<?php
require "include/bittorrent.php";
dbconn();
parked();
if ($officialinvites == 'no') {
	stderr("抱歉", "当前官方邀请系统已经关闭");
}
$imgtypes = array('gif', 'jpg', 'jpeg', 'png');
$scaleh = 999999; // set our height size desired
$scalew = 1920; // set our width size desired
if (isset($_SESSION['invitebox']) && isset($_POST['invitebox']) && $_POST['invitebox'] == $_SESSION['invitebox']) {
	unset($_SESSION['invitebox']);
}
if ($_SERVER["REQUEST_METHOD"] == "POST") {
	$username = htmlspecialchars(trim($_POST[username]));
	$email = htmlspecialchars(trim($_POST[email]));
	$school = htmlspecialchars(trim($_POST[school]));
	$grade = htmlspecialchars(trim($_POST[grade]));
	$web = htmlspecialchars(trim($_POST[web]));
	$disk = htmlspecialchars(trim($_POST[disk]));
	$ip = $_POST[ip];
	$self_introduction = htmlspecialchars(trim($_POST[self_introduction]));

	if (!$_POST[username] || !$_POST[email])
		stderr("错误", "必须填写用户名和邮箱");
	$email = safe_email($email);
	if (!check_email($email))
		stderr("错误", "邮箱地址无效");
	if (EmailBanned($email))
		stderr("错误", "邮箱地址或域被禁用！");
	if (!EmailAllowed($email))
		stderr("错误", "不允许发送邀请给此邮箱地址或域！请使用以下邮箱：" . allowedemails());

	$file = $_FILES["file"];
	if (!isset($file) || $file["size"] < 1)
		$url = '';
	elseif (isset($file)) {
		$pp = pathinfo($filename = iconv("utf-8", "gb2312", $file["name"]));
		$fileextname = strtolower($pp["extension"]);
		if ($pp['basename'] != $filename)
			stderr('图片上传失败', "文件名错误。");
		$filename = rtrim(ltrim($CURUSER['id'] . date("YmdHis") . "." . $fileextname));
		$tgtfile = "invite/$filename";
		if (file_exists($tgtfile))
			stderr("上传失败", '你上传的文件 ' . htmlspecialchars($filename) . ' 文件名重复或非法，请检查文件名长度、字符，重命名之后重新上传', false);
		$size = getimagesize($file["tmp_name"]);
		$height = $size[1];
		$width = $size[0];
		$it = $size[2];
		if (in_array($fileextname, $imgtypes) == 0) {
			stderr("上传失败", "扩展名无效：<b>只允许格式为GIF，JPG，JPEG或PNG</b>！", false);
		}
		// Scale image to appropriate avatar dimensions
		$hscale = $height / $scaleh;
		$wscale = $width / $scalew;
		$scale = ($hscale < 1 && $wscale < 1) ? 1 : (( $hscale > $wscale) ? $hscale : $wscale);
		$newwidth = floor($width / $scale);
		$newheight = floor($height / $scale);

		if ($it == 1)
			$orig = @imagecreatefromgif($file["tmp_name"]);
		elseif ($it == 2)
			$orig = @imagecreatefromjpeg($file["tmp_name"]);
		else
			$orig = @imagecreatefrompng($file["tmp_name"]);
		if (!$orig)
			stderr("图片处理失败", "对不起，上传的文件 " . "$imgtypes[$it]" . "处理失败。请用图片编辑软件处理后再上传。谢谢！");
		$thumb = imagecreatetruecolor($newwidth, $newheight);
		imagecopyresized($thumb, $orig, 0, 0, 0, 0, $newwidth, $newheight, $width, $height);
		$ret = ($it == 1) ? imagegif($thumb, $tgtfile) : ($it == 2) ? imagejpeg($thumb, $tgtfile) : imagepng($thumb, $tgtfile);
		$url = str_replace(" ", "%20", "invite/$filename");
	}
	$name = sqlesc($filename);
	$added = sqlesc(date("Y-m-d H:i:s"));
	sql_query("INSERT INTO invitebox (username, ip, email, school, grade, web, disk, self_introduction, added, pic) VALUES ('" . $username . "', '" . $ip . "','" . $email . "', '" . $school . "', '" . $grade . "', '" . $web . "', '" . $disk . "', '" . mysql_real_escape_string($self_introduction) . "', $added, " . sqlesc($url) . ")") or sqlerr(__FILE__, __LINE__);
	$subject = "有游客申请邀请码";
	$msg = '请点击[url=viewinvitebox.php]这里[/url]查看。';
	sql_query("INSERT INTO staffmessages (sender, subject, msg, added, goto) VALUES (0, '" . $subject . "', '" . $msg . "', $added, 1)") or sqlerr(__FILE__, __LINE__);
	stderr('提交成功', "您的请求已发送，请耐心等待管理员审核，并时常查看注册邮箱。<br/>一切顺利的话，邀请将在2日内发送到您的邮箱。请注意查收邮件或垃圾邮件。", false);
}
stdhead("邀请申请");
?>
<h1>邀请申请</h1>
<form method="post" action=invitebox.php enctype="multipart/form-data">
	<table border=1 cellspacing=0 cellpadding=5>
		<?php
		if (!is_writable("$bitbucket"))
			print("<tr><td align=left colspan=2>" . "注意：上传路径不可写。请将该情况报告给管理员！" . "</tr></td>");
		?>
		<tr><td class="rowhead">欲申请用户名</td>
			<td class="rowfollow" align="left"><input type="text" id="username" name="username" autocomplete="off" style="width: 200px; border: 1px solid gray"></td><td class="rowfollow" align="left">必须填写，本站支持中文和英文字母做用户名，不支持空格及符号。</td></tr>
		<tr><td class="rowhead">邮箱</td>
			<td class="rowfollow" align="left"><input type="text" id="email" name="email" autocomplete="off" style="width: 200px; border: 1px solid gray"></td><td class="rowfollow" align="left">必须填写，邀请将发到此邮箱。部分邮箱可能将邀请信视为垃圾邮件，请注意查收。</td></tr>
		<tr><td class="rowhead">网络情况</td>
			<td class="rowfollow" align="left"><input type="text" id="web" name="web" autocomplete="off" style="width: 200px; border: 1px solid gray"></td><td class="rowfollow" align="left">请说明网络类型及带宽，如：“教育网，100M，ADSL”。</td></tr>
		<tr><td class="rowhead">硬盘情况</td>
			<td class="rowfollow" align="left"><input type="text" id="disk" name="disk" autocomplete="off" style="width: 200px; border: 1px solid gray"></td><td class="rowfollow" align="left">如：500G笔记本硬盘+2T移动硬盘</td></tr>
		<tr><td class="rowhead">补充说明</td>
			<td class="rowfollow" align="left"><textarea id="self_introduction" name="self_introduction" autocomplete="off" style="width: 200px; height: 100px;border: 1px solid gray"></textarea></td><td class="rowfollow" align="left">在此说明你对PT的认识，以及为什么要加入。如：“我想”</td></tr>
		<?php
		$ip = sqlesc(getip());
		$_SESSION['invitebox'] = mt_rand(1000000, 9999999);
		print("<input type=hidden name=ip value=$ip><input type=hidden name=invitebox value=$_SESSION[invitebox]>");
		?>
		<tr><td class="rowhead">其他站点截图<br/></td>
			<td class="rowfollow"><input type="file" name="file"></td><td class="rowfollow" align="left">为了提高成功率，建议尽量上传。选择数据最好的站点截图即可</td></tr>
		<tr><td class="rowhead"></td><td class="rowfollow"><input type="submit" value="提交"><input type="reset" value="重置"></td><td class="rowhead"></td></tr>
	</table>
</form>
<?php
stdfoot();