include "header.php"; ?> include "db.php"; ?> $db = new DB($mysql_host, $mysql_user, $mysql_password, $mysql_db); ?>
$doAdd = true;
$username = "";
if (isset($_REQUEST["username"])) {
$username=$_REQUEST["username"];
}
$password = "";
if (isset($_REQUEST["password"])) {
$password=$_REQUEST["password"];
}
$email = "";
if (isset($_REQUEST["email"])) {
$email=$_REQUEST["email"];
}
$timelimit = "";
if (isset($_REQUEST["timelimit"])) {
$timelimit=$_REQUEST["timelimit"];
}
$mount = "";
if (isset($_REQUEST["mount"])) {
$mount=$_REQUEST["mount"];
}
$confirm = "";
if (isset($_REQUEST["confirm"])) {
$confirm=$_REQUEST["confirm"];
}
if (($username != "") && ($password != "") && ($mount != "")) {
$doAdd = true;
}
else {
$doAdd = false;
}
if (($confirm == "1") && ($doAdd == false)) {
echo "Required field missing
";
}
$displayform = true;
if ($doAdd) {
if ($timelimit == "") {
$timelimit = "-1";
}
$query = sprintf("insert into ".$table_prefix."users (username, password, mountpoint, email, timeleft) values ('%s', '%s', '%s', '%s', %s)",
mysql_real_escape_string($username),
mysql_real_escape_string($password),
mysql_real_escape_string($mount),
mysql_real_escape_string($email),
$timelimit);
if (mysql_query($query, $db->link)) {
echo "Added User $username
";
}
else {
echo "Error adding user $username : ".mysql_error()."
";
}
}
?>
if ($displayform) {
if ($mount == "") {
$allselected = "selected";
}
else {
$allselected = "";
}
?>