ansaurus

Question

Only execute script if entered email is from a specific domain

Answer 1

+1 A:

You probably need to use /\b[A-Z0-9\._%+-]+@((euro\.|asia\.)secondgearsoftware|secondgearllc)\.com/i (note the i at the end) in order to make the regex case-insensitive. I also dropped the +s as they allow for infinite repetition which doesn't make sense in this case.

Tim Pietzcker 2009-11-30 20:49:05

Answer 2

+1 A:

Your regular expression is a bit off (it will allow [email protected]) and can be simplified:

$pattern = '/@((euro\.|asia\.)?secondgearsoftware|secondgearllc)\.com$/i';

I've made it case-insensitive and anchored it to the end of the string.

There doesn't seem to be a need to check what's before the "@" - you should have a proper validation routine for that if necessary, but it seems you just want to check if the email address belongs to one of these domains.

Greg 2009-11-30 20:56:35

Answer 3

A:

I suggest you drop the regex and simply use stristr to check if it matches. Something like this should work:

<?php
// Fill out as needed
$domains = array('secondgearsoftware.com', 'secondgearllc.com');

$email = urldecode($_POST['email']);
$found = false;
for(i=0;i<count($domains);i++)
{
    if ($domains[i] == stristr($email, $domains[i]))
        $found = true;
}

if ($found) ...
?>

The function stristr returns the e-mail address from the part where it found a match to the end, which should be the same as the match in this case. Technically there could be something prior to the domains (fkdskjfsdksfks.secondgeartsoftware.com), but you can just insert "@domainneeded.com" to prevent this. This code is also slightly longer, but easily extended with new domains without worrying about regex.

Christian P. 2009-11-30 21:16:33

Much cleaner. Thanks! only thing is your i variables should be $i, no?

Justin Williams 2009-11-30 21:32:37

This is wrong. This will allow any weird composition of the domain names even in the user name part. Do not use this if you want real protection.

BYK 2009-11-30 22:15:37

@Justin: Too much C programming on my part. Use $i ofcourse ;)@BYK: If you entered secondgearsoftware.com@somethingelse, stristr would return it all, and the == comparison would return false. The only case where it returns true is if the LAST part of the e-mail address is the same as the domain, hence doing what the user asked.

Christian P. 2009-12-01 11:08:40

way too much c programming... use foreach no $i needed... foreach($domains as $domain){

ftrotter 2010-03-16 17:51:15

Answer 4

+1 A:

Here's an easy to maintain solution using regular expressions

$domains = array(
    'secondgearsoftware',
    'secondgearllc',
    'euro\.secondgearsoftware',
    'asia\.secondgearsoftware'
);
preg_match("`@(" .implode("|", $domains). ")\.com$`i", $userProvidedEmail);

Here's a couple of tests:

$tests = array(
    '[email protected]',
    '[email protected]',
    '[email protected]',
    '[email protected]',
    '[email protected]',
    '[email protected]',
    '[email protected]',
    '[email protected]'
);

foreach ( $tests as $test ) { 
    echo preg_match("`@(" .implode("|", $domains). ")\.com$`i", $test), 
         " <- $test\n";
}

Result (1 is passing of course)

1 <- [email protected]
1 <- [email protected]
0 <- [email protected]
0 <- [email protected]
0 <- [email protected]
1 <- [email protected]
0 <- [email protected]
1 <- [email protected]

Justin Johnson 2009-11-30 21:53:11

This is easy to use but it introduces a performance hit because of the additional array construction and implode function.

BYK 2009-11-30 22:14:04

This implementation is advantageous and necessary in cases where the list of valid domains is mutable or generalization is necessary. Otherwise, if the list of valid domains is not subject to change often, I would just hard code it. But, being that the list is small, performance concerns are negligible.

Justin Johnson 2009-12-01 00:01:05

ansaurus

tags:

views:

answers:

Only execute script if entered email is from a specific domain

related questions