Advertisement
Guest User

Untitled

a guest
Mar 1st, 2015
307
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 2.11 KB | None | 0 0
  1. <?php
  2.  
  3.        
  4.         session_start();
  5.        
  6.         if ($_GET["logout"]==1 AND $_SESSION['id']) { session_destroy();
  7.        
  8.             $message="You have been logged out. Have a nice day!";
  9.        
  10.         }
  11.        
  12.         include("connection.php");
  13.        
  14.    
  15.         if ($_POST['submit']=="Sign Up") {
  16.  
  17.             if (!$_POST['email']) $error.="<br />Please enter your email";
  18.                 else if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) $error.="<br />Please enter a valid email";
  19.        
  20.        
  21.         if (!$_POST['password']) $error.="<br />Please enter your password";
  22.         else {
  23.  
  24.  
  25.             if (strlen($_POST['password'])<8) $error.="<br />Please enter at least 8 characters";
  26.  
  27.             if(!preg_match('/[A-Z]/', $_POST['password'])) $error.= "<br />Please include min 1 capital letter";
  28.         }
  29.             if ($error) $error = "There were error(s) in your sign up details:".$error;
  30.            
  31.             else {
  32.            
  33.        
  34.            
  35.             $query= "SELECT * FROM `users` WHERE email ='".mysqli_real_escape_string($link, $_POST['email'])."'";
  36.            
  37.             $result = mysqli_query($link, $query); 
  38.            
  39.             $results = mysqli_num_rows($result);
  40.            
  41.             if ($results) $error = "That email is already registered. Do you want to log in?";
  42.            
  43.             else {
  44.            
  45.             $query = "INSERT INTO `users` (`email`, `password`) VALUES ('".mysqli_real_escape_string($link, $_POST['email'])."', '".md5(md5($_POST['email']).$_POST['password'])."')";
  46.    
  47.             mysqli_query($link, $query);
  48.            
  49.             $success="You've been signed up!";
  50.            
  51.             $_SESSION['id']= mysqli_insert_id($link);
  52.            
  53.             header("Location:mainpage.php");
  54.            
  55.             }  
  56.            
  57.         }
  58.    
  59.     }
  60.  
  61.     if ($_POST['submit'] == "Log In") {
  62.    
  63.         $query = "SELECT * FROM users WHERE email='".mysqli_real_escape_string($link, $_POST['loginemail'])."'AND
  64.         password='" .md5(md5($_POST['loginemail']) .$_POST['loginpassword']). "'LIMIT 1";
  65.  
  66.         $result = mysqli_query($link, $query);
  67.        
  68.         $row = mysqli_fetch_array($result);
  69.        
  70.         if($row){
  71.        
  72.             $_SESSION['id']=$row['id'];
  73.            
  74.             header("Location:mainpage.php");
  75.            
  76.        
  77.        
  78.    
  79.         } else {
  80.        
  81.             $error = "We could not find a user with that email and password. Please try again.";
  82.            
  83.            
  84.        
  85.         }
  86.    
  87.     }
  88.    
  89.    
  90. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement