Problem sa mailom za aktivaciju naloga na sajtuSkinuo sam source TorrentBits-a (najbolji torrent tracker) i sve lepo namestio(gledano sa moje tacke gledista), alii imam problem sa onim cuvenim mailom sa aktivacionom sifrom. Naime mail stigne i stigne i aktivacioni kod, ali kad user klikne na njega otvori se ta strana ali se onda hash-ovi ne poklope i ne mogu da potvrde nalog. Nekim chudom ja kad se registrujem sa mog kompa (na kome se sve nalazi), sve prodje, ali spolja izgleda nece. Evo delova kodova za to:
ovo je deo u skripti koja salje mail
Code:
$secret = mksecret();
$wantpasshash = md5($secret . $wantpassword . $secret);
$editsecret = mksecret();
$ret = mysql_query("INSERT INTO users (username, passhash, secret, editsecret, email, status, added) VALUES (" .
implode(",", array_map("sqlesc", array($wantusername, $wantpasshash, $secret, $editsecret, $email, 'pending'))) .
",'" . get_date_time() . "')");
if (!$ret) {
if (mysql_errno() == 1062)
bark("Username already exists!");
bark("borked");
}
$id = mysql_insert_id();
$psecret = md5($editsecret);
$secret = mksecret();
$wantpasshash = md5($secret . $wantpassword . $secret);
$editsecret = mksecret();
$ret = mysql_query("INSERT INTO users (username, passhash, secret, editsecret, email, status, added) VALUES (" .
implode(",", array_map("sqlesc", array($wantusername, $wantpasshash, $secret, $editsecret, $email, 'pending'))) .
",'" . get_date_time() . "')");
if (!$ret) {
if (mysql_errno() == 1062)
bark("Username already exists!");
bark("borked");
}
$id = mysql_insert_id();
$psecret = md5($editsecret);
ovaj poslednji $psecret se salje na mail
sad ide deo koda gde se potvrdjuje zahtev za registraciju (skripta u adresi koja dolazi na mail):
Code:
$md5 = $HTTP_GET_VARS["secret"]; //secret je ono sto dolazi na mail
$res = mysql_query("SELECT passhash, editsecret, status FROM users WHERE id = $id");
$row = mysql_fetch_array($res);
if (!$row)
httperr();
if ($row["status"] != "pending") {
header("Refresh: 0; url=../../ok.php?type=confirmed");
exit();
}
$sec = hash_pad($row["editsecret"]);
if ($md5 != md5($sec))//-------->>>>>>> ovde puca
httperr();
$md5 = $HTTP_GET_VARS["secret"]; //secret je ono sto dolazi na mail
$res = mysql_query("SELECT passhash, editsecret, status FROM users WHERE id = $id");
$row = mysql_fetch_array($res);
if (!$row)
httperr();
if ($row["status"] != "pending") {
header("Refresh: 0; url=../../ok.php?type=confirmed");
exit();
}
$sec = hash_pad($row["editsecret"]);
if ($md5 != md5($sec))//-------->>>>>>> ovde puca
httperr();
vidi li neko u chemu je problem?
btw ovo radi na win xp sp2, apache 2.0,54, php 5.04, mysql 4.1.7
hvala unapred
