<?
 /******************************************
  SCRIPT DI REGISTRAZIONE, GENERA UN PROFILO DI BASE
 *******************************************/
 include "include/nocache.inc.php";
 include "include/language.inc.php";

 function error($err) {
 header("Location: reg_err.php?err=$err");
 exit;
 }
function crea_seme() {
    list($usec, $sec) = explode(' ', microtime());
    return (float) $sec + ((float) $usec * 100000);
}
mt_srand(crea_seme());
 include "include/sessions.inc.php";

 $email=strtolower($_POST['email']);
 $pwd=$_POST['pwd'];
 $OrPW=$pwd;
 $OrPW .= "[NF]";
 $pwd_conf=$_POST['pwd_conf'];
 $email_ext = $_POST['mail_ext'];
 $gehfrage = $_POST['gehfrage'];
 $gehantwort = $_POST['gehantwort'];
 $bland = $_POST['bland'];
 $ort = $_POST['ort'];

 $nick=html2unicode($_POST['nickname']);
 $name=$_POST['name'];
 $bir_day=filtra($_POST['bir_day']);
 $bir_month=filtra($_POST['bir_month']);
 $bir_year=filtra($_POST['bir_year']);

 $living_st=$_POST['living'];
 $stato=filtra($_POST['stato']);

 if (session_getvalue("registered") == "1"){
  error($LANG['REG_ERR_1']);
 }

 $sx=$_POST['sx'];

  $data_from=date("Y")-100;
  $data_to=date("Y")-13;


 if ( ($bir_year-1980)%4 == 0 )
  $val=mktime(0,0,0,$bir_month,$bir_day,2004);
 else
  $val=mktime(0,0,0,$bir_month,$bir_day,2003);


 if (($bir_year > $data_to) || ($bir_year < $data_from)) $val=-1;
 if (($val==-1)||(date("j",$val)<>$bir_day)||(intval(date("m",$val))<>$bir_month))
  $val=-1;

 if ($val==-1) error($LANG['REG_ERR_2']);

 $agree=$_POST['agree'];
 $conf_code=$_POST['conf_code'];

 if ($agree != "ON")
  error($LANG['REG_ERR_4'] );

 if (!ereg("^[_a-zA-Z0-9-]+(\.[_a-zA-Z0-9-]+)*@[a-zA-Z0-9-]+\.([a-zA-Z]{2,3})$",$email))
  error($LANG['REG_ERR_5']);

 if ((strlen($pwd) < 6) || (strlen($pwd) > 100))
  error($LANG['REG_ERR_6']);

 $pwd_X =eregi_replace("[^a-zA-Z0-9\._\-]", "", $pwd);
 if ($pwd  != $pwd_X)
  error($LANG['REG_ERR_3']);

 if ($pwd != $pwd_conf)
  error($LANG['REG_ERR_7']);

 $living_st=str_replace('"',"",$living_st);

 if (isset($stato_civ[$stato]) == false)
  error($LANG['REG_ERR_9']);

 if (($sx != "M") && ($sx != "F") && ($sx != "N"))
  error($LANG['REG_ERR_10']);

 if (strlen($nick) > 20)
  error($LANG['REG_ERR_11']);

 if ((strlen($nick) < 4 ) || (check_nickname($nick) == false))
  error($LANG['REG_ERR_12']);

 if (mysql_num_rows(mysql_query("SELECT * FROM userdata WHERE sEmail='$email'")) > 0)
  error($LANG['REG_ERR_13']);


 if (mysql_num_rows(mysql_query("SELECT * FROM userdata WHERE sNickname='$nick'")) > 0)
  error($LANG['REG_ERR_14']);

 if ((strlen($gehantwort) < 1) || (strlen($gehantwort) > 200))
  error($LANG['REG_ERR_16']);

 while ($r_auth == "" || (mysql_num_rows(mysql_query("SELECT * FROM userdata WHERE sAuthID='$r_auth'")) > 0))
 {
            $r_auth = "";
             for ($a = 0; $a < 16; $a++)
       $r_auth .= chr(mt_rand(48, 57));
 }


  $sql="INSERT INTO userdata VALUES('$email','$OrPW','$name','$nick','$r_auth','','','$pwd','N','S','$living_st','$val','$sx','$stato','','$bir_year','".time()."','".time()."','$bland','$ort','$gehfrage','$gehantwort','".time()."')";

  $xsql="INSERT INTO xuserdata VALUES('$email','$nick','$r_auth','0', '3', '0', 'GALT')";

 if (mysql_query($sql) == false OR mysql_query($xsql) == false)
  error($LANG['REG_ERR_15']);

 session_setvalue("registered","1",time()+300);
 header("Location: reg_ok.php?id=$r_auth");

?>