Home Esplora Aiuto
Registrati Accedi
aj
/
chamilo-lms2
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Ramo (Branch): 1.11.10-releases
Rami (Branch) Tag
chamilo-lms2
/
main
/
auth
/
inscription.php

inscription.php 42 KB
Permalink Cronologia Originale

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148 
  1. <?php
    2. 

  2. /* For licensing terms, see /license.txt */
    3. 

  3. 

  4. use ChamiloSession as Session;
    5. 

  5. 

  6. /**
    7. 

  7.  * This script displays a form for registering new users.
    8. 

  8.  *
    9. 

  9.  * @package    chamilo.auth
    10. 

  10.  */
    11. 

  11. 

  12. //quick hack to adapt the registration form result to the selected registration language
    13. 

  13. if (!empty($_POST['language'])) {
    14. 

  14.     $_GET['language'] = $_POST['language'];
    15. 

  15. }
    16. 

  16. require_once __DIR__.'/../inc/global.inc.php';
    17. 

  17. $hideHeaders = isset($_GET['hide_headers']);
    18. 

  18. 

  19. $allowedFields = [
    20. 

  20.     'official_code',
    21. 

  21.     'phone',
    22. 

  22.     'status',
    23. 

  23.     'language',
    24. 

  24.     'extra_fields',
    25. 

  25.     'address',
    26. 

  26. ];
    27. 

  27. 

  28. $allowedFieldsConfiguration = api_get_configuration_value('allow_fields_inscription');
    29. 

  29. if ($allowedFieldsConfiguration !== false) {
    30. 

  30.     $allowedFields = isset($allowedFieldsConfiguration['fields']) ? $allowedFieldsConfiguration['fields'] : [];
    31. 

  31.     $allowedFields['extra_fields'] = isset($allowedFieldsConfiguration['extra_fields']) ? $allowedFieldsConfiguration['extra_fields'] : [];
    32. 

  32. }
    33. 

  33. 

  34. $extraFieldsLoaded = false;
    35. 

  35. $htmlHeadXtra[] = api_get_password_checker_js('#username', '#pass1');
    36. 

  36. // User is not allowed if Terms and Conditions are disabled and
    37. 

  37. // registration is disabled too.
    38. 

  38. $isNotAllowedHere = api_get_setting('allow_terms_conditions') === 'false' &&
    39. 

  39.     api_get_setting('allow_registration') === 'false';
    40. 

  40. 

  41. if ($isNotAllowedHere) {
    42. 

  42.     api_not_allowed(true, get_lang('RegistrationDisabled'));
    43. 

  43. }
    44. 

  44. 

  45. if (!empty($_SESSION['user_language_choice'])) {
    46. 

  46.     $user_selected_language = $_SESSION['user_language_choice'];
    47. 

  47. } elseif (!empty($_SESSION['_user']['language'])) {
    48. 

  48.     $user_selected_language = $_SESSION['_user']['language'];
    49. 

  49. } else {
    50. 

  50.     $user_selected_language = api_get_setting('platformLanguage');
    51. 

  51. }
    52. 

  52. 

  53. $extraConditions = api_get_configuration_value('show_conditions_to_user');
    54. 

  54. 

  55. if ($extraConditions && isset($extraConditions['conditions'])) {
    56. 

  56.     // Create user extra fields for the conditions
    57. 

  57.     $userExtraField = new ExtraField('user');
    58. 

  58.     $extraConditions = $extraConditions['conditions'];
    59. 

  59.     foreach ($extraConditions as $condition) {
    60. 

  60.         $exists = $userExtraField->get_handler_field_info_by_field_variable($condition['variable']);
    61. 

  61.         if ($exists == false) {
    62. 

  62.             $params = [
    63. 

  63.                 'field_type' => ExtraField::FIELD_TYPE_CHECKBOX,
    64. 

  64.                 'variable' => $condition['variable'],
    65. 

  65.                 'display_text' => $condition['display_text'],
    66. 

  66.                 'default_value' => '',
    67. 

  67.                 'visible_to_self' => true,
    68. 

  68.                 'visible_to_others' => false,
    69. 

  69.                 'changeable' => true,
    70. 

  70.                 'filter' => false,
    71. 

  71.             ];
    72. 

  72.             $userExtraField->save($params);
    73. 

  73.         }
    74. 

  74.     }
    75. 

  75. }
    76. 

  76. 

  77. $form = new FormValidator('registration');
    78. 

  78. $user_already_registered_show_terms = false;
    79. 

  79. if (api_get_setting('allow_terms_conditions') === 'true') {
    80. 

  80.     $user_already_registered_show_terms = isset($_SESSION['term_and_condition']['user_id']);
    81. 

  81. }
    82. 

  82. 

  83. $sessionPremiumChecker = Session::read('SessionIsPremium');
    84. 

  84. $sessionId = Session::read('sessionId');
    85. 

  85. 

  86. // Direct Link Session Subscription feature #12220
    87. 

  87. $sessionRedirect = isset($_REQUEST['s']) && !empty($_REQUEST['s']) ? $_REQUEST['s'] : null;
    88. 

  88. $onlyOneCourseSessionRedirect = isset($_REQUEST['cr']) && !empty($_REQUEST['cr']) ? $_REQUEST['cr'] : null;
    89. 

  89. 

  90. if (api_get_configuration_value('allow_redirect_to_session_after_inscription_about')) {
    91. 

  91.     if (!empty($sessionRedirect)) {
    92. 

  92.         Session::write('session_redirect', $sessionRedirect);
    93. 

  93.         Session::write('only_one_course_session_redirect', $onlyOneCourseSessionRedirect);
    94. 

  94.     }
    95. 

  95. }
    96. 

  96. 

  97. // Direct Link Subscription feature #5299
    98. 

  98. $course_code_redirect = isset($_REQUEST['c']) && !empty($_REQUEST['c']) ? $_REQUEST['c'] : null;
    99. 

  99. $exercise_redirect = isset($_REQUEST['e']) && !empty($_REQUEST['e']) ? $_REQUEST['e'] : null;
    100. 

  100. 

  101. if (!empty($course_code_redirect)) {
    102. 

  102.     Session::write('course_redirect', $course_code_redirect);
    103. 

  103.     Session::write('exercise_redirect', $exercise_redirect);
    104. 

  104. }
    105. 

  105. 

  106. if ($user_already_registered_show_terms === false &&
    107. 

  107.     api_get_setting('allow_registration') !== 'false'
    108. 

  108. ) {
    109. 

  109.     // STUDENT/TEACHER
    110. 

  110.     if (api_get_setting('allow_registration_as_teacher') != 'false') {
    111. 

  111.         if (in_array('status', $allowedFields)) {
    112. 

  112.             $form->addRadio(
    113. 

  113.                 'status',
    114. 

  114.                 get_lang('RegistrationRoleWhatDoYouWantToDo'),
    115. 

  115.                 [
    116. 

  116.                     STUDENT => '<p class="caption">'.get_lang('RegistrationRoleFollowCourses').'</p>',
    117. 

  117.                     COURSEMANAGER => '<p class="caption">'.get_lang('RegistrationRoleTeachCourses').'</p>',
    118. 

  118.                 ],
    119. 

  119.                 ['class' => 'register-profile']
    120. 

  120.             );
    121. 

  121.             $form->addRule('status', get_lang('ThisFieldIsRequired'), 'required');
    122. 

  122.         }
    123. 

  123.     }
    124. 

  124. 

  125.     if (api_is_western_name_order()) {
    126. 

  126.         // FIRST NAME and LAST NAME
    127. 

  127.         $form->addElement('text', 'firstname', get_lang('FirstName'), ['size' => 40]);
    128. 

  128.         $form->addElement('text', 'lastname', get_lang('LastName'), ['size' => 40]);
    129. 

  129.     } else {
    130. 

  130.         // LAST NAME and FIRST NAME
    131. 

  131.         $form->addElement('text', 'lastname', get_lang('LastName'), ['size' => 40]);
    132. 

  132.         $form->addElement('text', 'firstname', get_lang('FirstName'), ['size' => 40]);
    133. 

  133.     }
    134. 

  134.     $form->applyFilter(['lastname', 'firstname'], 'trim');
    135. 

  135.     $form->addRule('lastname', get_lang('ThisFieldIsRequired'), 'required');
    136. 

  136.     $form->addRule('firstname', get_lang('ThisFieldIsRequired'), 'required');
    137. 

  137. 

  138.     // EMAIL
    139. 

  139.     $form->addElement('text', 'email', get_lang('Email'), ['size' => 40]);
    140. 

  140.     if (api_get_setting('registration', 'email') === 'true') {
    141. 

  141.         $form->addRule('email', get_lang('ThisFieldIsRequired'), 'required');
    142. 

  142.     }
    143. 

  143. 

  144.     if (api_get_setting('login_is_email') === 'true') {
    145. 

  145.         $form->applyFilter('email', 'trim');
    146. 

  146.         if (api_get_setting('registration', 'email') != 'true') {
    147. 

  147.             $form->addRule('email', get_lang('ThisFieldIsRequired'), 'required');
    148. 

  148.         }
    149. 

  149.         $form->addRule(
    150. 

  150.             'email',
    151. 

  151.             sprintf(
    152. 

  152.                 get_lang('UsernameMaxXCharacters'),
    153. 

  153.                 (string) USERNAME_MAX_LENGTH
    154. 

  154.             ),
    155. 

  155.             'maxlength',
    156. 

  156.             USERNAME_MAX_LENGTH
    157. 

  157.         );
    158. 

  158.         $form->addRule('email', get_lang('UserTaken'), 'username_available');
    159. 

  159.     }
    160. 

  160. 

  161.     $form->addRule('email', get_lang('EmailWrong'), 'email');
    162. 

  162.     if (api_get_setting('openid_authentication') === 'true') {
    163. 

  163.         $form->addElement('text', 'openid', get_lang('OpenIDURL'), ['size' => 40]);
    164. 

  164.     }
    165. 

  165. 

  166.     // USERNAME
    167. 

  167.     if (api_get_setting('login_is_email') != 'true') {
    168. 

  168.         $form->addText(
    169. 

  169.             'username',
    170. 

  170.             get_lang('UserName'),
    171. 

  171.             true,
    172. 

  172.             [
    173. 

  173.                 'id' => 'username',
    174. 

  174.                 'size' => USERNAME_MAX_LENGTH,
    175. 

  175.                 'autocomplete' => 'off',
    176. 

  176.             ]
    177. 

  177.         );
    178. 

  178.         $form->applyFilter('username', 'trim');
    179. 

  179.         $form->addRule('username', get_lang('ThisFieldIsRequired'), 'required');
    180. 

  180.         $form->addRule(
    181. 

  181.             'username',
    182. 

  182.             sprintf(
    183. 

  183.                 get_lang('UsernameMaxXCharacters'),
    184. 

  184.                 (string) USERNAME_MAX_LENGTH
    185. 

  185.             ),
    186. 

  186.             'maxlength',
    187. 

  187.             USERNAME_MAX_LENGTH
    188. 

  188.         );
    189. 

  189.         $form->addRule('username', get_lang('UsernameWrong'), 'username');
    190. 

  190.         $form->addRule('username', get_lang('UserTaken'), 'username_available');
    191. 

  191.     }
    192. 

  192. 

  193.     // PASSWORD
    194. 

  194.     $form->addElement(
    195. 

  195.         'password',
    196. 

  196.         'pass1',
    197. 

  197.         get_lang('Pass'),
    198. 

  198.         ['id' => 'pass1', 'size' => 20, 'autocomplete' => 'off']
    199. 

  199.     );
    200. 

  200. 

  201.     $form->addElement(
    202. 

  202.         'password',
    203. 

  203.         'pass2',
    204. 

  204.         get_lang('Confirmation'),
    205. 

  205.         ['id' => 'pass2', 'size' => 20, 'autocomplete' => 'off']
    206. 

  206.     );
    207. 

  207.     $form->addRule('pass1', get_lang('ThisFieldIsRequired'), 'required');
    208. 

  208.     $form->addRule('pass2', get_lang('ThisFieldIsRequired'), 'required');
    209. 

  209.     $form->addRule(['pass1', 'pass2'], get_lang('PassTwo'), 'compare');
    210. 

  210.     $form->addPasswordRule('pass1');
    211. 

  211. 

  212.     // PHONE
    213. 

  213.     if (in_array('phone', $allowedFields)) {
    214. 

  214.         $form->addElement(
    215. 

  215.             'text',
    216. 

  216.             'phone',
    217. 

  217.             get_lang('Phone'),
    218. 

  218.             ['size' => 20]
    219. 

  219.         );
    220. 

  220.         if (api_get_setting('registration', 'phone') == 'true') {
    221. 

  221.             $form->addRule(
    222. 

  222.                 'phone',
    223. 

  223.                 get_lang('ThisFieldIsRequired'),
    224. 

  224.                 'required'
    225. 

  225.             );
    226. 

  226.         }
    227. 

  227.     }
    228. 

  228. 

  229.     // Language
    230. 

  230.     if (in_array('language', $allowedFields)) {
    231. 

  231.         if (api_get_setting('registration', 'language') == 'true') {
    232. 

  232.             $form->addSelectLanguage(
    233. 

  233.                 'language',
    234. 

  234.                 get_lang('Language')
    235. 

  235.             );
    236. 

  236.         }
    237. 

  237.     }
    238. 

  238. 

  239.     // OFFICIAL CODE
    240. 

  240.     if (CONFVAL_ASK_FOR_OFFICIAL_CODE) {
    241. 

  241.         if (in_array('official_code', $allowedFields)) {
    242. 

  242.             $form->addElement(
    243. 

  243.                 'text',
    244. 

  244.                 'official_code',
    245. 

  245.                 get_lang('OfficialCode'),
    246. 

  246.                 ['size' => 40]
    247. 

  247.             );
    248. 

  248.             if (api_get_setting('registration', 'officialcode') == 'true') {
    249. 

  249.                 $form->addRule(
    250. 

  250.                     'official_code',
    251. 

  251.                     get_lang('ThisFieldIsRequired'),
    252. 

  252.                     'required'
    253. 

  253.                 );
    254. 

  254.             }
    255. 

  255.         }
    256. 

  256.     }
    257. 

  257. 

  258.     // EXTENDED FIELDS
    259. 

  259.     if (api_get_setting('extended_profile') == 'true' &&
    260. 

  260.         api_get_setting('extendedprofile_registration', 'mycomptetences') == 'true'
    261. 

  261.     ) {
    262. 

  262.         $form->addHtmlEditor(
    263. 

  263.             'competences',
    264. 

  264.             get_lang('MyCompetences'),
    265. 

  265.             false,
    266. 

  266.             false,
    267. 

  267.             ['ToolbarSet' => 'register', 'Width' => '100%', 'Height' => '130']
    268. 

  268.         );
    269. 

  269.     }
    270. 

  270. 

  271.     if (api_get_setting('extended_profile') == 'true' &&
    272. 

  272.         api_get_setting('extendedprofile_registration', 'mydiplomas') == 'true'
    273. 

  273.     ) {
    274. 

  274.         $form->addHtmlEditor(
    275. 

  275.             'diplomas',
    276. 

  276.             get_lang('MyDiplomas'),
    277. 

  277.             false,
    278. 

  278.             false,
    279. 

  279.             ['ToolbarSet' => 'register', 'Width' => '100%', 'Height' => '130']
    280. 

  280.         );
    281. 

  281.     }
    282. 

  282. 

  283.     if (api_get_setting('extended_profile') == 'true' &&
    284. 

  284.         api_get_setting('extendedprofile_registration', 'myteach') == 'true'
    285. 

  285.     ) {
    286. 

  286.         $form->addHtmlEditor(
    287. 

  287.             'teach',
    288. 

  288.             get_lang('MyTeach'),
    289. 

  289.             false,
    290. 

  290.             false,
    291. 

  291.             ['ToolbarSet' => 'register', 'Width' => '100%', 'Height' => '130']
    292. 

  292.         );
    293. 

  293.     }
    294. 

  294. 

  295.     if (api_get_setting('extended_profile') == 'true' &&
    296. 

  296.         api_get_setting('extendedprofile_registration', 'mypersonalopenarea') == 'true'
    297. 

  297.     ) {
    298. 

  298.         $form->addHtmlEditor(
    299. 

  299.             'openarea',
    300. 

  300.             get_lang('MyPersonalOpenArea'),
    301. 

  301.             false,
    302. 

  302.             false,
    303. 

  303.             ['ToolbarSet' => 'register', 'Width' => '100%', 'Height' => '130']
    304. 

  304.         );
    305. 

  305.     }
    306. 

  306. 

  307.     if (api_get_setting('extended_profile') === 'true') {
    308. 

  308.         if (api_get_setting('extendedprofile_registration', 'mycomptetences') === 'true' &&
    309. 

  309.             api_get_setting('extendedprofile_registrationrequired', 'mycomptetences') === 'true'
    310. 

  310.         ) {
    311. 

  311.             $form->addRule('competences', get_lang('ThisFieldIsRequired'), 'required');
    312. 

  312.         }
    313. 

  313.         if (api_get_setting('extendedprofile_registration', 'mydiplomas') === 'true' &&
    314. 

  314.             api_get_setting('extendedprofile_registrationrequired', 'mydiplomas') === 'true'
    315. 

  315.         ) {
    316. 

  316.             $form->addRule('diplomas', get_lang('ThisFieldIsRequired'), 'required');
    317. 

  317.         }
    318. 

  318.         if (api_get_setting('extendedprofile_registration', 'myteach') === 'true' &&
    319. 

  319.             api_get_setting('extendedprofile_registrationrequired', 'myteach') === 'true'
    320. 

  320.         ) {
    321. 

  321.             $form->addRule('teach', get_lang('ThisFieldIsRequired'), 'required');
    322. 

  322.         }
    323. 

  323.         if (api_get_setting('extendedprofile_registration', 'mypersonalopenarea') === 'true' &&
    324. 

  324.             api_get_setting('extendedprofile_registrationrequired', 'mypersonalopenarea') === 'true'
    325. 

  325.         ) {
    326. 

  326.             $form->addRule('openarea', get_lang('ThisFieldIsRequired'), 'required');
    327. 

  327.         }
    328. 

  328.     }
    329. 

  329. 

  330.     // EXTRA FIELDS
    331. 

  331.     if (array_key_exists('extra_fields', $allowedFields) ||
    332. 

  332.         in_array('extra_fields', $allowedFields)
    333. 

  333.     ) {
    334. 

  334.         $extraField = new ExtraField('user');
    335. 

  335.         $extraFieldList = [];
    336. 

  336.         if (isset($allowedFields['extra_fields']) && is_array($allowedFields['extra_fields'])) {
    337. 

  337.             $extraFieldList = $allowedFields['extra_fields'];
    338. 

  338.         }
    339. 

  339.         $requiredFields = api_get_configuration_value('required_extra_fields_in_inscription');
    340. 

  340. 

  341.         if (!empty($requiredFields) && $requiredFields['options']) {
    342. 

  342.             $requiredFields = $requiredFields['options'];
    343. 

  343.         }
    344. 

  344. 

  345.         $returnParams = $extraField->addElements(
    346. 

  346.             $form,
    347. 

  347.             0,
    348. 

  348.             [],
    349. 

  349.             false,
    350. 

  350.             false,
    351. 

  351.             $extraFieldList,
    352. 

  352.             [],
    353. 

  353.             false,
    354. 

  354.             false,
    355. 

  355.             false,
    356. 

  356.             [],
    357. 

  357.             [],
    358. 

  358.             [],
    359. 

  359.             false,
    360. 

  360.             $requiredFields
    361. 

  361.         );
    362. 

  362.         $extraFieldsLoaded = true;
    363. 

  363.     }
    364. 

  364. 

  365.     // CAPTCHA
    366. 

  366.     $captcha = api_get_setting('allow_captcha');
    367. 

  367.     $allowCaptcha = $captcha === 'true';
    368. 

  368. 

  369.     if ($allowCaptcha) {
    370. 

  370.         $ajax = api_get_path(WEB_AJAX_PATH).'form.ajax.php?a=get_captcha';
    371. 

  371.         $options = [
    372. 

  372.             'width' => 220,
    373. 

  373.             'height' => 90,
    374. 

  374.             'callback' => $ajax.'&var='.basename(__FILE__, '.php'),
    375. 

  375.             'sessionVar' => basename(__FILE__, '.php'),
    376. 

  376.             'imageOptions' => [
    377. 

  377.                 'font_size' => 20,
    378. 

  378.                 'font_path' => api_get_path(SYS_FONTS_PATH).'opensans/',
    379. 

  379.                 'font_file' => 'OpenSans-Regular.ttf',
    380. 

  380.                 //'output' => 'gif'
    381. 

  381.             ],
    382. 

  382.         ];
    383. 

  383. 

  384.         $captcha_question = $form->addElement(
    385. 

  385.             'CAPTCHA_Image',
    386. 

  386.             'captcha_question',
    387. 

  387.             '',
    388. 

  388.             $options
    389. 

  389.         );
    390. 

  390.         $form->addElement('static', null, null, get_lang('ClickOnTheImageForANewOne'));
    391. 

  391. 

  392.         $form->addElement(
    393. 

  393.             'text',
    394. 

  394.             'captcha',
    395. 

  395.             get_lang('EnterTheLettersYouSee'),
    396. 

  396.             ['size' => 40]
    397. 

  397.         );
    398. 

  398.         $form->addRule(
    399. 

  399.             'captcha',
    400. 

  400.             get_lang('EnterTheCharactersYouReadInTheImage'),
    401. 

  401.             'required',
    402. 

  402.             null,
    403. 

  403.             'client'
    404. 

  404.         );
    405. 

  405.         $form->addRule(
    406. 

  406.             'captcha',
    407. 

  407.             get_lang('TheTextYouEnteredDoesNotMatchThePicture'),
    408. 

  408.             'CAPTCHA',
    409. 

  409.             $captcha_question
    410. 

  410.         );
    411. 

  411.     }
    412. 

  412. }
    413. 

  413. 

  414. if (isset($_SESSION['user_language_choice']) && $_SESSION['user_language_choice'] != '') {
    415. 

  415.     $defaults['language'] = $_SESSION['user_language_choice'];
    416. 

  416. } else {
    417. 

  417.     $defaults['language'] = api_get_setting('platformLanguage');
    418. 

  418. }
    419. 

  419. if (!empty($_GET['username'])) {
    420. 

  420.     $defaults['username'] = Security::remove_XSS($_GET['username']);
    421. 

  421. }
    422. 

  422. if (!empty($_GET['email'])) {
    423. 

  423.     $defaults['email'] = Security::remove_XSS($_GET['email']);
    424. 

  424. }
    425. 

  425. 

  426. if (!empty($_GET['phone'])) {
    427. 

  427.     $defaults['phone'] = Security::remove_XSS($_GET['phone']);
    428. 

  428. }
    429. 

  429. 

  430. if (api_get_setting('openid_authentication') === 'true' && !empty($_GET['openid'])) {
    431. 

  431.     $defaults['openid'] = Security::remove_XSS($_GET['openid']);
    432. 

  432. }
    433. 

  433. 

  434. $defaults['status'] = STUDENT;
    435. 

  435. $defaults['extra_mail_notify_invitation'] = 1;
    436. 

  436. $defaults['extra_mail_notify_message'] = 1;
    437. 

  437. $defaults['extra_mail_notify_group_message'] = 1;
    438. 

  438. 

  439. $form->applyFilter('__ALL__', 'Security::remove_XSS');
    440. 

  440. $form->setDefaults($defaults);
    441. 

  441. $content = null;
    442. 

  442. 

  443. $tool_name = get_lang('Registration');
    444. 

  444. 

  445. if (!CustomPages::enabled()) {
    446. 

  446.     // Load terms & conditions from the current lang
    447. 

  447.     if (api_get_setting('allow_terms_conditions') === 'true') {
    448. 

  448.         $get = array_keys($_GET);
    449. 

  449.         if (isset($get)) {
    450. 

  450.             if (isset($get[0]) && $get[0] == 'legal') {
    451. 

  451.                 $language = api_get_interface_language();
    452. 

  452.                 $language = api_get_language_id($language);
    453. 

  453.                 $term_preview = LegalManager::get_last_condition($language);
    454. 

  454.                 if (!$term_preview) {
    455. 

  455.                     //look for the default language
    456. 

  456.                     $language = api_get_setting('platformLanguage');
    457. 

  457.                     $language = api_get_language_id($language);
    458. 

  458.                     $term_preview = LegalManager::get_last_condition($language);
    459. 

  459.                 }
    460. 

  460.                 Display::display_header(get_lang('TermsAndConditions'));
    461. 

  461.                 if (!empty($term_preview['content'])) {
    462. 

  462.                     echo $term_preview['content'];
    463. 

  463. 

  464.                     $termExtraFields = new ExtraFieldValue('terms_and_condition');
    465. 

  465.                     $values = $termExtraFields->getAllValuesByItem($term_preview['id']);
    466. 

  466.                     foreach ($values as $value) {
    467. 

  467.                         echo '<h3>'.$value['display_text'].'</h3><br />'.$value['value'].'<br />';
    468. 

  468.                     }
    469. 

  469.                 } else {
    470. 

  470.                     echo get_lang('ComingSoon');
    471. 

  471.                 }
    472. 

  472.                 Display::display_footer();
    473. 

  473.                 exit;
    474. 

  474.             }
    475. 

  475.         }
    476. 

  476.     }
    477. 

  477. 

  478.     if (api_get_setting('allow_terms_conditions') === 'true' && $user_already_registered_show_terms) {
    479. 

  479.         $tool_name = get_lang('TermsAndConditions');
    480. 

  480.     }
    481. 

  481. }
    482. 

  482. 

  483. $home = api_get_path(SYS_APP_PATH).'home/';
    484. 

  484. if (api_is_multiple_url_enabled()) {
    485. 

  485.     $access_url_id = api_get_current_access_url_id();
    486. 

  486.     if ($access_url_id != -1) {
    487. 

  487.         $url_info = api_get_access_url($access_url_id);
    488. 

  488.         $url = api_remove_trailing_slash(preg_replace('/https?:\/\//i', '', $url_info['url']));
    489. 

  489.         $clean_url = api_replace_dangerous_char($url);
    490. 

  490.         $clean_url = str_replace('/', '-', $clean_url);
    491. 

  491.         $clean_url .= '/';
    492. 

  492.         $home_old = api_get_path(SYS_APP_PATH).'home/';
    493. 

  493.         $home = api_get_path(SYS_APP_PATH).'home/'.$clean_url;
    494. 

  494.     }
    495. 

  495. }
    496. 

  496. 

  497. if (file_exists($home.'register_top_'.$user_selected_language.'.html')) {
    498. 

  498.     $home_top_temp = @(string) file_get_contents($home.'register_top_'.$user_selected_language.'.html');
    499. 

  499.     $open = str_replace('{rel_path}', api_get_path(REL_PATH), $home_top_temp);
    500. 

  500.     $open = api_to_system_encoding($open, api_detect_encoding(strip_tags($open)));
    501. 

  501.     if (!empty($open)) {
    502. 

  502.         $content = '<div class="well well-sm help-registration">'.$open.'</div>';
    503. 

  503.     }
    504. 

  504. }
    505. 

  505. 

  506. // Forbidden to self-register
    507. 

  507. if ($isNotAllowedHere) {
    508. 

  508.     api_not_allowed(true, get_lang('RegistrationDisabled'));
    509. 

  509. }
    510. 

  510. 

  511. if (api_get_setting('allow_registration') === 'approval') {
    512. 

  512.     $content .= Display::return_message(get_lang('YourAccountHasToBeApproved'));
    513. 

  513. }
    514. 

  514. 

  515. //if openid was not found
    516. 

  516. if (!empty($_GET['openid_msg']) && $_GET['openid_msg'] == 'idnotfound') {
    517. 

  517.     $content .= Display::return_message(get_lang('OpenIDCouldNotBeFoundPleaseRegister'));
    518. 

  518. }
    519. 

  519. 

  520. $showTerms = false;
    521. 

  521. // Terms and conditions
    522. 

  522. if (api_get_setting('allow_terms_conditions') === 'true' && $user_already_registered_show_terms) {
    523. 

  523.     if (!api_is_platform_admin()) {
    524. 

  524.         if (api_get_setting('show_terms_if_profile_completed') === 'true') {
    525. 

  525.             $userInfo = api_get_user_info();
    526. 

  526.             if ($userInfo && $userInfo['status'] != ANONYMOUS) {
    527. 

  527.                 if ((int) $userInfo['profile_completed'] !== 1) {
    528. 

  528.                     api_not_allowed(true);
    529. 

  529.                 }
    530. 

  530.             }
    531. 

  531.         }
    532. 

  532.     }
    533. 

  533. 

  534.     // Get user language ignoring the platform language
    535. 

  535.     $language = api_get_interface_language();
    536. 

  536.     $language = api_get_language_id($language);
    537. 

  537.     $term_preview = LegalManager::get_last_condition($language);
    538. 

  538. 

  539.     if (!$term_preview) {
    540. 

  540.         //we load from the platform
    541. 

  541.         $language = api_get_setting('platformLanguage');
    542. 

  542.         $language = api_get_language_id($language);
    543. 

  543.         $term_preview = LegalManager::get_last_condition($language);
    544. 

  544. 

  545.         //if is false we load from english
    546. 

  546.         if (!$term_preview) {
    547. 

  547.             $language = api_get_language_id('english'); //this must work
    548. 

  548.             $term_preview = LegalManager::get_last_condition($language);
    549. 

  549.         }
    550. 

  550.     }
    551. 

  551. 

  552.     // Version and language
    553. 

  553.     $form->addHidden('legal_accept_type', $term_preview['version'].':'.$term_preview['language_id']);
    554. 

  554.     $form->addHidden('legal_info', $term_preview['id'].':'.$term_preview['language_id']);
    555. 

  555. 

  556.     // Show if only HTML type
    557. 

  557.     if ($term_preview['type'] == '2') {
    558. 

  558.         $termExtraFields = new ExtraFieldValue('terms_and_condition');
    559. 

  559.         $values = $termExtraFields->getAllValuesByItem($term_preview['id']);
    560. 

  560.         foreach ($values as $value) {
    561. 

  561.             //if ($value['variable'] === 'category') {
    562. 

  562.             $form->addLabel($value['display_text'], $value['value']);
    563. 

  563.             //}
    564. 

  564.         }
    565. 

  565.     }
    566. 

  566. 

  567.     if ($term_preview['type'] == 1) {
    568. 

  568.         $form->addElement(
    569. 

  569.             'checkbox',
    570. 

  570.             'legal_accept',
    571. 

  571.             null,
    572. 

  572.             get_lang('IHaveReadAndAgree').'&nbsp;<a href="inscription.php?legal" target="_blank">'.get_lang(
    573. 

  573.                 'TermsAndConditions'
    574. 

  574.             ).'</a>'
    575. 

  575.         );
    576. 

  576.         $form->addRule('legal_accept', get_lang('WeNeedYouToAcceptOurTreatmentOfYourData'), 'required');
    577. 

  577.     } else {
    578. 

  578.         $preview = LegalManager::show_last_condition($term_preview);
    579. 

  579.         $form->addElement('label', null, $preview);
    580. 

  580.     }
    581. 

  581.     $showTerms = true;
    582. 

  582. }
    583. 

  583. 

  584. $allowDoubleValidation = api_get_configuration_value('allow_double_validation_in_registration');
    585. 

  585. 

  586. $formContainsSendButton = false;
    587. 

  587. if ($allowDoubleValidation && $showTerms == false) {
    588. 

  588.     $htmlHeadXtra[] = '<script>
    589. 

  589.         $(function() {
    590. 

  590.             $("#pre_validation").click(function() {
    591. 

  591.                 $(this).hide();
    592. 

  592.                 $("#final_button").show();
    593. 

  593.             });
    594. 

  594.         });
    595. 

  595.     </script>';
    596. 

  596. 

  597.     $form->addLabel(
    598. 

  598.         null,
    599. 

  599.         Display::url(
    600. 

  600.             get_lang('Ok'),
    601. 

  601.             'javascript:void',
    602. 

  602.             ['class' => 'btn btn-default', 'id' => 'pre_validation']
    603. 

  603.         )
    604. 

  604.     );
    605. 

  605.     $form->addHtml('<div id="final_button" style="display: none">');
    606. 

  606.     $form->addLabel(
    607. 

  607.         null,
    608. 

  608.         Display::return_message(get_lang('DoubleValidationMessage'), 'info', false)
    609. 

  609.     );
    610. 

  610.     $form->addButton('submit', get_lang('RegisterUser'), '', 'primary');
    611. 

  611.     $form->addHtml('</div>');
    612. 

  612.     $formContainsSendButton = true;
    613. 

  613. } else {
    614. 

  614.     // In normal cases (without double validation), we check if the
    615. 

  615.     // registration is allowed in any way or if the user is already registered
    616. 

  616.     // but needs to confirm terms. If not, send not allowed message
    617. 

  617.     if (
    618. 

  618.         api_get_setting('allow_registration') === 'approval' ||
    619. 

  619.         api_get_setting('allow_registration') === 'true' ||
    620. 

  620.         api_get_setting('allow_registration') === 'confirmation' ||
    621. 

  621.         $user_already_registered_show_terms ||
    622. 

  622.         $showTerms
    623. 

  623.     ) {
    624. 

  624.         $form->addButtonNext(get_lang('RegisterUser'));
    625. 

  625.         $formContainsSendButton = true;
    626. 

  626.     }
    627. 

  627. }
    628. 

  628. 

  629. // Blocks page because there's any action to do.
    630. 

  630. if (!$formContainsSendButton) {
    631. 

  631.     api_not_allowed(true);
    632. 

  632. }
    633. 

  633. 

  634. $course_code_redirect = Session::read('course_redirect');
    635. 

  635. $sessionToRedirect = Session::read('session_redirect');
    636. 

  636. 

  637. if ($extraConditions && $extraFieldsLoaded) {
    638. 

  638.     // Set conditions as "required" and also change the labels
    639. 

  639.     foreach ($extraConditions as $condition) {
    640. 

  640.         /** @var HTML_QuickForm_group $element */
    641. 

  641.         $element = $form->getElement('extra_'.$condition['variable']);
    642. 

  642.         if ($element) {
    643. 

  643.             $children = $element->getElements();
    644. 

  644.             /** @var HTML_QuickForm_checkbox $child */
    645. 

  645.             foreach ($children as $child) {
    646. 

  646.                 $child->setText(get_lang($condition['display_text']));
    647. 

  647.             }
    648. 

  648.             $form->setRequired($element);
    649. 

  649.             if (!empty($condition['text_area'])) {
    650. 

  650.                 $element->setLabel(
    651. 

  651.                     [
    652. 

  652.                         '',
    653. 

  653.                         //'<textarea rows="5" disabled cols="100%">'.get_lang($condition['text_area']).'</textarea>',
    654. 

  654.                         '<div class="form-control" disabled=disabled style="height: 100px; overflow: auto;">'.get_lang($condition['text_area']).'</div>',
    655. 

  655.                     ]
    656. 

  656.                 );
    657. 

  657.             }
    658. 

  658.         }
    659. 

  659.     }
    660. 

  660. }
    661. 

  661. 

  662. if ($form->validate()) {
    663. 

  663.     $values = $form->getSubmitValues(1);
    664. 

  664.     // Make *sure* the login isn't too long
    665. 

  665.     if (isset($values['username'])) {
    666. 

  666.         $values['username'] = api_substr($values['username'], 0, USERNAME_MAX_LENGTH);
    667. 

  667.     }
    668. 

  668. 

  669.     if (api_get_setting('allow_registration_as_teacher') === 'false') {
    670. 

  670.         $values['status'] = STUDENT;
    671. 

  671.     }
    672. 

  672. 

  673.     if (empty($values['official_code']) && !empty($values['username'])) {
    674. 

  674.         $values['official_code'] = api_strtoupper($values['username']);
    675. 

  675.     }
    676. 

  676. 

  677.     if (api_get_setting('login_is_email') === 'true') {
    678. 

  678.         $values['username'] = $values['email'];
    679. 

  679.     }
    680. 

  680. 

  681.     if ($user_already_registered_show_terms &&
    682. 

  682.         api_get_setting('allow_terms_conditions') === 'true'
    683. 

  683.     ) {
    684. 

  684.         $user_id = $_SESSION['term_and_condition']['user_id'];
    685. 

  685.         $is_admin = UserManager::is_admin($user_id);
    686. 

  686.         Session::write('is_platformAdmin', $is_admin);
    687. 

  687.     } else {
    688. 

  688.         // Moved here to include extra fields when creating a user. Formerly placed after user creation
    689. 

  689.         // Register extra fields
    690. 

  690.         $extras = [];
    691. 

  691.         foreach ($values as $key => $value) {
    692. 

  692.             if (substr($key, 0, 6) == 'extra_') {
    693. 

  693.                 //an extra field
    694. 

  694.                 $extras[substr($key, 6)] = $value;
    695. 

  695.             } elseif (strpos($key, 'remove_extra_') !== false) {
    696. 

  696.                 $extra_value = Security::filter_filename(urldecode(key($value)));
    697. 

  697.                 // To remove from user_field_value and folder
    698. 

  698.                 UserManager::update_extra_field_value(
    699. 

  699.                     $user_id,
    700. 

  700.                     substr($key, 13),
    701. 

  701.                     $extra_value
    702. 

  702.                 );
    703. 

  703.             }
    704. 

  704.         }
    705. 

  705. 

  706.         $status = isset($values['status']) ? $values['status'] : STUDENT;
    707. 

  707.         $phone = isset($values['phone']) ? $values['phone'] : null;
    708. 

  708.         $values['language'] = isset($values['language']) ? $values['language'] : api_get_interface_language();
    709. 

  709.         $values['address'] = isset($values['address']) ? $values['address'] : '';
    710. 

  710. 

  711.         // Creates a new user
    712. 

  712.         $user_id = UserManager::create_user(
    713. 

  713.             $values['firstname'],
    714. 

  714.             $values['lastname'],
    715. 

  715.             $status,
    716. 

  716.             $values['email'],
    717. 

  717.             $values['username'],
    718. 

  718.             $values['pass1'],
    719. 

  719.             $values['official_code'],
    720. 

  720.             $values['language'],
    721. 

  721.             $phone,
    722. 

  722.             null,
    723. 

  723.             PLATFORM_AUTH_SOURCE,
    724. 

  724.             null,
    725. 

  725.             1,
    726. 

  726.             0,
    727. 

  727.             $extras,
    728. 

  728.             null,
    729. 

  729.             true,
    730. 

  730.             false,
    731. 

  731.             $values['address'],
    732. 

  732.             false,
    733. 

  733.             $form
    734. 

  734.         );
    735. 

  735. 

  736.         // Update the extra fields
    737. 

  737.         $count_extra_field = count($extras);
    738. 

  738.         if ($count_extra_field > 0 && is_int($user_id)) {
    739. 

  739.             foreach ($extras as $key => $value) {
    740. 

  740.                 // For array $value -> if exists key 'tmp_name' then must not be empty
    741. 

  741.                 // This avoid delete from user field value table when doesn't upload a file
    742. 

  742.                 if (is_array($value)) {
    743. 

  743.                     if (array_key_exists('tmp_name', $value) && empty($value['tmp_name'])) {
    744. 

  744.                         //Nothing to do
    745. 

  745.                     } else {
    746. 

  746.                         if (array_key_exists('tmp_name', $value)) {
    747. 

  747.                             $value['tmp_name'] = Security::filter_filename($value['tmp_name']);
    748. 

  748.                         }
    749. 

  749.                         if (array_key_exists('name', $value)) {
    750. 

  750.                             $value['name'] = Security::filter_filename($value['name']);
    751. 

  751.                         }
    752. 

  752.                         UserManager::update_extra_field_value($user_id, $key, $value);
    753. 

  753.                     }
    754. 

  754.                 } else {
    755. 

  755.                     UserManager::update_extra_field_value($user_id, $key, $value);
    756. 

  756.                 }
    757. 

  757.             }
    758. 

  758.         }
    759. 

  759. 

  760.         if ($user_id) {
    761. 

  761.             // Storing the extended profile
    762. 

  762.             $store_extended = false;
    763. 

  763.             $sql = "UPDATE ".Database::get_main_table(TABLE_MAIN_USER)." SET ";
    764. 

  764. 

  765.             if (api_get_setting('extended_profile') == 'true' &&
    766. 

  766.                 api_get_setting('extendedprofile_registration', 'mycomptetences') == 'true'
    767. 

  767.             ) {
    768. 

  768.                 $sql_set[] = "competences = '".Database::escape_string($values['competences'])."'";
    769. 

  769.                 $store_extended = true;
    770. 

  770.             }
    771. 

  771. 

  772.             if (api_get_setting('extended_profile') == 'true' &&
    773. 

  773.                 api_get_setting('extendedprofile_registration', 'mydiplomas') == 'true'
    774. 

  774.             ) {
    775. 

  775.                 $sql_set[] = "diplomas = '".Database::escape_string($values['diplomas'])."'";
    776. 

  776.                 $store_extended = true;
    777. 

  777.             }
    778. 

  778. 

  779.             if (api_get_setting('extended_profile') == 'true' &&
    780. 

  780.                 api_get_setting('extendedprofile_registration', 'myteach') == 'true'
    781. 

  781.             ) {
    782. 

  782.                 $sql_set[] = "teach = '".Database::escape_string($values['teach'])."'";
    783. 

  783.                 $store_extended = true;
    784. 

  784.             }
    785. 

  785. 

  786.             if (api_get_setting('extended_profile') == 'true' &&
    787. 

  787.                 api_get_setting('extendedprofile_registration', 'mypersonalopenarea') == 'true'
    788. 

  788.             ) {
    789. 

  789.                 $sql_set[] = "openarea = '".Database::escape_string($values['openarea'])."'";
    790. 

  790.                 $store_extended = true;
    791. 

  791.             }
    792. 

  792. 

  793.             if ($store_extended) {
    794. 

  794.                 $sql .= implode(',', $sql_set);
    795. 

  795.                 $sql .= " WHERE user_id = ".intval($user_id)."";
    796. 

  796.                 Database::query($sql);
    797. 

  797.             }
    798. 

  798. 

  799.             // Saving user to Session if it was set
    800. 

  800.             if (!empty($sessionToRedirect) && !$sessionPremiumChecker) {
    801. 

  801.                 $sessionInfo = api_get_session_info($sessionToRedirect);
    802. 

  802.                 if (!empty($sessionInfo)) {
    803. 

  803.                     SessionManager::subscribeUsersToSession(
    804. 

  804.                         $sessionToRedirect,
    805. 

  805.                         [$user_id],
    806. 

  806.                         SESSION_VISIBLE_READ_ONLY,
    807. 

  807.                         false
    808. 

  808.                     );
    809. 

  809.                 }
    810. 

  810.             }
    811. 

  811. 

  812.             // Saving user to course if it was set.
    813. 

  813.             if (!empty($course_code_redirect)) {
    814. 

  814.                 $course_info = api_get_course_info($course_code_redirect);
    815. 

  815.                 if (!empty($course_info)) {
    816. 

  816.                     if (in_array(
    817. 

  817.                         $course_info['visibility'],
    818. 

  818.                         [
    819. 

  819.                             COURSE_VISIBILITY_OPEN_PLATFORM,
    820. 

  820.                             COURSE_VISIBILITY_OPEN_WORLD,
    821. 

  821.                         ]
    822. 

  822.                     )
    823. 

  823.                     ) {
    824. 

  824.                         CourseManager::subscribeUser(
    825. 

  825.                             $user_id,
    826. 

  826.                             $course_info['code']
    827. 

  827.                         );
    828. 

  828.                     }
    829. 

  829.                 }
    830. 

  830.             }
    831. 

  831. 

  832.             /* If the account has to be approved then we set the account to inactive,
    833. 

  833.             sent a mail to the platform admin and exit the page.*/
    834. 

  834.             if (api_get_setting('allow_registration') === 'approval') {
    835. 

  835.                 // 1. Send mail to all platform admin
    836. 

  836.                 $emailsubject = get_lang('ApprovalForNewAccount').': '.$values['username'];
    837. 

  837.                 $emailbody = get_lang('ApprovalForNewAccount')."\n";
    838. 

  838.                 $emailbody .= get_lang('UserName').': '.$values['username']."\n";
    839. 

  839. 

  840.                 if (api_is_western_name_order()) {
    841. 

  841.                     $emailbody .= get_lang('FirstName').': '.$values['firstname']."\n";
    842. 

  842.                     $emailbody .= get_lang('LastName').': '.$values['lastname']."\n";
    843. 

  843.                 } else {
    844. 

  844.                     $emailbody .= get_lang('LastName').': '.$values['lastname']."\n";
    845. 

  845.                     $emailbody .= get_lang('FirstName').': '.$values['firstname']."\n";
    846. 

  846.                 }
    847. 

  847.                 $emailbody .= get_lang('Email').': '.$values['email']."\n";
    848. 

  848.                 $emailbody .= get_lang('Status').': '.$values['status']."\n\n";
    849. 

  849. 

  850.                 $url_edit = Display::url(
    851. 

  851.                     api_get_path(WEB_CODE_PATH).'admin/user_edit.php?user_id='.$user_id,
    852. 

  852.                     api_get_path(WEB_CODE_PATH).'admin/user_edit.php?user_id='.$user_id
    853. 

  853.                 );
    854. 

  854. 

  855.                 $emailbody .= get_lang('ManageUser').": $url_edit";
    856. 

  856. 

  857.                 $admins = UserManager::get_all_administrators();
    858. 

  858.                 foreach ($admins as $admin_info) {
    859. 

  859.                     MessageManager::send_message(
    860. 

  860.                         $admin_info['user_id'],
    861. 

  861.                         $emailsubject,
    862. 

  862.                         $emailbody,
    863. 

  863.                         [],
    864. 

  864.                         [],
    865. 

  865.                         null,
    866. 

  866.                         null,
    867. 

  867.                         null,
    868. 

  868.                         null,
    869. 

  869.                         $user_id
    870. 

  870.                     );
    871. 

  871.                 }
    872. 

  872. 

  873.                 // 2. set account inactive
    874. 

  874.                 UserManager::disable($user_id);
    875. 

  875. 

  876.                 // 3. exit the page
    877. 

  877.                 unset($user_id);
    878. 

  878. 

  879.                 Display::display_header($tool_name);
    880. 

  880.                 echo Display::page_header($tool_name);
    881. 

  881.                 echo $content;
    882. 

  882.                 Display::display_footer();
    883. 

  883.                 exit;
    884. 

  884.             } elseif (api_get_setting('allow_registration') === 'confirmation') {
    885. 

  885.                 // 1. Send mail to the user
    886. 

  886.                 $thisUser = api_get_user_entity($user_id);
    887. 

  887.                 UserManager::sendUserConfirmationMail($thisUser);
    888. 

  888. 

  889.                 // 2. set account inactive
    890. 

  890.                 UserManager::disable($user_id);
    891. 

  891. 

  892.                 // 3. exit the page
    893. 

  893.                 unset($user_id);
    894. 

  894. 

  895.                 Display::addFlash(
    896. 

  896.                     Display::return_message(
    897. 

  897.                         get_lang('YouNeedConfirmYourAccountViaEmailToAccessThePlatform'),
    898. 

  898.                         'warning'
    899. 

  899.                     )
    900. 

  900.                 );
    901. 

  901. 

  902.                 Display::display_header($tool_name);
    903. 

  903.                 //echo $content;
    904. 

  904.                 Display::display_footer();
    905. 

  905.                 exit;
    906. 

  906.             }
    907. 

  907.         }
    908. 

  908.     }
    909. 

  909. 

  910.     // Terms & Conditions
    911. 

  911.     if (api_get_setting('allow_terms_conditions') === 'true') {
    912. 

  912.         // Update the terms & conditions.
    913. 

  913.         if (isset($values['legal_accept_type'])) {
    914. 

  914.             $cond_array = explode(':', $values['legal_accept_type']);
    915. 

  915.             if (!empty($cond_array[0]) && !empty($cond_array[1])) {
    916. 

  916.                 $time = time();
    917. 

  917.                 $conditionToSave = (int) $cond_array[0].':'.(int) $cond_array[1].':'.$time;
    918. 

  918.                 UserManager::update_extra_field_value(
    919. 

  919.                     $user_id,
    920. 

  920.                     'legal_accept',
    921. 

  921.                     $conditionToSave
    922. 

  922.                 );
    923. 

  923. 

  924.                 Event::addEvent(
    925. 

  925.                     LOG_TERM_CONDITION_ACCEPTED,
    926. 

  926.                     LOG_USER_OBJECT,
    927. 

  927.                     api_get_user_info($user_id),
    928. 

  928.                     api_get_utc_datetime()
    929. 

  929.                 );
    930. 

  930. 

  931.                 $bossList = UserManager::getStudentBossList($user_id);
    932. 

  932.                 if (!empty($bossList)) {
    933. 

  933.                     $bossList = array_column($bossList, 'boss_id');
    934. 

  934.                     $currentUserInfo = api_get_user_info($user_id);
    935. 

  935.                     foreach ($bossList as $bossId) {
    936. 

  936.                         $subjectEmail = sprintf(
    937. 

  937.                             get_lang('UserXSignedTheAgreement'),
    938. 

  938.                             $currentUserInfo['complete_name']
    939. 

  939.                         );
    940. 

  940.                         $contentEmail = sprintf(
    941. 

  941.                             get_lang('UserXSignedTheAgreementTheY'),
    942. 

  942.                             $currentUserInfo['complete_name'],
    943. 

  943.                             api_get_local_time($time)
    944. 

  944.                         );
    945. 

  945. 

  946.                         MessageManager::send_message_simple(
    947. 

  947.                             $bossId,
    948. 

  948.                             $subjectEmail,
    949. 

  949.                             $contentEmail,
    950. 

  950.                             $user_id
    951. 

  951.                         );
    952. 

  952.                     }
    953. 

  953.                 }
    954. 

  954.             }
    955. 

  955.         }
    956. 

  956.         $values = api_get_user_info($user_id);
    957. 

  957.     }
    958. 

  958. 

  959.     /* SESSION REGISTERING */
    960. 

  960.     /* @todo move this in a function */
    961. 

  961.     $_user['firstName'] = stripslashes($values['firstname']);
    962. 

  962.     $_user['lastName'] = stripslashes($values['lastname']);
    963. 

  963.     $_user['mail'] = $values['email'];
    964. 

  964.     $_user['language'] = $values['language'];
    965. 

  965.     $_user['user_id'] = $user_id;
    966. 

  966.     Session::write('_user', $_user);
    967. 

  967. 

  968.     $is_allowedCreateCourse = isset($values['status']) && $values['status'] == 1;
    969. 

  969.     $usersCanCreateCourse = api_is_allowed_to_create_course();
    970. 

  970. 

  971.     Session::write('is_allowedCreateCourse', $is_allowedCreateCourse);
    972. 

  972. 

  973.     // Stats
    974. 

  974.     Event::eventLogin($user_id);
    975. 

  975. 

  976.     // last user login date is now
    977. 

  977.     $user_last_login_datetime = 0; // used as a unix timestamp it will correspond to : 1 1 1970
    978. 

  978.     Session::write('user_last_login_datetime', $user_last_login_datetime);
    979. 

  979.     $recipient_name = api_get_person_name($values['firstname'], $values['lastname']);
    980. 

  980.     $text_after_registration =
    981. 

  981.         '<p>'.
    982. 

  982.         get_lang('Dear').' '.
    983. 

  983.         stripslashes(Security::remove_XSS($recipient_name)).',<br /><br />'.
    984. 

  984.         get_lang('PersonalSettings').".</p>";
    985. 

  985. 

  986.     $form_data = [
    987. 

  987.         'button' => Display::button(
    988. 

  988.             'next',
    989. 

  989.             get_lang('Next'),
    990. 

  990.             ['class' => 'btn btn-primary btn-large']
    991. 

  991.         ),
    992. 

  992.         'message' => '',
    993. 

  993.         'action' => api_get_path(WEB_PATH).'user_portal.php',
    994. 

  994.         'go_button' => '',
    995. 

  995.     ];
    996. 

  996. 

  997.     if (api_get_setting('allow_terms_conditions') === 'true' && $user_already_registered_show_terms) {
    998. 

  998.         if (api_get_setting('load_term_conditions_section') === 'login') {
    999. 

  999.             $form_data['action'] = api_get_path(WEB_PATH).'user_portal.php';
    1000. 

  1000.         } else {
    1001. 

  1001.             $courseInfo = api_get_course_info();
    1002. 

  1002.             if (!empty($courseInfo)) {
    1003. 

  1003.                 $form_data['action'] = $courseInfo['course_public_url'].'?id_session='.api_get_session_id();
    1004. 

  1004.                 $cidReset = true;
    1005. 

  1005.                 Session::erase('_course');
    1006. 

  1006.                 Session::erase('_cid');
    1007. 

  1007.             } else {
    1008. 

  1008.                 $form_data['action'] = api_get_path(WEB_PATH).'user_portal.php';
    1009. 

  1009.             }
    1010. 

  1010.         }
    1011. 

  1011.     } else {
    1012. 

  1012.         if (!empty($values['email'])) {
    1013. 

  1013.             $text_after_registration .= '<p>'.get_lang('MailHasBeenSent').'.</p>';
    1014. 

  1014.         }
    1015. 

  1015. 

  1016.         if ($is_allowedCreateCourse) {
    1017. 

  1017.             if ($usersCanCreateCourse) {
    1018. 

  1018.                 $form_data['message'] = '<p>'.get_lang('NowGoCreateYourCourse').'</p>';
    1019. 

  1019.             }
    1020. 

  1020.             $form_data['action'] = api_get_path(WEB_CODE_PATH).'create_course/add_course.php';
    1021. 

  1021. 

  1022.             if (api_get_setting('course_validation') === 'true') {
    1023. 

  1023.                 $form_data['button'] = Display::button(
    1024. 

  1024.                     'next',
    1025. 

  1025.                     get_lang('CreateCourseRequest'),
    1026. 

  1026.                     ['class' => 'btn btn-primary btn-large']
    1027. 

  1027.                 );
    1028. 

  1028.             } else {
    1029. 

  1029.                 $form_data['button'] = Display::button(
    1030. 

  1030.                     'next',
    1031. 

  1031.                     get_lang('CourseCreate'),
    1032. 

  1032.                     ['class' => 'btn btn-primary btn-large']
    1033. 

  1033.                 );
    1034. 

  1034.                 $form_data['go_button'] = '&nbsp;&nbsp;<a href="'.api_get_path(WEB_PATH).'index.php'.'">'.
    1035. 

  1035.                     Display::span(
    1036. 

  1036.                         get_lang('Next'),
    1037. 

  1037.                         ['class' => 'btn btn-primary btn-large']
    1038. 

  1038.                     ).'</a>';
    1039. 

  1039.             }
    1040. 

  1040.         } else {
    1041. 

  1041.             if (api_get_setting('allow_students_to_browse_courses') == 'true') {
    1042. 

  1042.                 $form_data['action'] = 'courses.php?action=subscribe';
    1043. 

  1043.                 $form_data['message'] = '<p>'.get_lang('NowGoChooseYourCourses').".</p>";
    1044. 

  1044.             } else {
    1045. 

  1045.                 $form_data['action'] = api_get_path(WEB_PATH).'user_portal.php';
    1046. 

  1046.             }
    1047. 

  1047.             $form_data['button'] = Display::button(
    1048. 

  1048.                 'next',
    1049. 

  1049.                 get_lang('Next'),
    1050. 

  1050.                 ['class' => 'btn btn-primary btn-large']
    1051. 

  1051.             );
    1052. 

  1052.         }
    1053. 

  1053.     }
    1054. 

  1054. 

  1055.     if ($sessionPremiumChecker && $sessionId) {
    1056. 

  1056.         Session::erase('SessionIsPremium');
    1057. 

  1057.         Session::erase('sessionId');
    1058. 

  1058.         header('Location:'.api_get_path(WEB_PLUGIN_PATH).'buycourses/src/process.php?i='.$sessionId.'&t=2');
    1059. 

  1059.         exit;
    1060. 

  1060.     }
    1061. 

  1061. 

  1062.     SessionManager::redirectToSession();
    1063. 

  1063. 

  1064.     $redirectBuyCourse = Session::read('buy_course_redirect');
    1065. 

  1065.     if (!empty($redirectBuyCourse)) {
    1066. 

  1066.         $form_data['action'] = api_get_path(WEB_PATH).$redirectBuyCourse;
    1067. 

  1067.         Session::erase('buy_course_redirect');
    1068. 

  1068.     }
    1069. 

  1069. 

  1070.     $form_data = CourseManager::redirectToCourse($form_data);
    1071. 

  1071.     $form_register = new FormValidator('form_register', 'post', $form_data['action']);
    1072. 

  1072.     if (!empty($form_data['message'])) {
    1073. 

  1073.         $form_register->addElement('html', $form_data['message'].'<br /><br />');
    1074. 

  1074.     }
    1075. 

  1075. 

  1076.     if ($usersCanCreateCourse) {
    1077. 

  1077.         $form_register->addElement('html', $form_data['button']);
    1078. 

  1078.     } else {
    1079. 

  1079.         if (!empty($redirectBuyCourse)) {
    1080. 

  1080.             $form_register->addButtonNext(get_lang('Next'));
    1081. 

  1081.         } else {
    1082. 

  1082.             $form_register->addElement('html', $form_data['go_button']);
    1083. 

  1083.         }
    1084. 

  1084.     }
    1085. 

  1085. 

  1086.     $text_after_registration .= $form_register->returnForm();
    1087. 

  1087. 

  1088.     // Just in case
    1089. 

  1089.     Session::erase('course_redirect');
    1090. 

  1090.     Session::erase('exercise_redirect');
    1091. 

  1091.     Session::erase('session_redirect');
    1092. 

  1092.     Session::erase('only_one_course_session_redirect');
    1093. 

  1093. 

  1094.     if (CustomPages::enabled() && CustomPages::exists(CustomPages::REGISTRATION_FEEDBACK)) {
    1095. 

  1095.         CustomPages::display(
    1096. 

  1096.             CustomPages::REGISTRATION_FEEDBACK,
    1097. 

  1097.             ['info' => $text_after_registration]
    1098. 

  1098.         );
    1099. 

  1099.     } else {
    1100. 

  1100.         $tpl = new Template($tool_name);
    1101. 

  1101.         $tpl->assign('inscription_content', $content);
    1102. 

  1102.         $tpl->assign('text_after_registration', $text_after_registration);
    1103. 

  1103.         $tpl->assign('hide_header', $hideHeaders);
    1104. 

  1104.         $inscription = $tpl->get_template('auth/inscription.tpl');
    1105. 

  1105.         $tpl->display($inscription);
    1106. 

  1106.     }
    1107. 

  1107. } else {
    1108. 

  1108.     // Custom pages
    1109. 

  1109.     if (CustomPages::enabled() && CustomPages::exists(CustomPages::REGISTRATION)) {
    1110. 

  1110.         CustomPages::display(
    1111. 

  1111.             CustomPages::REGISTRATION,
    1112. 

  1112.             ['form' => $form, 'content' => $content]
    1113. 

  1113.         );
    1114. 

  1114.     } else {
    1115. 

  1115.         if (!api_is_anonymous()) {
    1116. 

  1116.             // Saving user to course if it was set.
    1117. 

  1117.             if (!empty($course_code_redirect)) {
    1118. 

  1118.                 $course_info = api_get_course_info($course_code_redirect);
    1119. 

  1119.                 if (!empty($course_info)) {
    1120. 

  1120.                     if (in_array(
    1121. 

  1121.                         $course_info['visibility'],
    1122. 

  1122.                         [
    1123. 

  1123.                             COURSE_VISIBILITY_OPEN_PLATFORM,
    1124. 

  1124.                             COURSE_VISIBILITY_OPEN_WORLD,
    1125. 

  1125.                         ]
    1126. 

  1126.                     )
    1127. 

  1127.                     ) {
    1128. 

  1128.                         CourseManager::subscribeUser(
    1129. 

  1129.                             $user_id,
    1130. 

  1130.                             $course_info['code']
    1131. 

  1131.                         );
    1132. 

  1132.                     }
    1133. 

  1133.                 }
    1134. 

  1134.             }
    1135. 

  1135.             CourseManager::redirectToCourse([]);
    1136. 

  1136.         }
    1137. 

  1137. 

  1138.         $tpl = new Template($tool_name);
    1139. 

  1139. 

  1140.         $tpl->assign('inscription_header', Display::page_header($tool_name));
    1141. 

  1141.         $tpl->assign('inscription_content', $content);
    1142. 

  1142.         $tpl->assign('form', $form->returnForm());
    1143. 

  1143.         $tpl->assign('hide_header', $hideHeaders);
    1144. 

  1144. 

  1145.         $inscription = $tpl->get_template('auth/inscription.tpl');
    1146. 

  1146.         $tpl->display($inscription);
    1147. 

  1147.     }
    1148. 

  1148. }
    1149.