80 lines
3.1 KiB
PHP
Executable File
80 lines
3.1 KiB
PHP
Executable File
<?php
|
|
|
|
session_set_cookie_params(3600);
|
|
session_start();
|
|
|
|
$email = $_POST['email'];
|
|
$fname = $_POST['full_name'];
|
|
$subject = $_POST['subject'];
|
|
$message = $_POST['message'];
|
|
|
|
$pattern = '/^(?!(?:(?:\\x22?\\x5C[\\x00-\\x7E]\\x22?)|(?:\\x22?[^\\x5C\\x22]\\x22?)){255,})(?!(?:(?:\\x22?\\x5C[\\x00-\\x7E]\\x22?)|(?:\\x22?[^\\x5C\\x22]\\x22?)){65,}@)(?:(?:[\\x21\\x23-\\x27\\x2A\\x2B\\x2D\\x2F-\\x39\\x3D\\x3F\\x5E-\\x7E]+)|(?:\\x22(?:[\\x01-\\x08\\x0B\\x0C\\x0E-\\x1F\\x21\\x23-\\x5B\\x5D-\\x7F]|(?:\\x5C[\\x00-\\x7F]))*\\x22))(?:\\.(?:(?:[\\x21\\x23-\\x27\\x2A\\x2B\\x2D\\x2F-\\x39\\x3D\\x3F\\x5E-\\x7E]+)|(?:\\x22(?:[\\x01-\\x08\\x0B\\x0C\\x0E-\\x1F\\x21\\x23-\\x5B\\x5D-\\x7F]|(?:\\x5C[\\x00-\\x7F]))*\\x22)))*@(?:(?:(?!.*[^.]{64,})(?:(?:(?:xn--)?[a-z0-9]+(?:-+[a-z0-9]+)*\\.){1,126}){1,}(?:(?:[a-z][a-z0-9]*)|(?:(?:xn--)[a-z0-9]+))(?:-+[a-z0-9]+)*)|(?:\\[(?:(?:IPv6:(?:(?:[a-f0-9]{1,4}(?::[a-f0-9]{1,4}){7})|(?:(?!(?:.*[a-f0-9][:\\]]){7,})(?:[a-f0-9]{1,4}(?::[a-f0-9]{1,4}){0,5})?::(?:[a-f0-9]{1,4}(?::[a-f0-9]{1,4}){0,5})?)))|(?:(?:IPv6:(?:(?:[a-f0-9]{1,4}(?::[a-f0-9]{1,4}){5}:)|(?:(?!(?:.*[a-f0-9]:){5,})(?:[a-f0-9]{1,4}(?::[a-f0-9]{1,4}){0,3})?::(?:[a-f0-9]{1,4}(?::[a-f0-9]{1,4}){0,3}:)?)))?(?:(?:25[0-5])|(?:2[0-4][0-9])|(?:1[0-9]{2})|(?:[1-9]?[0-9]))(?:\\.(?:(?:25[0-5])|(?:2[0-4][0-9])|(?:1[0-9]{2})|(?:[1-9]?[0-9]))){3}))\\]))$/iD';
|
|
|
|
if (!isset($email) || preg_match($pattern, $email) !== 1) {
|
|
http_response_code(400);
|
|
header('Content-Type: application/json');
|
|
die(json_encode([
|
|
'field' => 'email',
|
|
'message' => 'Error: A valid email address is required.'
|
|
]));
|
|
}
|
|
if (!isset($fname)) {
|
|
http_response_code(400);
|
|
header('Content-Type: application/json');
|
|
die(json_encode([
|
|
'field' => 'full_name',
|
|
'message' => 'Error: A first and last name are required.'
|
|
]));
|
|
}
|
|
if (!isset($message)) {
|
|
http_response_code(400);
|
|
header('Content-Type: application/json');
|
|
die(json_encode([
|
|
'field' => 'email',
|
|
'message' => 'Error: A message is required.'
|
|
]));
|
|
}
|
|
if (!isset($subject)) {
|
|
$subject = null;
|
|
}
|
|
$conn = new mysqli("localhost", "mileslinden", "Daiso@6969", "mileslinden");
|
|
|
|
$query = $conn->prepare(
|
|
"INSERT INTO messages (`email`, `full_name`, `subject`, `message`, `send_date`) VALUES (?, ?, ?, ?, ?)"
|
|
);
|
|
if (!$query) {
|
|
http_response_code(500);
|
|
header('Content-Type: application/json');
|
|
die(json_encode(['message' => $conn->error]));
|
|
}
|
|
if (!isset($_SESSION['messages'])) {
|
|
$_SESSION['messages'] = 0;
|
|
} else if ($_SESSION['messages'] >= 5) {
|
|
http_response_code(429);
|
|
header('Content-Type: application/json');
|
|
die(json_encode(['message' => 'You are sending messages too often.']));
|
|
}
|
|
$query->bind_param(
|
|
"sssss",
|
|
$email, $fname, $subject, $message,
|
|
date("Y-m-d H:i:s")
|
|
);
|
|
if (!$query->execute()) {
|
|
http_response_code(500);
|
|
header('Content-Type: application/json');
|
|
die(json_encode(['message' => $query->error, 'errno' => $query->errno]));
|
|
}
|
|
$_SESSION['messages']++;
|
|
|
|
?>
|
|
<!DOCTYPE HTML>
|
|
<html lang="en">
|
|
<head>
|
|
<meta charset="utf-8">
|
|
<title>Miles Linden for San Jose City Council</title>
|
|
</head>
|
|
<body>
|
|
<h1>Your message was sent successfully.</h1>
|
|
</body>
|
|
</html>
|