2005-08-11 00:17:00 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
include_once("../inc/db.inc");
|
|
|
|
|
include_once("../inc/util.inc");
|
|
|
|
|
include_once("../inc/email.inc");
|
|
|
|
|
|
|
|
|
|
db_init();
|
|
|
|
|
|
|
|
|
|
function show_error($str) {
|
|
|
|
|
page_head("Can't update account");
|
|
|
|
|
echo "$str<br>\n";
|
|
|
|
|
echo mysql_error();
|
|
|
|
|
echo "<p>Click your browser's <b>Back</b> button to try again.\n<p>\n";
|
|
|
|
|
page_tail();
|
|
|
|
|
exit();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$auth = process_user_text(post_str("auth"));
|
|
|
|
|
|
|
|
|
|
$name = process_user_text(post_str("name"));
|
|
|
|
|
if (strlen($name)==0) {
|
|
|
|
|
show_error("You must supply a name for your account");
|
|
|
|
|
}
|
|
|
|
|
if ($new_name != strip_tags($new_name)) {
|
|
|
|
|
show_error("HTML tags not allowed in name");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$country = post_str("country");
|
|
|
|
|
if (!is_valid_country($country)) {
|
|
|
|
|
show_error( "bad country");
|
|
|
|
|
}
|
|
|
|
|
|
2005-09-09 20:28:55 +00:00
|
|
|
$postal_code = strip_tags(process_user_text(post_str("postal_code", true)));
|
2005-08-11 00:17:00 +00:00
|
|
|
|
|
|
|
|
$query = "update user set name='$name', country='$country', postal_code='$postal_code' where authenticator='$auth'";
|
|
|
|
|
$retval = mysql_query($query);
|
|
|
|
|
if (!$retval) {
|
|
|
|
|
show_error("database error");
|
|
|
|
|
}
|
|
|
|
|
|
2005-10-03 19:21:19 +00:00
|
|
|
session_start();
|
|
|
|
|
$_SESSION["authenticator"] = $auth;
|
2005-10-12 22:51:55 +00:00
|
|
|
Header("Location: home.php?new_acct=1");
|
2005-10-03 19:21:19 +00:00
|
|
|
setcookie('auth', $auth, time()+3600*24*365);
|
2005-08-11 00:17:00 +00:00
|
|
|
|
|
|
|
|
?>
|
