global $i18n;
if (!ttValidString($this->group_name, true))
- $this->err->add($i18n->getKey('error.field'), $i18n->getKey('label.team_name'));
+ $this->err->add($i18n->get('error.field'), $i18n->get('label.team_name'));
if (!ttValidString($this->currency, true))
- $this->err->add($i18n->getKey('error.field'), $i18n->getKey('label.currency'));
+ $this->err->add($i18n->get('error.field'), $i18n->get('label.currency'));
if (!ttValidString($this->user_name))
- $this->err->add($i18n->getKey('error.field'), $i18n->getKey('label.manager_name'));
+ $this->err->add($i18n->get('error.field'), $i18n->get('label.manager_name'));
if (!ttValidString($this->login))
- $this->err->add($i18n->getKey('error.field'), $i18n->getKey('label.manager_login'));
+ $this->err->add($i18n->get('error.field'), $i18n->get('label.manager_login'));
if (!ttValidString($this->password1))
- $this->err->add($i18n->getKey('error.field'), $i18n->getKey('label.password'));
+ $this->err->add($i18n->get('error.field'), $i18n->get('label.password'));
if (!ttValidString($this->password2))
- $this->err->add($i18n->getKey('error.field'), $i18n->getKey('label.confirm_password'));
+ $this->err->add($i18n->get('error.field'), $i18n->get('label.confirm_password'));
if ($this->password1 !== $this->password2)
- $this->err->add($i18n->getKey('error.not_equal'), $i18n->getKey('label.password'), $i18n->getKey('label.confirm_password'));
+ $this->err->add($i18n->get('error.not_equal'), $i18n->get('label.password'), $i18n->get('label.confirm_password'));
if (!ttValidEmail($this->email, true))
- $this->err->add($i18n->getKey('error.field'), $i18n->getKey('label.email'));
+ $this->err->add($i18n->get('error.field'), $i18n->get('label.email'));
}
// The register function registers a user in Time Tracker.
function register() {
- if ($this->err->yes()) return; // There are errors, do not proceed.
+ if ($this->err->yes()) return false; // There are errors, do not proceed.
global $i18n;
+ // Protection fom too many recent bot registrations from user IP.
+ if ($this->registeredRecently()) {
+ $this->err->add($i18n->get('error.access_denied'));
+ return false;
+ }
+
import('ttUserHelper');
if (ttUserHelper::getUserByLogin($this->login)) {
// User login already exists.
- $this->err->add($i18n->getKey('error.user_exists'));
- return;
+ $this->err->add($i18n->get('error.user_exists'));
+ return false;
}
// Create a new group.
$this->group_id = $this->createGroup();
if (!$this->group_id) {
- $this->err->add($i18n->getKey('error.db'));
- return;
+ $this->err->add($i18n->get('error.db'));
+ return false;
}
import('ttRoleHelper');
if (!ttRoleHelper::createPredefinedRoles($this->group_id, $this->lang)) {
- $err->add($i18n->getKey('error.db'));
- return;
+ $err->add($i18n->get('error.db'));
+ return false;
}
$this->role_id = ttRoleHelper::getTopManagerRoleID();
$this->user_id = $this->createUser();
if (!$this->user_id) {
- $err->add($i18n->getKey('error.db'));
- return;
+ $err->add($i18n->get('error.db'));
+ return false;
}
- $this->setCreatedBy($this->user_id);
+ if (!$this->setCreatedBy($this->user_id))
+ return false;
+
+ return true;
}
// The createGroup function creates a group in Time Tracker as part
$sql = "update tt_teams set created_by = $user_id where id = $this->group_id";
$affected = $mdb2->exec($sql);
if (is_a($affected, 'PEAR_Error')) {
- $this->err->add($i18n->getKey('error.db'));
+ $this->err->add($i18n->get('error.db'));
return false;
}
$sql = "update tt_users set created_by = $user_id where id = $user_id and team_id = $this->group_id";
$affected = $mdb2->exec($sql);
if (is_a($affected, 'PEAR_Error')) {
- $this->err->add($i18n->getKey('error.db'));
+ $this->err->add($i18n->get('error.db'));
return false;
}
return true;
}
+
+ // registeredRecently determines if we already have a successful recent registration from user IP.
+ // "recent" means "within the last minute" and is set in a query by the following condition:
+ // "and created > now() - interval 1 minute". Change if necessary.
+ function registeredRecently() {
+ $mdb2 = getConnection();
+
+ $ip_part = ' created_ip = '.$mdb2->quote($_SERVER['REMOTE_ADDR']);
+ $sql = 'select created from tt_teams where '.$ip_part.' and created > now() - interval 1 minute';
+ $res = $mdb2->query($sql);
+ if (is_a($res, 'PEAR_Error'))
+ return false;
+ $val = $res->fetchRow();
+ if ($val)
+ return true;
+
+ return false;
+ }
}