View GitHub Repository 4grounds

Schedule Inspection
Subscribe
Passed
Pull Request — master (#20)
by
unknown
02:03
created
Status
Category
Toggle Patches
register.php 1 patch
Spacing   +10 added lines, -10 removed lines patch added patch discarded remove patch 
@@ -18,32 +18,32 @@  discard block
 
 block discarded – undo
18 18 
          ?>
19 19 
         <center><h1 style="display: inline-block;">4Grounds - Register</h1><br>
20 20 
             <?php
21 
-                if($_SERVER['REQUEST_METHOD'] == 'POST' && $_POST['password'] && $_POST['username'])
21 
+                if ($_SERVER['REQUEST_METHOD'] == 'POST' && $_POST['password'] && $_POST['username'])
22 22 
                 {
23 23 
                     $email = htmlspecialchars(@$_POST['email']);
24 24 
                     $username = htmlspecialchars(@$_POST['username']);
25 25 
                     $password = @$_POST['password'];
26 26 
                     $passwordhash = password_hash(@$password, PASSWORD_DEFAULT);
27 27
28 
-                    if($_POST['password'] !== $_POST['confirm']){ $error = "password and confirmation password do not match"; goto skip; }
28 
+                    if ($_POST['password'] !== $_POST['confirm']) { $error = "password and confirmation password do not match"; goto skip; }
29 29
30 
-                    if(strlen($username) > 21) { $error = "your username must be shorter than 21 characters"; goto skip; }
31 
-                    if(strlen($password) < 8) { $error = "your password must be at least 8 characters long"; goto skip; }
32 
-                    if(!preg_match('/[A-Za-z].*[0-9]|[0-9].*[A-Za-z]/', $password)) { $error = "please include both letters and numbers in your password"; goto skip; }
33 
-                    if(!isset($_POST['g-recaptcha-response'])){ $error = "captcha validation failed"; goto skip; }
34 
-                    if($config['use_recaptcha'] && !validateCaptcha($config['recaptcha_secret'], $_POST['g-recaptcha-response'])) { $error = "captcha validation failed"; goto skip; }
30 
+                    if (strlen($username) > 21) { $error = "your username must be shorter than 21 characters"; goto skip; }
31 
+                    if (strlen($password) < 8) { $error = "your password must be at least 8 characters long"; goto skip; }
32 
+                    if (!preg_match('/[A-Za-z].*[0-9]|[0-9].*[A-Za-z]/', $password)) { $error = "please include both letters and numbers in your password"; goto skip; }
33 
+                    if (!isset($_POST['g-recaptcha-response'])) { $error = "captcha validation failed"; goto skip; }
34 
+                    if ($config['use_recaptcha'] && !validateCaptcha($config['recaptcha_secret'], $_POST['g-recaptcha-response'])) { $error = "captcha validation failed"; goto skip; }
35 35
36 36 
                     $stmt = $conn->prepare("SELECT username FROM users WHERE username = ?");
37 37 
                     $stmt->bind_param("s", $username);
38 38 
                     $stmt->execute();
39 39 
                     $result = $stmt->get_result();
40 
-                    if($result->num_rows) { $error = "there's already a user with that same name!"; goto skip; }
40 
+                    if ($result->num_rows) { $error = "there's already a user with that same name!"; goto skip; }
41 41
42 42 
                     $stmt = $conn->prepare("SELECT email FROM users WHERE email = ?");
43 43 
                     $stmt->bind_param("s", $email);
44 44 
                     $stmt->execute();
45 45 
                     $result = $stmt->get_result();
46 
-                    if($result->num_rows) { $error = "there's already a user with that same email!"; goto skip; }
46 
+                    if ($result->num_rows) { $error = "there's already a user with that same email!"; goto skip; }
47 47
48 48 
                     //TODO: add cloudflare ip thing
49 49 
                     $stmt = $conn->prepare("INSERT INTO `users` (`username`, `email`, `password`) VALUES (?, ?, ?)");
 
@@ -63,7 +63,7 @@  discard block
 
 block discarded – undo
63 63 
                 }
64 64 
                 skip:
65 65
66 
-            if(isset($error)) { echo "<small style='color:red'>".$error."</small>"; } ?>
66 
+            if (isset($error)) { echo "<small style='color:red'>" . $error . "</small>"; } ?>
67 67 
             <form method="post">
68 68 
                 <input required placeholder="Username" type="text" name="username"><br>
69 69 
                 <input required placeholder="E-Mail" type="email" name="email"><br><br>
Please login to merge, or discard this patch.
func/upload.php 1 patch
Spacing   +2 added lines, -2 removed lines patch added patch discarded remove patch 
@@ -1,6 +1,6 @@  discard block
 
 block discarded – undo
1 1 
 <?php
2 2 
 return function($type, $allowedFileTypes, $conn) {
3 
-    if(isset($_SESSION['user'])) {
3 
+    if (isset($_SESSION['user'])) {
4 4 
         $fileType = strtolower(pathinfo($_FILES["fileToUpload"]["name"], PATHINFO_EXTENSION));
5 5 
         $target_dir = __DIR__ . "/../dynamic/" . $type . "/";
6 6 
         $target_name = md5_file($_FILES["fileToUpload"]["tmp_name"]) . "." . $fileType;
 
@@ -15,7 +15,7 @@  discard block
 
 block discarded – undo
15 15 
             $movedFile = move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file);
16 16 
         }
17 17
18 
-        if(!in_array($fileType, $allowedFileTypes)) {
18 
+        if (!in_array($fileType, $allowedFileTypes)) {
19 19 
             echo 'unsupported file type. must be one of ' . join(", ", $allowedFileTypes) . '<hr>';
20 20 
             $uploadOk = 0;
21 21 
         }
Please login to merge, or discard this patch.
upload/game.php 1 patch
Spacing   +1 added lines, -1 removed lines patch added patch discarded remove patch 
@@ -12,7 +12,7 @@
 
 block discarded – undo
12 12 
     <body>
13 13 
         <?php require(__DIR__ . "/../important/header.php");
14 14
15 
-        if(@$_POST['submit']) {
15 
+        if (@$_POST['submit']) {
16 16 
             $register = require(__DIR__ . "/../func/upload.php");
17 17 
             $register("game", ["swf"], $conn);
18 18 
         }
Please login to merge, or discard this patch.
upload/midi.php 1 patch
Spacing   +1 added lines, -1 removed lines patch added patch discarded remove patch 
@@ -12,7 +12,7 @@
 
 block discarded – undo
12 12 
     <body>
13 13 
         <?php require(__DIR__ . "/../important/header.php");
14 14
15 
-        if(@$_POST['submit']) {
15 
+        if (@$_POST['submit']) {
16 16 
             $register = require(__DIR__ . "/../func/upload.php");
17 17 
             $register("midi", ["mid"], $conn);
18 18 
         }
Please login to merge, or discard this patch.
upload/video.php 1 patch
Spacing   +1 added lines, -1 removed lines patch added patch discarded remove patch 
@@ -12,7 +12,7 @@
 
 block discarded – undo
12 12 
     <body>
13 13 
         <?php require(__DIR__ . "/../important/header.php");
14 14
15 
-        if(@$_POST['submit']) {
15 
+        if (@$_POST['submit']) {
16 16 
             $register = require(__DIR__ . "/../func/upload.php");
17 17 
             $register("video", ["mp4"], $conn);
18 18 
         }
Please login to merge, or discard this patch.
upload/chiptune.php 1 patch
Spacing   +1 added lines, -1 removed lines patch added patch discarded remove patch 
@@ -12,7 +12,7 @@
 
 block discarded – undo
12 12 
     <body>
13 13 
         <?php require(__DIR__ . "/../important/header.php");
14 14
15 
-        if(@$_POST['submit']) {
15 
+        if (@$_POST['submit']) {
16 16 
             $register = require(__DIR__ . "/../func/upload.php");
17 17 
             $register("chiptune", ["xm", "mod", "s3m", "it"], $conn);
18 18 
         }
Please login to merge, or discard this patch.
upload/song.php 1 patch
Spacing   +1 added lines, -1 removed lines patch added patch discarded remove patch 
@@ -12,7 +12,7 @@
 
 block discarded – undo
12 12 
     <body>
13 13 
         <?php require(__DIR__ . "/../important/header.php");
14 14
15 
-        if(@$_POST['submit']) {
15 
+        if (@$_POST['submit']) {
16 16 
             $register = require(__DIR__ . "/../func/upload.php");
17 17 
             $register("song", ["ogg", "mp3"], $conn);
18 18 
         }
Please login to merge, or discard this patch.
upload/image.php 1 patch
Spacing   +1 added lines, -1 removed lines patch added patch discarded remove patch 
@@ -12,7 +12,7 @@
 
 block discarded – undo
12 12 
     <body>
13 13 
         <?php require(__DIR__ . "/../important/header.php");
14 14
15 
-        if(@$_POST['submit']) {
15 
+        if (@$_POST['submit']) {
16 16 
             $register = require(__DIR__ . "/../func/upload.php");
17 17 
             $register("image", ["gif", "png", "jpg", "jpeg"], $conn);
18 18 
         }
Please login to merge, or discard this patch.
2fa/index.php 1 patch
Spacing   +2 added lines, -2 removed lines patch added patch discarded remove patch 
@@ -21,8 +21,8 @@
 
 block discarded – undo
21 21 
         <?php require(__DIR__ . "/../important/header.php"); ?>
22 22 
         <div class="container">
23 23 
              <h1>2-Factor Authentication</h1>
24 
-             2FA status: <?php if ($otpstatus) {echo "enabled";} else {echo "disabled";}?><br>
25 
-             <?php if ($otpstatus) {echo "Backup code: " . $result->fetch_assoc()['otpbackupcode'];} ?><br><br>
24 
+             2FA status: <?php if ($otpstatus) {echo "enabled"; } else {echo "disabled"; }?><br>
25 
+             <?php if ($otpstatus) {echo "Backup code: " . $result->fetch_assoc()['otpbackupcode']; } ?><br><br>
26 26 
              <button>
27 27 
              <?php if ($otpstatus) { ?>
28 28 
              <a href="/2fa/disable">Disable 2FA</a>
Please login to merge, or discard this patch.