API tools faq
paste
Guest User

php system fixed

a guest
Jul 22nd, 2012
76
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.28 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. class register {
  3. // MYSQL CONNECTION
  4. function connect_db() {
  5. $connect = mysql_connect('localhost', 'root', '');
  6. if(!$connect) {
  7. die ("Could not connect: " . mysql_error());
  8. }
  9. else {
  10. mysql_query ("SET NAMES 'utf8'");
  11. mysql_query ("SET CHARACTER SET 'utf8'");
  12. mysql_query ("SET character_set_instance = 'utf8'");
  13. mysql_query ("utf8");
  14. mysql_select_db('my_db');
  15. }
  16. }
  17.  
  18. if($_POST['register']) {
  19.  
  20. $username = $_POST['username'];
  21. $password = $_POST['my_password'];
  22. $vpass = $_POST['valid_password'];
  23. $email = $_POST['email'];
  24. $terms = $_POST['terms'];
  25.  
  26. // CHECKING IF USER EXISTS
  27. function userCheck() {
  28. global $username;
  29. $connect = connect_db();
  30. if (!$connect) {
  31. die (mysql_error());
  32. }
  33. else {
  34. $query = mysql_query("SELECT `username` FROM `userlist` WHERE `username`=" . $username);
  35. $fetch = mysql_fetch_row($query);
  36. if($fetch[0]) {
  37. return true;
  38. }
  39. else {
  40. return false;
  41. }
  42. }
  43. }
  44.  
  45. // CHECKING IF EMAIL EXISTS
  46. function emailCheck() {
  47. global $email;
  48. $connect = connect_db();
  49. if (!$connect) {
  50. die (mysql_error());
  51. }
  52. else {
  53. $query = mysql_query("SELECT `email` FROM userlist WHERE `email`=" . $email);
  54. $fetch = mysql_fetch_row($query);
  55. if($fetch[0]) {
  56. return true;
  57. }
  58. else {
  59. return false;
  60. }
  61. }
  62. }
  63. $usercheck = userCheck();
  64. $emailcheck = emailCheck();
  65.  
  66. // CHECKING IF PASSWORD IS TOO SHORT/TOO LONG
  67. function passwordStrlen() {
  68. global $password;
  69. $strlen = strlen($password);
  70. if($strlen > 12 OR $strlen < 5) {
  71. return false;
  72. }
  73. else {
  74. return true;
  75. }
  76. }
  77. $passwordstrlen = passwordStrlen();
  78.  
  79. if(empty($username) OR empty($password) OR empty($email) OR empty($vpass) OR empty($terms)) {
  80. echo "You must fill out all inputs.";
  81. }
  82. elseif($password != $vpass) {
  83. echo "Password isn't valid";
  84. }
  85. elseif($usercheck) {
  86. echo "Username exists. Choose another.";
  87. }
  88. elseif($emailcheck) {
  89. echo "Email exists. Choose another.";
  90. }
  91. elseif (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
  92. echo "Email isn't valid.";
  93. }
  94. elseif (!$passwordstrlen) {
  95. echo "Password must be 5 to 12 characters.";
  96. }
  97. else {
  98. $username = htmlspecialchars($username);
  99. $email = htmlspecialchars($email);
  100. $connect = connect_db();
  101. if (!$connect)
  102. die (mysql_error());
  103. else {
  104. mysql_query("INSERT INTO userlist(username, password, email) VALUES('" . $username . "', '" . $password . "', '" . $email . "')");
  105. echo "Dear " . $username . ", your details have been recieved, you are now registered to the system. please <a href='login.php'>login</a> so you can enjoy your features.";
  106. }
  107. }
  108. }
  109. }
  110.  
  111. class login {
  112. $register = new register;
  113. $connect = $register->connect_db();
  114.  
  115. if (!$connect) {
  116. die (mysql_error());
  117. }
  118. else {
  119. mysql_query ("SET NAMES 'utf8'");
  120. mysql_query ("SET CHARACTER SET 'utf8'");
  121. mysql_query ("SET character_set_instance = 'utf8'");
  122. mysql_query ("utf8");
  123. mysql_select_db('my_db');
  124. }
  125. $username = $_POST['username'];
  126. $password = $_POST['password'];
  127.  
  128. // CHECKING IF USER EXISTS (DIFFERENTLY)
  129. function isReal() {
  130. global $username;
  131. global $password;
  132. $connect = connect_db();
  133. if (!$connect) {
  134. die (mysql_error());
  135. }
  136. else {
  137. $query = mysql_query("SELECT `password` FROM `userlist` WHERE `username`=" . $username);
  138. $fetch = mysql_fetch_row($query);
  139. if($fetch[0] == $password) {
  140. return true;
  141. }
  142. else {
  143. return false;
  144. }
  145. }
  146. }
  147. $is_real = isReal();
  148.  
  149. if (empty($username) OR empty($password)) {
  150. echo "You must fill out all inputs";
  151. }
  152. elseif (!$is_real) {
  153. echo "Username or password is wrong, try again";
  154. }
  155. else {
  156. $username = htmlspecialchars($username);
  157. if ($connect) {
  158. setcookie("username", $username, time()+3600);
  159. setcookie("password", $password, time()+3600);
  160. session_start();
  161. $_SESSION['user'] = $_COOKIE['username'];
  162. mysql_close($connect);
  163. echo "You are now logged in to the system";
  164. }
  165. }
  166. function logoutNow() {
  167. if ($_GET['logout'] == 'yes' AND isset($_SESSION['user'])) {
  168. setcookie("username", NULL, time()-3600);
  169. setcookie("password", NULL, time()-3600);
  170. session_destroy();
  171. }
  172. }
  173. }
  174. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!