Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- //////////////////////////////////loginpost.php////////////////////////////////////////////////
- <?php
- session_start();
- if (isset($_POST['submit'])) {
- include 'connect.php';
- $usrn = mysqli_real_escape_string($conn, $_POST['uname']);
- $pasw = mysqli_real_escape_string($conn, $_POST['upassword']);
- //check if inputs are empty
- if (empty($usrn) || empty($pasw)) {
- header("Location: index.php?login=empty");
- exit();
- } else{
- $sql = "SELECT * FROM users WHERE username = '$usrn'";
- $result = mysqli_query($conn, $sql);
- $resultcheck = mysqli_num_rows($result);
- if ($resultcheck < 1){
- header("Location: index.php?login=error");
- exit();
- } else {
- if ($row = mysqli_fetch_assoc($result)) {
- //de-hasing wachtwoord
- $hashedpwdcheck = password_verify($pasw, $row['password']);
- if ($hashedpwdcheck == false) {
- header("Location: index.php?login=pwerror");
- exit();
- } elseif ($hashedpwdcheck == true) {
- //Log in the user here
- $_SESSION['u_id'] = $row['user_id'];
- $_SESSION['u_username'] = $row['username'];
- $_SESSION['u_pw'] = $row['password'];
- $_SESSION['u_name'] = $row['naam'];
- $_SESSION['u_adres'] = $row['adres'];
- $_SESSION['u_admin'] = $row['admin'];
- header("Location: index.php?login=success");
- exit();
- }
- }
- }
- }
- } else {
- header("Location: index.php?login=error");
- exit();
- }
- ?>
- //////////////////////////////////////////////////logout.php//////////////////////////////////////
- <?php
- if (isset($_POST['submit'])) {
- session_start();
- session_unset();
- session_destroy();
- header("Location: index.php");
- exit();
- }
- /////////////////////////////////////////////////register.php/////////////////////////////////////////////
- <?php
- include_once 'header.php';
- ?>
- <section>
- <div class="container">
- <form class="form-horizontal" action="/registerpost.php" method="POST">
- <div class="panel panel-warning">
- <div class="panel-heading">Registeren</div>
- <div class="panel-body">
- <label class="col-sm-2 control-label"><b>Gebruikersnaam</b></label>
- <div class="col-sm-10">
- <input type="text" class="form-control" placeholder="gebruikersnaam" name="username" required>
- </br>
- </div>
- <label class="col-sm-2 control-label"><b>Wachtwoord</b></label>
- <div class="col-sm-10">
- <input type="password" class="form-control" placeholder="wachtwoord" name="password" required>
- </br>
- </div>
- </br>
- <label class="col-sm-2 control-label"><b>Naam</b></label>
- <div class="col-sm-10">
- <input type="text" class="form-control" placeholder="Naam" name="naam" required>
- </br>
- </div>
- <label class="col-sm-2 control-label"><b>Adres</b></label>
- <div class="col-sm-10">
- <input type="text" class="form-control" placeholder="Adres" name="adres" >
- </br>
- </div>
- <div class="btn-group col-sm-offset-2 col-sm-10" role="group">
- <button type="button" class="btn btn-danger" name="cancel">Cancel</button>
- <button type="submit" class="btn btn-primary" name="submit">Sign Up</button>
- </div>
- </div>
- </div>
- </form>
- </div>
- </section>
- <?php
- include_once 'footer.php';
- ?>
- /////////////////////////////////////////////////////header.php//////////////////////////////////////////////
- <?php
- session_start();
- ?>
- <!DOCTYPE html>
- <html>
- <head>
- <title>
- </title>
- <!-- Latest compiled and minified CSS -->
- <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css" integrity="sha384-BVYiiSIFeK1dGmJRAkycuHAHRg32OmUcww7on3RYdg4Va+PmSTsz/K68vbdEjh4u" crossorigin="anonymous">
- <!-- Optional theme -->
- <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap-theme.min.css" integrity="sha384-rHyoN1iRsVXV4nD0JutlnGaslCJuC7uwjduW9SVrLvRYooPp2bWYgmgJQIXwl/Sp" crossorigin="anonymous">
- <!-- Latest compiled and minified JavaScript -->
- <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js" integrity="sha384-Tc5IQib027qvyjSMfHjOMaLkfuWVxZxUPnCJA7l2mCWNIpG9mGCD8wGNIcPD7Txa" crossorigin="anonymous"></script>
- </head>
- <body>
- <nav class="navbar navbar-default">
- <div class="container-fluid">
- <div class="navbar-header">
- <a class="navbar-brand" href="index.php">Home</a>
- <div class="navbar-left">
- <?php
- if (isset($_SESSION['u_id'])) {
- if ($_SESSION['u_admin']) {
- echo '<ul class="nav navbar-nav">
- <li><a href="verhuurd.php">Verhuurd autos</a></li>
- </ul>
- <form class="navbar-form navbar-left" action="logout.php" method="POST">
- <button type="submit" class="btn btn-danger" name="submit">Logout</button>
- </form>';
- }
- if (!$_SESSION['u_admin']) {
- echo '<ul class="nav navbar-nav">
- <li><a href="autohuren.php">Auto huren</a></li>
- </ul>
- <form class="navbar-form navbar-left" action="logout.php" method="POST">
- <button type="submit" class="btn btn-danger" name="submit">Logout</button>
- </form>';
- }
- } else {
- echo '<form class="navbar-form navbar-left" action="/loginpost.php" method="POST">
- <div class="form-group">
- <input type="text" class="form-control" placeholder="gebruikersnaam" name="uname" required>
- <input type="password" class="form-control" placeholder="wachtwoord" name="upassword" required>
- </div>
- <button type="submit" class="btn btn-default" name="submit">Login</button>
- </form>
- <ul class="nav navbar-nav">
- <li><a href="register.php">Registeren</a></li>
- </ul>';
- }
- ?>
- </div>
- </div>
- </div>
- </nav>
- /////////////////////////////////////////////////////////autohuren.php///////////////////////////////////////////////////
- <?php
- include_once 'header.php';
- ?>
- <div class="container">
- <div class="panel panel-warning">
- <div class="panel-heading">Auto huren</div>
- <div class="panel-body">
- <?php
- include 'connect.php';
- $sql = "SELECT * from auto WHERE status = 0";
- $res = mysqli_query($conn, $sql);
- while ($list2 = mysqli_fetch_assoc($res)){
- $kenteken = $list2['kenteken'];
- $merk = $list2['merk'];
- $type = $list2['type'];
- $price = $list2['dagprijs'];
- ?>
- <ul>
- <li><?php echo $kenteken;?></li>
- <li><?php echo $merk; ?></li>
- <li><?php echo $type; ?></li>
- <li>€<?php echo $price; ?> Per dag</li>
- </ul>
- <?php
- }
- ?>
- <form action="/hurenaction.php" method="POST">
- <label class="control-label"><b>Begindatum</b></label>
- <input type="text" class="form-control" placeholder="jaar-maand-dag" name="begindatum" required>
- <label class="control-label"><b>Einddatum</b></label>
- <input type="text" class="form-control" placeholder="jaar-maand-dag" name="einddatum" required>
- </p>
- <select name="autoselect">
- <?php
- $sql2 = "SELECT * from auto WHERE status = 0";
- $res2 = mysqli_query($conn, $sql);
- while($list = mysqli_fetch_assoc($res2)):; ?>
- <option value="<?php echo $list['kenteken']; ?>"><?php echo $list['kenteken']; ?></option>
- <?php endwhile; ?>
- </select>
- </p>
- <button type="submit" class="btn btn-primary" name="submit">Submit</button>
- </form>
- </div>
- </div>
- </div>
- </div>
- <?php
- include_once 'footer.php';
- ?>
- ////////////////////////////////////////////////////////hurenaction.php//////////////////////////////////////////
- <?php
- session_start();
- if (isset($_POST['submit'])) {
- include_once 'connect.php';
- $kenteken = mysqli_real_escape_string($conn, $_POST['autoselect']);
- $userid = $_SESSION['u_username'];
- $startdate = mysqli_real_escape_string($conn, $_POST['begindatum']);
- $enddate = mysqli_real_escape_string($conn, $_POST['einddatum']);
- //Error hanlers
- // Check for empty fields
- if (!preg_match("/^[a-zA-Z]*$/", $userid)){
- header("Location: autohuren.php?huren=invalid");
- } else {
- //insert data in de database
- $sql= "INSERT INTO factuur (factuurnummer, factuurdatum, kenteken, user_name, begindatum, einddatum) VALUES (NULL, NOW(), '$kenteken', '$userid', '$startdate', '$enddate');";
- $sql2 = "UPDATE auto SET status = 1 WHERE '$kenteken' = kenteken";
- mysqli_query($conn, $sql);
- mysqli_query($conn, $sql2);
- header("Location: autohuren.php?signup=success");
- exit();
- }
- } else {
- header("Location: autohuren.php");
- exit();
- }
- ///////////////////////////////////////////////////////registerpost.php/////////////////////////////////////////////
- <?php
- if (isset($_POST['submit'])) {
- include_once 'connect.php';
- $usrn = mysqli_real_escape_string($conn, $_POST['username']);
- $pasw = mysqli_real_escape_string($conn, $_POST['password']);
- $name = mysqli_real_escape_string($conn, $_POST['naam']);
- $adre = mysqli_real_escape_string($conn, $_POST['adres']);
- //Error hanlers
- // Check for empty fields
- if (!preg_match("/^[a-zA-Z]*$/", $name)){
- header("Location: register.php?signup=invalid");
- } else {
- $sql = "SELECT * FROM users WHERE username='$usrn'";
- $result = mysqli_query($conn, $sql);
- $resultcheck = mysqli_num_rows($result);
- if($resultcheck > 0){
- header("Location: register.php?signup=usertaken");
- exit();
- } else {
- //hashing password//
- $hashedpasw = password_hash($pasw, PASSWORD_DEFAULT);
- //insert gebruikerin de database
- $sql= "INSERT INTO users (username, password, naam, adres) VALUES ('$usrn', '$hashedpasw', '$name', '$adre');";
- mysqli_query($conn, $sql);
- header("Location: register.php?signup=success");
- exit();
- }
- }
- } else {
- header("Location: register.php");
- exit();
- }
- ?>
- /////////////////////////////////////////////////////footer.php///////////////////////////////////////////////////
- </body>
- </html>
- ///////////////////////////////////////////////////index.php////////////////////////////////////////////////////////
- <?php
- include_once 'header.php';
- ?>
- <section>
- <div class="container">
- <h2>Welcome to Rent-a-Car</h2>
- <?php
- if (isset($_SESSION['u_id'])) {
- if (!$_SESSION['u_admin']) {
- echo "<h4>Gebruiker ".$_SESSION['u_username']. "</h4>";
- } elseif ($_SESSION['u_admin']){
- echo "<h4>Medewerker ".$_SESSION['u_username']. "</h4>";
- }
- }
- ?>
- </div>
- <?php
- include_once 'footer.php';
- ?>
- ///////////////////////////////////////////////////////////connect.php////////////////////////////////////////////////
- <?php
- $dbServername ="localhost";
- $dbUsername = "root";
- $dbPassword="";
- $dbName = "mywebsite";
- $conn = mysqli_connect($dbServername, $dbUsername, $dbPassword, $dbName);
- ?>
- /////////////////////////////////////////////////////////verhuurd.php//////////////////////////////////////////////////
- <?php
- include_once 'header.php';
- ?>
- <div class="container">
- <div class="panel panel-primary">
- <div class="panel-heading"></br></p></div>
- <div class="panel-body">
- <?php
- include 'connect.php';
- $sql = "SELECT * FROM auto WHERE status = 1 ";
- $res = mysqli_query($conn, $sql);
- while($row = mysqli_fetch_assoc($res)){
- echo "<h2>Verhuud auto's</h2></p><b>Kenteken: </b>".$row['kenteken'].'</br><b>Merk: </b> ' .$row['merk'].'</br><b>Auto type: </b>' .$row['type'].'</br><b>Huurprijs per dag: </b> €' .$row['dagprijs'].'</br>' ;
- $sql2 = "SELECT * FROM factuur WHERE kenteken = '".$row['kenteken']."'";
- $res2 = mysqli_query($conn, $sql2);
- if($row2 = mysqli_fetch_array($res2)){
- echo '<b>Factuurdatum:</b> '.$row2['factuurdatum'].'</br><b>Naam huurder:</b> ' .$row2['user_name'].'</br><b>Begindatum:</b> ' .$row2['begindatum'].'</br><b>Einddatum:</b> ' .$row2['einddatum'].'</p>' ;
- }
- }
- ?>
- <input type="button" value="Print" onclick="javascript: window.print();">
- </div>
- </div>
- </div>
- <?php
- include_once 'footer.php';
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement