-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathformS.php
76 lines (67 loc) · 2.17 KB
/
formS.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
<!-- sign up form handler -->
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Sign Up form handler</title>
</head>
<body>
<?php
$hostname = "us-cdbr-east-05.cleardb.net";
$username = "b5360e8317bffd";
$password = "bff46df7";
$database = "heroku_9e9ee605a716345";
$user = $_POST['user'];
$email = $_POST['email'];
$pass = $_POST['pass'];
$first = $_POST['fname'];
$last = $_POST['lname'];
$user = addslashes($user);
$email = addslashes($email);
$first = addslashes($first);
$last = addslashes($last);
$pass = addslashes($pass);
$pass = password_hash($pass,PASSWORD_BCRYPT);
try {
//connect to database
$conn = new PDO("mysql:host=$hostname;dbname=$database", $username, $password);
// set the PDO error mode to exception
$conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
//Write database
$result = $conn->query("select * from user");
while($row = $result->fetch())
{
$name = $row['Username'];
if($name == $user)
{
session_start();
$_SESSION['errMsg'] = "Repeated Username";
header("Location: ./sign.php");
exit();
}
}
$sql="INSERT INTO user (Fname, Lname, Username, Password, Email)
Values ('".$first."','".$last."','".$user."','".$pass."','".$email."')";
$conn->exec($sql);
//sql code
//$conn->exec(variable or code)
} catch(PDOException $e) {
echo "Connection failed: " . $e->getMessage();
};
session_start();
$_SESSION['fname'] = $_POST['fname'];
$_SESSION['lname'] = $_POST['lname'];
$_SESSION['username'] = $_POST['user'];
$_SESSION['email'] = $_POST['email'];
$_SESSION['password'] = $_POST['pass'];
$sql = "select * from `user` where `Username` like '".$user."'";
$result = $conn->query($sql);
$row = $result->fetch();
$_SESSION['user_id'] = $row['User_ID'];
header("Location: ./main.php");
exit();
?>
</body>
</html>