<?php$email = htmlentities($_REQUEST["email"]);$password = htmlentities($_

1. <?php
2.  
3. $email = htmlentities($_REQUEST["email"]);
4. $password = htmlentities($_REQUEST["password"]);
5. $fullname = htmlentities($_REQUEST["fullname"]);
6. $phone = htmlentities($_REQUEST["phone"]);
7.  
8. if ((empty($email)) || (empty($password)) || (empty($fullname)) || (empty($phone))){
9. $returnArray["status"] = "400";
10. $returnArray["message"] = "Missing required information";
11. echo json_encode($returnArray);
12. return;
13.  
14.  
15. }
16. $salt = openssl_random_pseudo_bytes(20);
17. $secured_password = sha1($password . $salt);
18.  
19.  
20.  
21. $file = parse_ini_file("../../../mwhba.ini");
22.  
23.  
24. $host = trim($file["dbhost"]);
25. $user = trim($file["dbuser"]);
26. $pass = trim($file["dbpass"]);
27. $name = trim($file["dbname"]);
28.  
29.  
30. require ("access.php");
31. $access = new access($host, $user, $pass, $name);
32. $access->connect();
33.  
34.  
35.  
36. $result = $access->registerUser($email , $secured_password , $salt , $fullname , $phone);
37. if($result){
38.  
39.  
40. $user = $access->selectUser($email);
41. $returnArray["status"] = "200";
42. $returnArray["message"] = "Successfully registered";
43. $returnArray["id"] = $user["id"];
44. $returnArray["email"] = $user["email"];
45. $returnArray["fullname"] = $user["fullname"];
46. $returnArray["phone"] = $user["phone"];
47. $returnArray["ava"] = $user["ava"];
48.  
49.  
50.  
51. }else{
52.  
53. $returnArray["status"] = "400";
54. $returnArray["message"] = "could not register with provided information";
55.  
56.  
57. }
58.  
59. $access->disconnect();
60.  
61. echo json_encode($returnArray);
62.  
63.  
64.  
65.  
66. ?>