You are here

Home » API reference » Drupal 5 » user.module

function user_register_submit in Drupal 5

Same name and namespace in other branches
  1. 4 modules/user.module \user_register_submit()
  2. 6 modules/user/user.module \user_register_submit()
  3. 7 modules/user/user.module \user_register_submit()

File

modules/user/user.module, line 1245
Enables the user registration and login system.

Code

function user_register_submit($form_id, $form_values) {
  global $base_url;
  $admin = user_access('administer users');
  $mail = $form_values['mail'];
  $name = $form_values['name'];
  if (!variable_get('user_email_verification', TRUE) || $admin) {
    $pass = $form_values['pass'];
  }
  else {
    $pass = user_password();
  }
  $notify = $form_values['notify'];
  $from = variable_get('site_mail', ini_get('sendmail_from'));
  if (isset($form_values['roles'])) {
    $roles = array_filter($form_values['roles']);

    // Remove unset roles
  }
  if (!$admin && array_intersect(array_keys($form_values), array(
    'uid',
    'roles',
    'init',
    'session',
    'status',
  ))) {
    watchdog('security', t('Detected malicious attempt to alter protected user fields.'), WATCHDOG_WARNING);
    return 'user/register';
  }

  //the unset below is needed to prevent these form values from being saved as user data
  unset($form_values['form_token'], $form_values['submit'], $form_values['op'], $form_values['notify'], $form_values['form_id'], $form_values['affiliates'], $form_values['destination']);
  $merge_data = array(
    'pass' => $pass,
    'init' => $mail,
    'roles' => $roles,
  );
  if (!$admin) {

    // Set the user's status because it was not displayed in the form.
    $merge_data['status'] = variable_get('user_register', 1) == 1;
  }
  $account = user_save('', array_merge($form_values, $merge_data));
  watchdog('user', t('New user: %name %email.', array(
    '%name' => $name,
    '%email' => '<' . $mail . '>',
  )), WATCHDOG_NOTICE, l(t('edit'), 'user/' . $account->uid . '/edit'));
  $variables = array(
    '!username' => $name,
    '!site' => variable_get('site_name', 'Drupal'),
    '!password' => $pass,
    '!uri' => $base_url,
    '!uri_brief' => substr($base_url, strlen('http://')),
    '!mailto' => $mail,
    '!date' => format_date(time()),
    '!login_uri' => url('user', NULL, NULL, TRUE),
    '!edit_uri' => url('user/' . $account->uid . '/edit', NULL, NULL, TRUE),
    '!login_url' => user_pass_reset_url($account),
  );

  // The first user may login immediately, and receives a customized welcome e-mail.
  if ($account->uid == 1) {
    drupal_mail('user-register-admin', $mail, t('Drupal user account details for !s', array(
      '!s' => $name,
    )), strtr(t("!username,\n\nYou may now login to !uri using the following username and password:\n\n  username: !username\n  password: !password\n\n!edit_uri\n\n--drupal"), $variables), $from);
    drupal_set_message(t('<p>Welcome to Drupal. You are user #1, which gives you full and immediate access. All future registrants will receive their passwords via e-mail, so please make sure your website e-mail address is set properly under the general settings on the <a href="@settings">site information settings page</a>.</p><p> Your password is <strong>%pass</strong>. You may change your password below.</p>', array(
      '%pass' => $pass,
      '@settings' => url('admin/settings/site-information'),
    )));
    user_authenticate($account->name, trim($pass));
    return 'user/1/edit';
  }
  else {
    if ($admin && !$notify) {
      drupal_set_message(t('Created a new user account. No e-mail has been sent.'));
    }
    else {
      if (!variable_get('user_email_verification', TRUE) && $account->status && !$admin) {

        // No e-mail verification is required, create new user account, and login user immediately.
        $subject = _user_mail_text('welcome_subject', $variables);
        $body = _user_mail_text('welcome_body', $variables);
        drupal_mail('user-register-welcome', $mail, $subject, $body, $from);
        user_authenticate($account->name, trim($pass));
        $edit = array();
        user_module_invoke('login', $edit, $account);
        return '';
      }
      else {
        if ($account->status || $notify) {

          // Create new user account, no administrator approval required.
          $subject = $notify ? _user_mail_text('admin_subject', $variables) : _user_mail_text('welcome_subject', $variables);
          $body = $notify ? _user_mail_text('admin_body', $variables) : _user_mail_text('welcome_body', $variables);
          drupal_mail($notify ? 'user-register-notify' : 'user-register-welcome', $mail, $subject, $body, $from);
          if ($notify) {
            drupal_set_message(t('Password and further instructions have been e-mailed to the new user %user.', array(
              '%user' => $name,
            )));
          }
          else {
            drupal_set_message(t('Your password and further instructions have been sent to your e-mail address.'));
            return '';
          }
        }
        else {

          // Create new user account, administrator approval required.
          $subject = _user_mail_text('approval_subject', $variables);
          $body = _user_mail_text('approval_body', $variables);
          drupal_mail('user-register-approval-user', $mail, $subject, $body, $from);
          drupal_mail('user-register-approval-admin', $from, $subject, t("!username has applied for an account.\n\n!edit_uri", $variables), $from);
          drupal_set_message(t('Thank you for applying for an account. Your account is currently pending approval by the site administrator.<br />In the meantime, your password and further instructions have been sent to your e-mail address.'));
          return '';
        }
      }
    }
  }
}