1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
|
<?php
$register_email ='mmoll@rice.edu';
session_start();
$errors = '';
$email = '';
$affiliation = '';
$research = '';
$education = '';
$industry = '';
$message = '';
if(isset($_POST['submit']))
{
$email = $_POST['email'];
$affiliation = $_POST['affiliation'];
$research = $_POST['research'];
$education = $_POST['education'];
$industry = $_POST['industry'];
$message = $_POST['message'];
///------------Do Validations-------------
if(empty($affiliation))
{
$errors .= "\n \"School/employer\" is a required field. ";
}
if(IsInjected($email))
{
$errors .= "\n Bad email value!";
}
if(empty($errors))
{
//send the email
$to = $register_email;
$subject="=== OMPL registration ===";
$from = $register_email;
$ip = isset($_SERVER['REMOTE_ADDR']) ? $_SERVER['REMOTE_ADDR'] : '';
$body = "A user submitted the contact form:\n".
"Email: $email\n".
"Affiliation: $affiliation\n".
"Research: $research\nEducation: $education\nIndustry: $industry\n".
"Message: $message\n".
"IP: $ip\n";
$headers = "From: $from \r\n";
$headers .= "Reply-To: $visitor_email \r\n";
mail($to, $subject, $body,$headers);
header('Location: thank-you.html');
}
}
// Function to validate against any email injection attempts
function IsInjected($str)
{
$injections = array('(\n+)',
'(\r+)',
'(\t+)',
'(%0A+)',
'(%0D+)',
'(%08+)',
'(%09+)'
);
$inject = join('|', $injections);
$inject = "/$inject/i";
if(preg_match($inject,$str))
{
return true;
}
else
{
return false;
}
}
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Register</title>
<link href="../css/bootstrap.css" rel="stylesheet">
<link href="../css/ompl.css" rel="stylesheet">
<!-- define some style elements-->
<style>
.err { color: #f00; }
textarea { resize: none; }
</style>
</head>
<body style="padding-top:0px">
<?php
if(!empty($errors)){
echo "<p class='err'>".nl2br($errors)."</p>";
}
?>
<div class="row">
<p class="span8">Registration for OMPL is completely voluntary. We will not spam you with emails. Work on OMPL is funded in part by the National Science Foundation (NSF). It is extremely helpful for us if we can report to the NSF where and how our work is being used. Your cooperation would be highly appreciated.</p>
<form method="POST" name="register_form"
action="<?php echo htmlentities($_SERVER['PHP_SELF']); ?>" class="form-horizontal span8">
<fieldset>
<div class="control-group">
<label class="control-label" for="email">email (optional)</label>
<div class="controls">
<input class="span6" type="text" name="email" value="<?php echo htmlentities($email) ?>">
</div>
</div>
<div class="control-group">
<label class="control-label" for="affiliation">school/employer</label>
<div class="controls">
<input class="span6" type="text" name="affiliation" value="<?php echo htmlentities($affiliation) ?>">
</div>
</div>
<div class="control-group">
<label class="control-label" for="checkboxes">I plan to use OMPL for (check all that apply)</label>
<div class="controls">
<label class="checkbox"><input type="checkbox" name="research" value='yes'>research</label>
<label class="checkbox"><input type="checkbox" name="education" value='yes'>education</label>
<label class="checkbox"><input type="checkbox" name="industry" value='yes'>industrial applications</label>
</div>
</div>
<div class="control-group">
<label class="control-label" for="message">comments/suggestions (optional)</label>
<div class="controls">
<textarea name="message" rows=10 cols=20 class="span6"><?php echo htmlentities($message) ?></textarea>
</div>
</div>
<div class="form-actions">
<input type="submit" value="Submit" name="submit" class="btn btn-primary">
</div>
</fieldset>
</form>
</div>
</body>
</html>
|
