From f306dda4f91d32e4c24adc6d022604854e5a7028 Mon Sep 17 00:00:00 2001
From: Krombel <krombel@krombel.de>
Date: Sun, 11 Feb 2018 19:48:38 +0100
Subject: [PATCH] do not request password on register request

the aim is that the initial password is
generated and send on register approval
---
 lang/lang.de.php |  2 +-
 register.php     | 24 ++----------------------
 2 files changed, 3 insertions(+), 23 deletions(-)

diff --git a/lang/lang.de.php b/lang/lang.de.php
index c1f4489..4ba80f9 100644
--- a/lang/lang.de.php
+++ b/lang/lang.de.php
@@ -1,7 +1,7 @@
 <?php
 $language = array(
 "UNKNOWN_SESSION" => "Sitzungstoken nicht vorhanden oder ungültig.",
-"UNKNOWN_USER_OR_PASSWORD" => "Nutzername und/oder Passwort(-Wiederholung) fehlen",
+"UNKNOWN_USERNAME" => "Nutzername fehlt",
 "USERNAME_LENGTH_INVALID" => "Entweder mehr als 20 oder weniger als 3 Zeichen für den Nutzernamen verwendet",
 "USERNAME_NOT_ALNUM" => "Nutzername ist nicht alphanumerisch",
 "PASSWORD_NOT_MATCH" => "Passwörter stimmen nicht überein",
diff --git a/register.php b/register.php
index 92683dd..eb177b4 100644
--- a/register.php
+++ b/register.php
@@ -18,8 +18,8 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
 		// token not present or invalid
 		$message = $language["UNKNOWN_SESSION"];
 	}
-	elseif (!isset($_POST["username"], $_POST["password"], $_POST["password_confirm"])) {
-		$message = $language["UNKNOWN_USER_OR_PASSWORD"];
+	elseif (!isset($_POST["username"])) {
+		$message = $language["UNKNOWN_USERNAME"];
 	}
 	elseif (strlen($_POST["username"] > 20 || strlen($_POST["username"]) < 3)) {
 		$message = $language["USERNAME_LENGTH_INVALID"];
@@ -27,9 +27,6 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
 	elseif (ctype_alnum($_POST['username']) != true) {
 		$message = $language["USERNAME_NOT_ALNUM"];
 	}
-	elseif ($_POST["password"] != $_POST["password_confirm"]) {
-		$message = $language["PASSWORD_NOT_MATCH"];
-	}
 	elseif (isset($_POST["note"]) && strlen($_POST["note"]) > 50) {
 		$message = $language["NOTE_LENGTH_EXEEDED"];
 	}
@@ -178,23 +175,6 @@ user_name.oninvalid = function(event) {
 user_name.onkeyup = function (event) {
 	event.target.setCustomValidity("");
 }
-<?php
-/** var password = document.getElementById("password")
-, confirm_password = document.getElementById("password_confirm");
-
-function validatePassword(){
-	if(password.value != confirm_password.value) {
-		confirm_password.setCustomValidity("Passwörter stimmen nicht überein");
-	} else {
-		confirm_password.setCustomValidity('');
-	}
-}
-
-password.onchange = validatePassword;
-confirm_password.onkeyup = validatePassword;
-*/
-} /* close METHOD != POST */
-?>
 		</script>
 	</body>
 </html>