WebSVN – cheapmusic – Diff – /www/login/userAccount.php

 require_once 'includes/User.class.php';
 $user = new User();
 if(isset($_POST['signupSubmit'])){
 	$valErr = 0;
+	$captchaErr = 0;
 	// Store post data into session
 	$_SESSION['signup_post_data'] = $_POST;
+    if (!empty($_POST['g-recaptcha-response'])) {
+        $secretKey = GR_SECRET_KEY;
+        $ch = curl_init('https://www.google.com/recaptcha/api/siteverify?secret=' . $secretKey . '&response=' . $_POST['g-recaptcha-response']);
+        curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
+        $verifyResponse = curl_exec($ch);
+        $responseData = json_decode($verifyResponse);
+        if ($responseData->success){
+            if ($responseData->score < 0.6) {
+            	$captchaErr = 1;
+                $sessData['status']['type'] = 'error';
+                $sessData['status']['msg'] = 'Robot verification failed, please try again.';
+            }
+        } else {
+        	$captchaErr = 1;
+            $sessData['status']['type'] = 'error';
+            $sessData['status']['msg'] = 'Robot verification failed, please try again.';
+        }
+    } else {
+    	$captchaErr = 1;
+        $sessData['status']['type'] = 'error';
+        $sessData['status']['msg'] = 'Robot verification failed, please try again.';
+    }
+    if ($captchaErr == 1) {
+    	// Redirect back to the registration page
+        $_SESSION['sessData'] = $sessData;
+        MySessionHandler::commit(session_id());
+        header("Location:registration.php");
+    	exit;
+    }
 	// Get user inputs
 	$first_name = sanitizeInput($_POST['first_name']);
 	$last_name = sanitizeInput($_POST['last_name']);
 	$email = sanitizeInput($_POST['email']);

Subversion Repositories cheapmusic

(root)/www/login/userAccount.php – Rev 36 → 41