• There is NO official Otland's Discord server and NO official Otland's server list. The Otland's Staff does not manage any Discord server or server list. Moderators or administrator of any Discord server or server lists have NO connection to the Otland's Staff. Do not get scammed!

Solved Gesior Acc Maker 2012 Login to the game Problem !

Daniel Kopeć

Member
Joined
Dec 8, 2018
Messages
125
Solutions
4
Reaction score
12
Location
Poland
After creating an account, I cannot log in to the game. Tibia client shows Invalid password.
The new account and character normally appears in the database.
Gesior Acc Maker 2012 TFS0.4 Tibia8.6

In config.lua password encryption is 'sha1'

Lua:
sqlType = "mysql"
    sqlHost = "127.0.0.1"
    sqlPort = 3306
    sqlUser = "root"
    sqlPass = "test123"
    sqlDatabase = "thornera"
    sqlFile = "mysql.sql"
    sqlKeepAlive = 0
    mysqlReadTimeout = 55
    mysqlWriteTimeout = 55
    encryptionType = "sha1"

config.php

PHP:
<?PHP
# Account Maker Config
$config['site']['serverPath'] = "D:/Tibia pliki/paczkaOts i Str/home/verbania/ots/";
$config['site']['useServerConfigCache'] = false;
$config['site']['worlds'] = array(0 => 'Acc. Maker Test World');
$towns_list[0] = array(1 => 'Thais', 2 => 'Venore', 5 => 'Carlin');

$config['site']['outfit_images_url'] = 'http://outfit-images.ots.me/outfit.php';
$config['site']['item_images_url'] = 'http://item-images.ots.me/960/';
$config['site']['item_images_extension'] = '.gif';
$config['site']['flag_images_url'] = 'http://flag-images.ots.me/';
$config['site']['flag_images_extension'] = '.png';

# Create Account Options
$config['site']['one_email'] = false;
$config['site']['create_account_verify_mail'] = false;
$config['site']['verify_code'] = true;
$config['site']['email_days_to_change'] = 3;
$config['site']['newaccount_premdays'] = 999;
$config['site']['send_register_email'] = false;

# Create Character Options
$config['site']['newchar_vocations'][0] = array(1 => 'Sorcerer Sample', 2 => 'Druid Sample', 3 => 'Paladin Sample', 4 => 'Knight Sample');
$config['site']['newchar_towns'][0] = array(1);
$config['site']['max_players_per_account'] = 4;


# Emails Config
$config['site']['send_emails'] = false;
$config['site']['mail_address'] = "[email protected]";
$config['site']['smtp_enabled'] = true;
$config['site']['smtp_host'] = "mail.gmx.com";
$config['site']['smtp_port'] = 25;
$config['site']['smtp_auth'] = false;
$config['site']['smtp_user'] = "[email protected]";
$config['site']['smtp_pass'] = "xxxx";

# PAGE: whoisonline.php
$config['site']['private-servlist.com_server_id'] = 1;
/*
Server id on 'private-servlist.com' to show Players Online Chart (whoisonline.php page), set 0 to disable Chart feature.
To use this feature you must register on 'private-servlist.com' and add your server.
Format: number, 0 [disable] or higher
*/

# PAGE: characters.php
$config['site']['quests'] = array();
$config['site']['show_skills_info'] = true;
$config['site']['show_vip_storage'] = 0;

# PAGE: accountmanagement.php
$config['site']['send_mail_when_change_password'] = true;
$config['site']['send_mail_when_generate_reckey'] = true;
$config['site']['generate_new_reckey'] = false;
$config['site']['generate_new_reckey_price'] = 500;

# PAGE: guilds.php
$config['site']['guild_need_level'] = 15;
$config['site']['guild_need_pacc'] = false;
$config['site']['guild_image_size_kb'] = 50;
$config['site']['guild_description_chars_limit'] = 2000;
$config['site']['guild_description_lines_limit'] = 6;
$config['site']['guild_motd_chars_limit'] = 250;

# PAGE: adminpanel.php
$config['site']['access_admin_panel'] = 3;

# PAGE: latestnews.php
$config['site']['news_limit'] = 6;

# PAGE: killstatistics.php
$config['site']['last_deaths_limit'] = 40;

# PAGE: team.php
$config['site']['groups_support'] = array(2, 3, 4, 5, 6);

# PAGE: highscores.php
$config['site']['groups_hidden'] = array(4, 5, 6);
$config['site']['accounts_hidden'] = array(1);

# PAGE: shopsystem.php
$config['site']['shop_system'] = false;

# PAGE: lostaccount.php
$config['site']['email_lai_sec_interval'] = 180;

# Layout Config
$config['site']['layout'] = 'tibiacom';
$config['site']['vdarkborder'] = '#505050';
$config['site']['darkborder'] = '#D4C0A1';
$config['site']['lightborder'] = '#F1E0C6';
$config['site']['download_page'] = false;
$config['site']['serverinfo_page'] = true;

account.php

PHP:
<?php
if(!defined('INITIALIZED'))
    exit;

class Account extends ObjectData
{
    const LOADTYPE_ID = 'id';
    const LOADTYPE_NAME = 'name';
    const LOADTYPE_MAIL = 'email';
    public static $table = 'accounts';
    public $data = array('name' => null, 'password' => null, 'salt' => null, 'premdays' => null, 'lastday' => null, 'email' => null, 'key' => null, 'group_id' => null, 'create_ip' => null, 'create_date' => null, 'premium_points' => null, 'page_access' => null, 'location' => null, 'rlname' => null, 'email_new' => null, 'email_new_time' => null, 'email_code' => null, 'next_email' => null, 'last_post' => null, 'flag' => null);
    public static $fields = array('id', 'name', 'password', 'salt', 'premdays', 'lastday', 'email', 'key', 'group_id', 'create_ip', 'create_date', 'premium_points', 'page_access', 'location', 'rlname', 'email_new', 'email_new_time', 'email_code', 'next_email', 'last_post', 'flag');
    public $players;
    public $playerRanks;
    public $guildAccess;
    public $bans;

    public function __construct($search_text = null, $search_by = self::LOADTYPE_ID)
    {
        if($search_text != null)
            $this->load($search_text, $search_by);
    }

    public function load($search_text, $search_by = self::LOADTYPE_ID)
    {
        if(in_array($search_by, self::$fields))
            $search_string = $this->getDatabaseHandler()->fieldName($search_by) . ' = ' . $this->getDatabaseHandler()->quote($search_text);
        else
            new Error_Critic('', 'Wrong Account search_by type.');
        $fieldsArray = array();
        foreach(self::$fields as $fieldName)
            $fieldsArray[$fieldName] = $this->getDatabaseHandler()->fieldName($fieldName);
        $this->data = $this->getDatabaseHandler()->query('SELECT ' . implode(', ', $fieldsArray) . ' FROM ' . $this->getDatabaseHandler()->tableName(self::$table) . ' WHERE ' . $search_string)->fetch();
    }

    public function loadById($id)
    {
        $this->load($id, 'id');
    }

    public function loadByName($name)
    {
        $this->load($name, 'name');
    }

    public function loadByEmail($mail)
    {
        $this->load($mail, 'email');
    }

    public function save($forceInsert = false)
    {
        if(!isset($this->data['id']) || $forceInsert)
        {
            $keys = array();
            $values = array();
            foreach(self::$fields as $key)
                if($key != 'id')
                {
                    $keys[] = $this->getDatabaseHandler()->fieldName($key);
                    $values[] = $this->getDatabaseHandler()->quote($this->data[$key]);
                }
            $this->getDatabaseHandler()->query('INSERT INTO ' . $this->getDatabaseHandler()->tableName(self::$table) . ' (' . implode(', ', $keys) . ') VALUES (' . implode(', ', $values) . ')');
            $this->setID($this->getDatabaseHandler()->lastInsertId());
        }
        else
        {
            $updates = array();
            foreach(self::$fields as $key)
                if($key != 'id')
                    $updates[] = $this->getDatabaseHandler()->fieldName($key) . ' = ' . $this->getDatabaseHandler()->quote($this->data[$key]);
            $this->getDatabaseHandler()->query('UPDATE ' . $this->getDatabaseHandler()->tableName(self::$table) . ' SET ' . implode(', ', $updates) . ' WHERE ' . $this->getDatabaseHandler()->fieldName('id') . ' = ' . $this->getDatabaseHandler()->quote($this->data['id']));
        }
    }

    public function getPlayers($forceReload = false)
    {
        if(!isset($this->players) || $forceReload)
        {
            $this->players = new DatabaseList('Player');
            $this->players->setFilter(new SQL_Filter(new SQL_Field('account_id'), SQL_Filter::EQUAL, $this->getID()));
            $this->players->addOrder(new SQL_Order(new SQL_Field('name')));
        }
        return $this->players;
    }

    public function getGuildRanks($forceReload = false)
    {
        if(!isset($this->playerRanks) || $forceReload)
        {
            $this->playerRanks = new DatabaseList('AccountGuildRank');
            $filterAccount = new SQL_Filter(new SQL_Field('account_id', 'players'), SQL_Filter::EQUAL, $this->getID());
            $filterPlayer = new SQL_Filter(new SQL_Field('rank_id', 'players'), SQL_Filter::EQUAL, new SQL_Field('id', 'guild_ranks'));
            $filterGuild = new SQL_Filter(new SQL_Field('guild_id', 'guild_ranks'), SQL_Filter::EQUAL, new SQL_Field('id', 'guilds'));
            $filter = new SQL_Filter($filterAccount, SQL_Filter::CRITERIUM_AND, $filterPlayer);
            $filter = new SQL_Filter($filter, SQL_Filter::CRITERIUM_AND, $filterGuild);
            $this->playerRanks->setFilter($filter);
        }
        return $this->playerRanks;
    }

    public function loadGuildAccess($forceReload = false)
    {
        if(!isset($this->guildAccess) || $forceReload)
        {
            $this->guildAccess = array();
            foreach($this->getGuildRanks($forceReload) as $rank)
                if($rank->getOwnerID() == $rank->getPlayerID())
                    $this->guildAccess[$rank->getGuildID()] = Guild::LEVEL_OWNER;
                elseif(!isset($this->guildAccess[$rank->getGuildID()]) || $rank->getLevel() > $this->guildAccess[$rank->getGuildID()])
                    $this->guildAccess[$rank->getGuildID()] = $rank->getLevel();
        }
    }

    public function isInGuild($guildId, $forceReload = false)
    {
        $this->loadGuildAccess($forceReload);
        return isset($this->guildAccess[$guildId]);
    }

    public function getGuildLevel($guildId, $forceReload = false)
    {
        $this->loadGuildAccess($forceReload);
        if(isset($this->guildAccess[$guildId]))
            return $this->guildAccess[$guildId];
        else
            return 0;
    }

    public function unban()
    {
        $bans = new DatabaseList('Ban');
        $filterType = new SQL_Filter(new SQL_Field('type'), SQL_Filter::EQUAL, Ban::TYPE_ACCOUNT);
        $filterValue = new SQL_Filter(new SQL_Field('value'), SQL_Filter::EQUAL, $this->data['id']);
        $filterActive = new SQL_Filter(new SQL_Field('active'), SQL_Filter::EQUAL, 1);
        $filter = new SQL_Filter($filterType, SQL_Filter::CRITERIUM_AND, $filterValue);
        $filter = new SQL_Filter($filter, SQL_Filter::CRITERIUM_AND, $filterActive);
        $bans->setFilter($filter);
        foreach($bans as $ban)
        {
            $ban->setActive(0);
            $ban->save();
        }
    }

    public function loadBans($forceReload = false)
    {
        if(!isset($this->bans) || $forceReload)
        {
            $this->bans = new DatabaseList('Ban');
            $filterType = new SQL_Filter(new SQL_Field('type'), SQL_Filter::EQUAL, Ban::TYPE_ACCOUNT);
            $filterValue = new SQL_Filter(new SQL_Field('value'), SQL_Filter::EQUAL, $this->data['id']);
            $filterActive = new SQL_Filter(new SQL_Field('active'), SQL_Filter::EQUAL, 1);
            $filter = new SQL_Filter($filterType, SQL_Filter::CRITERIUM_AND, $filterValue);
            $filter = new SQL_Filter($filter, SQL_Filter::CRITERIUM_AND, $filterActive);
            $this->bans->setFilter($filter);
        }
    }

    public function isBanned($forceReload = false)
    {
        $this->loadBans($forceReload);
        $isBanned = false;
        foreach($this->bans as $ban)
        {
            if($ban->getExpires() <= 0 || $ban->getExpires() > time())
                $isBanned = true;
        }
        return $isBanned;
    }

    public function getBanTime($forceReload = false)
    {
        $this->loadBans($forceReload);
        $lastExpires = 0;
        foreach($bans as $ban)
        {
            if($ban->getExpires() <= 0)
            {
                $lastExpires = 0;
                break;
            }
            if($ban->getExpires() > time() && $ban->getExpires() > $lastExpires)
                $lastExpires = $ban->getExpires();
        }
        return $lastExpires;
    }

    public function delete()
    {
        $this->getDatabaseHandler()->query('DELETE FROM ' . $this->getDatabaseHandler()->tableName(self::$table) . ' WHERE ' . $this->getDatabaseHandler()->fieldName('id') . ' = ' . $this->getDatabaseHandler()->quote($this->data['id']));

        unset($this->data['id']);
    }

    public function setID($value){$this->data['id'] = $value;}
    public function getID(){return $this->data['id'];}
    public function setName($value){$this->data['name'] = $value;}
    public function getName(){return $this->data['name'];}
    public function setPassword($value)
    {
        $this->data['salt'] = md5(microtime(true));
        $this->data['password'] = Website::encryptPassword($value, $this);
    }
    public function getPassword(){return $this->data['password'];}
    public function setSalt($value){$this->data['salt'] = $value;}
    public function getSalt(){return $this->data['salt'];}
    public function setPremDays($value){$this->data['premdays'] = $value;}
    public function getPremDays(){return $this->data['premdays'] - (date("z", time()) + (365 * (date("Y", time()) - date("Y", $this->data['lastday']))) - date("z", $this->data['lastday']));}
    public function setLastDay($value){$this->data['lastday'] = $value;}
    public function getLastDay(){return $this->data['lastday'];}
    public function setMail($value){$this->data['email'] = $value;}
    public function getMail(){return $this->data['email'];}
    public function setKey($value){$this->data['key'] = $value;}
    public function getKey(){return $this->data['key'];}
    public function setGroupID($value){$this->data['group_id'] = $value;}
    public function getGroupID(){return $this->data['group_id'];}
/*
* Custom AAC fields
* create_ip , INT, default 0
* create_date , INT, default 0
* premium_points , INT, default 0
* page_access, INT, default 0
* location, VARCHAR(255), default ''
* rlname, VARCHAR(255), default ''
*/
    public function setCreateIP($value){$this->data['create_ip'] = $value;}
    public function getCreateIP(){return $this->data['create_ip'];}
    public function setCreateDate($value){$this->data['create_date'] = $value;}
    public function getCreateDate(){return $this->data['create_date'];}
    public function setPremiumPoints($value){$this->data['premium_points'] = $value;}
    public function getPremiumPoints(){return $this->data['premium_points'];}
    public function setPageAccess($value){$this->data['page_access'] = $value;}
    public function getPageAccess(){return $this->data['page_access'];}
  
    public function setLocation($value){$this->data['location'] = $value;}
    public function getLocation(){return $this->data['location'];}
    public function setRLName($value){$this->data['rlname'] = $value;}
    public function getRLName(){return $this->data['rlname'];}
    public function setFlag($value){$this->data['flag'] = $value;}
    public function getFlag(){return $this->data['flag'];}
/*
* for compability with old scripts
*/
    public function getGroup(){return $this->getGroupID();}
    public function setGroup($value){$this->setGroupID($value);}
    public function getEMail(){return $this->getMail();}
    public function setEMail($value){$this->setMail($value);}
    public function getPlayersList(){return $this->getPlayers();}
    public function getGuildAccess($guildID){return $this->getGuildLevel($guildID);}

    public function isValidPassword($password)
    {
        return (strtoupper($this->data['password']) == strtoupper(Website::encryptPassword($password, $this)));
    }

    public function find($name){$this->loadByName($name);}
    public function findByEmail($email){$this->loadByEmail($email);}
    public function isPremium(){return ($this->getPremDays() > 0);}
    public function getLastLogin(){return $this->getLastDay();}
}



Which could be causing the problem logging into the game?
How to fix it?
Post automatically merged:

If it uses encryption 'plain' then I can log into the game normally but when starting in the engine I have such an error.

plain error.png
 
Last edited:
OP
Daniel Kopeć

Daniel Kopeć

Member
Joined
Dec 8, 2018
Messages
125
Solutions
4
Reaction score
12
Location
Poland
Are passwords in the database currently hashed or plain ?
Yes in the database, the passwords are encrypted with sha1
hashed password.png
Post automatically merged:

Are passwords in the database currently hashed or plain ?
I installed another gesior acc maker for testing and there was no problem logging into the game and sha1 encryption

Maybe there is something wrong here:

createaccount.php

PHP:
<?php
if(!defined('INITIALIZED'))
    exit;

//CREATE ACCOUNT FORM PAGE
if($action == "")
{
    $main_content .= '<script type="text/javascript">

var accountHttp;

function checkAccount()
{
    if(document.getElementById("account_name").value=="")
    {
        document.getElementById("acc_name_check").innerHTML = \'<b><font color="red">Please enter account name.</font></b>\';
        return;
    }
    accountHttp=GetXmlHttpObject();
    if (accountHttp==null)
    {
        return;
    }
    var account = document.getElementById("account_name").value;
    var url="?subtopic=ajax_check_account&account=" + account + "&uid="+Math.random();
    accountHttp.onreadystatechange=AccountStateChanged;
    accountHttp.open("GET",url,true);
    accountHttp.send(null);
}

function AccountStateChanged()
{
    if (accountHttp.readyState==4)
    {
        document.getElementById("acc_name_check").innerHTML=accountHttp.responseText;
    }
}

var emailHttp;

//sprawdza czy dane konto istnieje czy nie
function checkEmail()
{
    if(document.getElementById("email").value=="")
    {
        document.getElementById("email_check").innerHTML = \'<b><font color="red">Please enter e-mail.</font></b>\';
        return;
    }
    emailHttp=GetXmlHttpObject();
    if (emailHttp==null)
    {
        return;
    }
    var email = document.getElementById("email").value;
    var url="?subtopic=ajax_check_email&email=" + email + "&uid="+Math.random();
    emailHttp.onreadystatechange=EmailStateChanged;
    emailHttp.open("GET",url,true);
    emailHttp.send(null);
}

function EmailStateChanged()
{
    if (emailHttp.readyState==4)
    {
        document.getElementById("email_check").innerHTML=emailHttp.responseText;
    }
}

    function validate_required(field,alerttxt)
    {
        with (field)
            {
            if (value==null||value==""||value==" ")
            {
                alert(alerttxt);
                return false;
            }
            else
            {
                return true;
            }
        }
    }

    function validate_email(field,alerttxt)
    {
        with (field)
        {
            apos=value.indexOf("@");
            dotpos=value.lastIndexOf(".");
            if (apos<1||dotpos-apos<2)
            {
                alert(alerttxt);
                return false;
            }
            else
            {
                return true;
            }
        }
    }

    function validate_form(thisform)
    {
        with (thisform)
        {
            if(validate_required(account_name,"Please enter name of new account!")==false)
            {
                account_name.focus();
                return false;
            }
            if(validate_required(email,"Please enter your e-mail!")==false)
            {
                email.focus();
                return false;
            }
            if(validate_email(email,"Invalid e-mail format!")==false)
            {
                email.focus();
                return false;
            }
            if(verifpass==1)
            {
                if(validate_required(passor,"Please enter password!")==false)
                {
                    passor.focus();
                    return false;
                }
                if (validate_required(passor2,"Please repeat password!")==false)
                {
                    passor2.focus();
                    return false;
                }
                if(passor2.value!=passor.value)
                {
                    alert(\'Repeated password is not equal to password!\');
                    return false;
                }
            }
            if(verifya==1)
            {
                if (validate_required(verify,"Please enter verification code!")==false)
                {
                    verify.focus();return false;
                }
            }
            if(rules.checked==false)
            {
                alert(\'To create account you must accept server rules!\');
                return false;
            }
        }
    }
    </script>';
    $main_content .= 'To play on '.htmlspecialchars($config['server']['serverName']).' you need an account.
                        All you have to do to create your new account is to enter your email address, password to new account, verification code from picture and to agree to the terms presented below.
                        If you have done so, your account name, password and e-mail address will be shown on the following page and your account and password will be sent
                        to your email address along with further instructions.<BR><BR>
                        <FORM ACTION="?subtopic=createaccount&action=saveaccount" onsubmit="return validate_form(this)" METHOD=post>
                        <TABLE WIDTH=100% BORDER=0 CELLSPACING=1 CELLPADDING=4>
                        <TR><TD BGCOLOR="'.$config['site']['vdarkborder'].'" CLASS=white><B>Create an '.htmlspecialchars($config['server']['serverName']).' Account</B></TD></TR>
                        <TR><TD BGCOLOR="'.$config['site']['darkborder'].'"><TABLE BORDER=0 CELLSPACING=8 CELLPADDING=0>
                          <TR><TD>
                            <TABLE BORDER=0 CELLSPACING=5 CELLPADDING=0>';
    $main_content .= '<TR><TD width="150" valign="top"><B>Account name: </B></TD><TD colspan="2"><INPUT id="account_name" NAME="reg_name" onkeyup="checkAccount();" VALUE="" SIZE=30 MAXLENGTH=50><BR><font size="1" face="verdana,arial,helvetica">(Please enter your new account name)</font></TD></TR>
                      <TR><TD width="150"><b>Name status:</b></TD><TD colspan="2"><b><div id="acc_name_check">Please enter your account name.</div></b></TD></TR>
                    <TR><TD width="150" valign="top"><B>Email address: </B></TD><TD colspan="2"><INPUT id="email" NAME="reg_email" onkeyup="checkEmail();" VALUE="" SIZE=30 MAXLENGTH=50><BR><font size="1" face="verdana,arial,helvetica">(Your email address is required to recovery an '.htmlspecialchars($config['server']['serverName']).' account)</font></TD></TR>
                      <TR><TD width="150"><b>Email status:</b></TD><TD colspan="2"><b><div id="email_check">Please enter your e-mail.</div></b></TD></TR>';
    if(!$config['site']['create_account_verify_mail'])
    $main_content .= '<script type="text/javascript">var verifpass=1;</script>
                        <TR><TD width="150" valign="top"><B>Password: </B></TD><TD colspan="2"><INPUT TYPE="password" id="passor" NAME="reg_password" VALUE="" SIZE=30 MAXLENGTH=50><BR><font size="1" face="verdana,arial,helvetica">(Here write your password to new account on '.htmlspecialchars($config['server']['serverName']).')</font></TD></TR>
                      <TR><TD width="150" valign="top"><B>Repeat password: </B></TD><TD colspan="2"><INPUT TYPE="password" id="passor2" NAME="reg_password2" VALUE="" SIZE=30 MAXLENGTH=50><BR><font size="1" face="verdana,arial,helvetica">(Repeat your password)</font></TD></TR>';
    else
        $main_content .= '<script type="text/javascript">var verifpass=0;</script>';
    if($config['site']['verify_code'])
        $main_content .= '<script type="text/javascript">var verifya=1;</script><TR><TD width="150"><B>Code: </B></TD><TD colspan="2"><img src="?subtopic=imagebuilder&image_refresher='.mt_rand(1,99999).'" border="0" alt="Image Verification is missing, please contact the administrator"></TD></TR>
                          <TR><TD width="150" valign="top"><B>Verification Code: </B></TD><TD colspan="2"><INPUT id="verify" NAME="reg_code" VALUE="" SIZE=30 MAXLENGTH=50><BR><font size="1" face="verdana,arial,helvetica">(Here write verification code from picture)</font></TD></TR>';
    else
        $main_content .= '<script type="text/javascript">var verifya=0;</script>';
    $main_content .= '</TABLE>
                      </TD></TR>
                      <TR><TD>
                        <TABLE BORDER=0 CELLSPACING=5 CELLPADDING=0><TR><TD>
                           Please review the following terms and state your agreement below.
                        </TD></TR>
                        <TR><TD>
                          <B>'.htmlspecialchars($config['server']['serverName']).' Rules</B><BR>
                          <TEXTAREA ROWS="16" WRAP="physical" COLS="75" READONLY="true">';
    //load server rules from file
    include("pages/tibiarules.php");
    $main_content .= '</TEXTAREA>
                        </TD></TR></TABLE>
                      </TD></TR>
                      <TR><TD>
                        <TABLE BORDER=0 CELLSPACING=5 CELLPADDING=0>
                        <TR><TD>
                          <INPUT TYPE="checkbox" NAME="rules" id="rules" value="true" /><label for="rules"><u> I agree to the '.htmlspecialchars($config['server']['serverName']).' Rules.</u></lable><BR>
                        </TD></TR>
                        <TR><TD>
                          If you fully agree to these terms, click on the "I Agree" button in order to create an '.htmlspecialchars($config['server']['serverName']).' account.<BR>
                          If you do not agree to these terms or do not want to create an '.htmlspecialchars($config['server']['serverName']).' account, please click on the "Cancel" button.
                        </TD></TR></TABLE>
                      </TD></TR>
                    </TABLE></TD></TR>
                    </TABLE>
                    <BR>
                    <TABLE BORDER=0 WIDTH=100%>
                      <TR><TD ALIGN=center>
                        <IMG SRC="'.$layout_name.'/images/blank.gif" WIDTH=120 HEIGHT=1 BORDER=0><BR>
                      </TD><TD ALIGN=center VALIGN=top>
                        <INPUT TYPE=image NAME="I Agree" SRC="'.$layout_name.'/images/buttons/sbutton_iagree.gif" BORDER=0 WIDTH=120 HEIGHT=18>
                        </FORM>
                      </TD><TD ALIGN=center>
                        <FORM  ACTION="?subtopic=latestnews" METHOD=post>
                        <INPUT TYPE=image NAME="Cancel" SRC="'.$layout_name.'/images/buttons/sbutton_cancel.gif" BORDER=0 WIDTH=120 HEIGHT=18>
                        </FORM>
                      </TD><TD ALIGN=center>
                        <IMG SRC="/images/blank.gif" WIDTH=120 HEIGHT=1 BORDER=0><BR>
                      </TD></TR>
                    </TABLE>
                    </TD>
                    <TD><IMG SRC="'.$layout_name.'/images/blank.gif" WIDTH=10 HEIGHT=1 BORDER=0></TD>
                    </TR>
                    </TABLE>';
}
//CREATE ACCOUNT PAGE (save account in database)
if($action == "saveaccount")
{
    $reg_name = strtoupper(trim($_POST['reg_name']));
    $reg_email = trim($_POST['reg_email']);
    $reg_password = trim($_POST['reg_password']);
    $reg_code = trim($_POST['reg_code']);
    //FIRST check
    //check e-mail
    if(empty($reg_name))
        $reg_form_errors[] = "Please enter account name.";
    elseif(!check_account_name($reg_name))
        $reg_form_errors[] = "Invalid account name format. Use only A-Z and numbers 0-9.";
    if(empty($reg_email))
        $reg_form_errors[] = "Please enter your email address.";
    else
    {
        if(!check_mail($reg_email))
            $reg_form_errors[] = "E-mail address is not correct.";
    }
    if($config['site']['verify_code'])
    {
        //check verification code
        $string = strtoupper($_SESSION['string']);
        $userstring = strtoupper($reg_code);
        session_destroy();
        if(empty($string))
            $reg_form_errors[] = "Information about verification code in session is empty.";
        else
        {
            if(empty($userstring))
                $reg_form_errors[] = "Please enter verification code.";
            else
            {
                if($string != $userstring)
                    $reg_form_errors[] = "Verification code is incorrect.";
            }
        }
    }
    //check password
    if(empty($reg_password) && !$config['site']['create_account_verify_mail'])
        $reg_form_errors[] = "Please enter password to your new account.";
    elseif(!$config['site']['create_account_verify_mail'])
    {
        if(!check_password($reg_password))
            $reg_form_errors[] = "Password contains illegal chars (a-z, A-Z and 0-9 only!) or lenght.";
    }
    //SECOND check
    //check e-mail address in database
    if(empty($reg_form_errors))
    {
        if($config['site']['one_email'])
        {
            $test_email_account = new Account();
            //load account with this e-mail
            $test_email_account->findByEmail($reg_email);
            if($test_email_account->isLoaded())
                $reg_form_errors[] = "Account with this e-mail address already exist in database.";
        }
        $account_db = new Account();
        $account_db->find($reg_name);
        if($account_db->isLoaded())
            $reg_form_errors[] = 'Account with this name already exist.';
    }
    // ----------creates account-------------(save in database)
    if(empty($reg_form_errors))
    {
        //create object 'account' and generate new acc. number
        if($config['site']['create_account_verify_mail'])
        {
            $reg_password = '';
            for ($i = 1; $i <= 6; $i++)
                $reg_password .= mt_rand(0,9);
        }
        $reg_account = new Account();
        // saves account information in database
        $reg_account->setName($reg_name);
        $reg_account->setPassword($reg_password);
        $reg_account->setEMail($reg_email);
        $reg_account->setGroupID(1);
        $reg_account->setCreateDate(time());
        $reg_account->setCreateIP(Visitor::getIP());
        $reg_account->setFlag(Website::getCountryCode(long2ip(Visitor::getIP())));
        if(isset($config['site']['newaccount_premdays']) && $config['site']['newaccount_premdays'] > 0)
        {
            $reg_account->set("premdays", $config['site']['newaccount_premdays']);
            $reg_account->set("lastday", time());
        }
        $reg_account->save();
        //show information about registration
        if($config['site']['send_emails'] && $config['site']['create_account_verify_mail'])
        {
            $mailBody = '<html>
            <body>
            <h3>Your account name and password!</h3>
            <p>You or someone else registred on server <a href="'.$config['server']['url'].'"><b>'.htmlspecialchars($config['server']['serverName']).'</b></a> with this e-mail.</p>
            <p>Account name: <b>'.htmlspecialchars($reg_name).'</b></p>
            <p>Password: <b>'.htmlspecialchars(trim($reg_password)).'</b></p>
            <br />
            <p>After login you can:</p>
            <li>Create new characters
            <li>Change your current password
            <li>Change your current e-mail
            </body>
            </html>';
            $mail = new PHPMailer();
            if ($config['site']['smtp_enabled'])
            {
                $mail->IsSMTP();
                $mail->Host = $config['site']['smtp_host'];
                $mail->Port = (int)$config['site']['smtp_port'];
                $mail->SMTPAuth = $config['site']['smtp_auth'];
                $mail->Username = $config['site']['smtp_user'];
                $mail->Password = $config['site']['smtp_pass'];
            }
            else
                $mail->IsMail();
            $mail->IsHTML(true);
            $mail->From = $config['site']['mail_address'];
            $mail->AddAddress($reg_email);
            $mail->Subject = $config['server']['serverName']." - Registration";
            $mail->Body = $mailBody;
            if($mail->Send())
            {
                $main_content .= 'Your account has been created. Check your e-mail. See you in Tibia!<BR><BR>';
                $main_content .= '<TABLE WIDTH=100% BORDER=0 CELLSPACING=1 CELLPADDING=4>
                <TR><TD BGCOLOR="'.$config['site']['vdarkborder'].'" CLASS=white><B>Account Created</B></TD></TR>
                <TR><TD BGCOLOR="'.$config['site']['darkborder'].'">
                  <TABLE BORDER=0 CELLPADDING=1><TR><TD>
                    <BR>Your account name is <b>'.$reg_name.'</b>.
                    <BR><b><i>You will receive e-mail (<b>'.htmlspecialchars($reg_email).'</b>) with your password.</b></i><br>';
                $main_content .= 'You will need the account name and your password to play on '.htmlspecialchars($config['server']['serverName']).'.
                    Please keep your account name and password in a safe place and
                    never give your account name or password to anybody.<BR><BR>';
                $main_content .= '<br /><small>These informations were send on email address <b>'.htmlspecialchars($reg_email).'</b>. Please check your inbox/spam folder.';
            }
            else
            {
                $main_content .= '<br /><small>An error occorred while sending email! Account not created. Try again.</small>';
                $reg_account->delete();
            }
        }
        else
        {
            $main_content .= 'Your account has been created. Now you can login and create your first character. See you in Tibia!<BR><BR>';
            $main_content .= '<TABLE WIDTH=100% BORDER=0 CELLSPACING=1 CELLPADDING=4>
            <TR><TD BGCOLOR="'.$config['site']['vdarkborder'].'" CLASS=white><B>Account Created</B></TD></TR>
            <TR><TD BGCOLOR="'.$config['site']['darkborder'].'">
              <TABLE BORDER=0 CELLPADDING=1><TR><TD>
                <BR>Your account name is <b>'.htmlspecialchars($reg_name).'</b><br>You will need the account name and your password to play on '.htmlspecialchars($config['server']['serverName']).'.
                Please keep your account name and password in a safe place and
                never give your account name or password to anybody.<BR><BR>';
            if($config['site']['send_emails'] && $config['site']['send_register_email'])
            {
                $mailBody = '<html>
                <body>
                <h3>Your account name and password!</h3>
                <p>You or someone else registred on server <a href="'.$config['server']['url'].'"><b>'.htmlspecialchars($config['server']['serverName']).'</b></a> with this e-mail.</p>
                <p>Account name: <b>'.htmlspecialchars($reg_name).'</b></p>
                <p>Password: <b>'.htmlspecialchars(trim($reg_password)).'</b></p>
                <br />
                <p>After login you can:</p>
                <li>Create new characters
                <li>Change your current password
                <li>Change your current e-mail
                </body>
                </html>';
                $mail = new PHPMailer();
                if ($config['site']['smtp_enabled'])
                {
                    $mail->IsSMTP();
                    $mail->Host = $config['site']['smtp_host'];
                    $mail->Port = (int)$config['site']['smtp_port'];
                    $mail->SMTPAuth = $config['site']['smtp_auth'];
                    $mail->Username = $config['site']['smtp_user'];
                    $mail->Password = $config['site']['smtp_pass'];
                }
                else
                    $mail->IsMail();
                $mail->IsHTML(true);
                $mail->From = $config['site']['mail_address'];
                $mail->AddAddress($reg_email);
                $mail->Subject = $config['server']['serverName']." - Registration";
                $mail->Body = $mailBody;
                if($mail->Send())
                    $main_content .= '<br /><small>These informations were send on email address <b>'.htmlspecialchars($reg_email).'</b>.';
                else
                    $main_content .= '<br /><small>An error occorred while sending email (<b>'.htmlspecialchars($reg_email).'</b>)!</small>';
            }
        }
        $main_content .= '</TD></TR></TABLE></TD></TR></TABLE><BR><BR>';
    }
    else
    {
        //SHOW ERRORs if data from form is wrong
        $main_content .= '<div class="SmallBox" >  <div class="MessageContainer" >    <div class="BoxFrameHorizontal" style="background-image:url('.$layout_name.'/images/content/box-frame-horizontal.gif);" /></div>    <div class="BoxFrameEdgeLeftTop" style="background-image:url('.$layout_name.'/images/content/box-frame-edge.gif);" /></div>    <div class="BoxFrameEdgeRightTop" style="background-image:url('.$layout_name.'/images/content/box-frame-edge.gif);" /></div>    <div class="ErrorMessage" >      <div class="BoxFrameVerticalLeft" style="background-image:url('.$layout_name.'/images/content/box-frame-vertical.gif);" /></div>      <div class="BoxFrameVerticalRight" style="background-image:url('.$layout_name.'/images/content/box-frame-vertical.gif);" /></div>      <div class="AttentionSign" style="background-image:url('.$layout_name.'/images/content/attentionsign.gif);" /></div><b>The Following Errors Have Occurred:</b><br/>';
        foreach($reg_form_errors as $show_msg)
        {
                    $main_content .= '<li>'.$show_msg.'</li>';
        }
        $main_content .= '</div>    <div class="BoxFrameHorizontal" style="background-image:url('.$layout_name.'/images/content/box-frame-horizontal.gif);" /></div>    <div class="BoxFrameEdgeRightBottom" style="background-image:url('.$layout_name.'/images/content/box-frame-edge.gif);" /></div>    <div class="BoxFrameEdgeLeftBottom" style="background-image:url('.$layout_name.'/images/content/box-frame-edge.gif);" /></div>  </div></div><br/>
        <BR>
        <CENTER>
        <TABLE BORDER=0 CELLSPACING=0 CELLPADDING=0><FORM ACTION=?subtopic=createaccount METHOD=post><TR><TD>
        <INPUT TYPE=hidden NAME=email VALUE="">

        <INPUT TYPE=image NAME="Back" ALT="Back" SRC="'.$layout_name.'/images/buttons/sbutton_back.gif" BORDER=0 WIDTH=120 HEIGHT=18>
        </TD></TR></FORM></TABLE>
        </CENTER>';
    }
}
 
Last edited:
OP
Daniel Kopeć

Daniel Kopeć

Member
Joined
Dec 8, 2018
Messages
125
Solutions
4
Reaction score
12
Location
Poland
Are passwords in the database currently hashed or plain ?
I have installed Gesior2012-TFS-0.3.6_and_0.4_to_rev_3703 and there is no problem with logging in :D
I guess I can close the topic but thank you very much for trying to help Mr. Snavy :) REP +
 
Solution
Top