | // Re-validate user info. |
337 | $result = wpmu_validate_user_signup($_POST['user_name'], $_POST['user_email']); |
338 | extract($result); | //Possible Control Flow
|
339 | |
340 | if ( $errors->get_error_code() ) { |
341 | signup_user($user_name, $user_email, $errors); | //Connection Handling
|
342 | return false; |
343 | } |
344 | |
345 | $result = wpmu_validate_blog_signup($_POST['blogname'], $_POST['blog_title']); |
346 | extract($result); | //Possible Control Flow
|
347 | |
348 | if ( $errors->get_error_code() ) { |
349 | signup_blog($user_name, $user_email, $blogname, $blog_title, $errors); | //Connection Handling
|
350 | return false; |
351 | } |
352 | |
353 | $public = (int) $_POST['blog_public']; |
354 | $meta = array ('lang_id' => 1, 'public' => $public); |
355 | $meta = apply_filters( "add_signup_meta", $meta ); |
356 | |
357 | wpmu_signup_blog($domain, $path, $blog_title, $user_name, $user_email, $meta); | //Connection Handling
|
358 | confirm_blog_signup($domain, $path, $blog_title, $user_name, $user_email, $meta); | //Connection Handling
|
359 | return true; |
360 | } |
361 | |
362 | function confirm_blog_signup($domain, $path, $blog_title, $user_name = '', $user_email = '', $meta) { |
363 | ?> |
364 | <h2><?php printf( __( 'Congratulations! Your new site, %s, is almost ready.' ), "<a href='http://{$domain}{$path}'>{$blog_title}</a>" ) ?></h2> |
365 | |
366 | <p><?php _e( 'But, before you can start using your site, <strong>you must activate it</strong>.' ) ?></p> |
367 | <p><?php printf( __( 'Check your inbox at <strong>%s</strong> and click the link given.' ), $user_email) ?></p> |
368 | <p><?php _e( 'If you do not activate your site within two days, you will have to sign up again.' ); ?></p> |
369 | <h2><?php _e( 'Still waiting for your email?' ); ?></h2> |
370 | <p> |
371 | <?php _e( 'If you haven’t received your email yet, there are a number of things you can do:' ) ?> |
372 | <ul id="noemail-tips"> |
373 | <li><p><strong><?php _e( 'Wait a little longer. Sometimes delivery of email can be delayed by processes outside of our control.' ) ?></strong></p></li> |
374 | <li><p><?php _e( 'Check the junk or spam folder of your email client. Sometime emails wind up there by mistake.' ) ?></p></li> |
375 | <li><?php printf( __( 'Have you entered your email correctly? You have entered %s, if it’s incorrect, you will not receive your email.' ), $user_email ) ?></li> |
376 | </ul> |
377 | </p> |
378 | <?php |
379 | do_action( 'signup_finished' ); |
380 | } |
381 | |
382 | // Main |
383 | $active_signup = get_site_option( 'registration' ); |
384 | if ( !$active_signup ) |
385 | $active_signup = 'all'; |
386 | |
387 | $active_signup = apply_filters( 'wpmu_active_signup', $active_signup ); // return "all", "none", "blog" or "user" |
388 | |
389 | // Make the signup type translatable. |
390 | $i18n_signup['all'] = _x('all', 'Multisite active signup type'); |
391 | $i18n_signup['none'] = _x('none', 'Multisite active signup type'); |
392 | $i18n_signup['blog'] = _x('blog', 'Multisite active signup type'); |
393 | $i18n_signup['user'] = _x('user', 'Multisite active signup type'); |
394 | |
395 | if ( is_super_admin() ) |
396 | echo '<div class="mu_alert">' . sprintf( __( 'Greetings Site Administrator! You are currently allowing “%s” registrations. To change or disable registration go to your <a href="%s">Options page</a>.' ), $i18n_signup[$active_signup], esc_url( network_admin_url( 'ms-options.php' ) ) ) . '</div>'; |
397 | |
398 | $newblogname = isset($_GET['new']) ? strtolower(preg_replace('/^-|-$|[^-a-zA-Z0-9]/', '', $_GET['new'])) : null; |
399 | |
400 | $current_user = wp_get_current_user(); |
401 | if ( $active_signup == "none" ) { |
402 | _e( 'Registration has been disabled.' ); |
403 | } elseif ( $active_signup == 'blog' && !is_user_logged_in() ) { |
404 | if ( is_ssl() ) |
405 | $proto = 'https://'; |
406 | else |
407 | $proto = 'http://'; |
408 | $login_url = site_url( 'wp-login.php?redirect_to=' . urlencode($proto . $_SERVER['HTTP_HOST'] . '/wp-signup.php' )); |
409 | echo sprintf( __( 'You must first <a href="%s">log in</a>, and then you can create a new site.' ), $login_url ); |
410 | } else { |
411 | $stage = isset( $_POST['stage'] ) ? $_POST['stage'] : 'default'; |
412 | switch ( $stage ) { |
413 | case 'validate-user-signup' : |
414 | if ( $active_signup == 'all' || $_POST[ 'signup_for' ] == 'blog' && $active_signup == 'blog' || $_POST[ 'signup_for' ] == 'user' && $active_signup == 'user' ) |
415 | validate_user_signup(); |
416 | else |
417 | _e( 'User registration has been disabled.' ); |
418 | break; |
419 | case 'validate-blog-signup': |
420 | if ( $active_signup == 'all' || $active_signup == 'blog' ) |
421 | validate_blog_signup(); |
422 | else |
423 | _e( 'Site registration has been disabled.' ); |
424 | break; |
425 | case 'gimmeanotherblog': |
426 | validate_another_blog_signup(); |
427 | break; |
428 | case 'default': |
429 | default : |
430 | $user_email = isset( $_POST[ 'user_email' ] ) ? $_POST[ 'user_email' ] : ''; | //Connection Handling
|
431 | do_action( "preprocess_signup_form" ); // populate the form from invites, elsewhere? |
432 | if ( is_user_logged_in() && ( $active_signup == 'all' || $active_signup == 'blog' ) ) |
433 | signup_another_blog($newblogname); |
434 | elseif ( is_user_logged_in() == false && ( $active_signup == 'all' || $active_signup == 'user' ) ) |
435 | signup_user( $newblogname, $user_email ); |
436 | elseif ( is_user_logged_in() == false && ( $active_signup == 'blog' ) ) |
437 | _e( 'Sorry, new registrations are not allowed at this time.' ); |
438 | else |
439 | _e( 'You are logged in already. No need to register again!' ); |
440 | |
441 | if ( $newblogname ) { |
442 | $newblog = get_blogaddress_by_name( $newblogname ); |
443 | |
444 | if ( $active_signup == 'blog' || $active_signup == 'all' ) |
445 | printf( __( '<p><em>The site you were looking for, <strong>%s</strong> does not exist, but you can create it now!</em></p>' ), $newblog ); |
446 | else |
447 | printf( __( '<p><em>The site you were looking for, <strong>%s</strong>, does not exist.</em></p>' ), $newblog ); |
448 | } |
449 | break; |
450 | } |
451 | } |
452 | ?> |
453 | </div> |
454 | </div> |
455 | <?php do_action( 'after_signup_form' ); ?> |
456 | |
457 | <?php get_footer(); ?> |
458 | |