Guest User

Untitled

a guest
Aug 6th, 2017
75
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.90 KB | None | 0 0
  1. <!-- register.html, this page is where people can register new accounts -->
  2. <?php
  3. date_default_timezone_set('America/New_York');
  4. session_start();
  5. require("credentials.php");
  6. ?>
  7.  
  8. <html>
  9. <head>
  10. <script type='text/javascript' src='formcheck.js'></script>
  11. <script type='text/javascript' src='jquery-1.5.1.min.js'></script>
  12.  
  13. <?php
  14.  
  15. //server side string and account validation, werd
  16. if(isset($_GET["act"]) && strcmp($_GET["act"], "validate") == 0){
  17. echo "in function";
  18. //connect to database
  19. $conn = mysql_connect($dbhost, $dbuser, $dbpass) or die("Unable to connect to MySQL");
  20. //Select Database
  21. mysql_select_db($dbname) or die(mysql_error());
  22.  
  23.  
  24.  
  25. $err = validate_info($_POST, $sql_conn);
  26. //close connection
  27. mysql_close();
  28.  
  29.  
  30. //if error, print it. otherwise, create new account!
  31. if($err)
  32. echo '<script type="text/javascript">parent.showError("'.$err.'");</script>';
  33. else{
  34. //everything is ok, create session data and create the new account
  35.  
  36. $query = "insert into ".$dbname.".users (firstname, lastname,
  37. username, password, email) values ('".$_POST["n_first"]."', '".$_POST["n_last"]."', '".$_POST["n_name"]."',
  38. '".$_POST["n_pass"]."', '".$_POST["n_mail"]."');";
  39. //submit the query
  40. $query_result = mysql_query($query) or die(mysql_error());
  41. $lastInsertUserId = mysql_insert_id();
  42.  
  43. /*I'm almost 100% sure this is the worst way of redirecting the parent window from an iframe.
  44. Part of me regrets writing this function, but it works for now and i'll get around to fixing
  45. it later*/
  46. //redirect_parent();
  47. //header("Location: login.php");
  48. }
  49.  
  50. /*
  51. else if(isset($_GET["act"]) && strcmp($_GET["act"], "show") == 0){
  52. //;//do something
  53. }
  54. else{
  55. //header("Location: /");
  56. }*/
  57.  
  58.  
  59. }
  60.  
  61. //maybe move this function to utilities?
  62. function validate_info($userdata, $connection){
  63. //make sure first and last name only contain alpha-chars
  64. if(preg_match("/[^a-zA-Z]/", $userdata["n_first"]) || preg_match("/[^a-zA-Z]/", $userdata["n_last"]))
  65. return "First and Last name can only contain letters.";
  66.  
  67. //check if username only contains alpha-numeric characters
  68. if(preg_match("/[^a-zA-Z0-9]/", $userdata["n_name"]))
  69. return "Username can only contain letters and numbers";
  70.  
  71. //create the sql query
  72. $query = "select userid,username from ".$dbname.".users where username='".$userdata['n_name']."';";
  73.  
  74. //submit the query
  75. $query_result = mysql_query($query) or die(mysql_error());
  76. if($check = mysql_fetch_array($query_result))
  77. return "Username is taken";
  78.  
  79. //check password for illegal symbols
  80. if(preg_match("/[^a-zA-Z0-9!#&_?]/", $userdata["n_pass"]))
  81. return "Passwords can only contain letters, numbers, and ! # & _ ?";
  82.  
  83. return "";
  84. }
  85.  
  86. /* this function is so many sad faces :( :( :( :( */
  87. function redirect_parent(){
  88. echo '<script type="text/javascript">parent.window.location="/create/";</script>';
  89. }
  90.  
  91.  
  92. ?>
  93. <link rel='stylesheet' href='public/css/index.css' type='text/css' media='screen'/>
  94. <title>PIMS Registration</title>
  95. </head>
  96. <body>
  97. <div id='create'>
  98. <form name="signup" action="register.php?act=validate" method="post" enctype="multipart/form-data">
  99. <table>
  100.  
  101. <!-- First name -->
  102. <tr>
  103. <td valign="middle">
  104. First Name:
  105. </td>
  106. <td valign="middle">
  107. <input type="text" name="n_first">
  108. </td>
  109. </tr>
  110.  
  111. <!-- Last name -->
  112. <tr>
  113. <td valign="middle">
  114. Last Name:
  115. </td>
  116. <td valign="middle">
  117. <input type="text" name="n_last">
  118. </td>
  119. </tr>
  120.  
  121.  
  122. <!-- user name -->
  123. <tr>
  124. <td valign="middle">
  125. Username:
  126. </td>
  127. <td valign="middle">
  128. <input type="text" name="n_name">
  129. </td>
  130. </tr>
  131.  
  132. <!-- email address -->
  133. <tr>
  134. <td valign="middle">
  135. Email:
  136. </td>
  137. <td valign="middle">
  138. <input type="text" name="n_mail">
  139. </td>
  140. </tr>
  141.  
  142. <!-- password -->
  143. <tr>
  144. <td valign="middle">
  145. Password:
  146. </td>
  147. <td valign="middle">
  148. <input type="password" name="n_pass">
  149. </td>
  150. </tr>
  151.  
  152. <!-- confirm password -->
  153. <tr>
  154. <td valign="middle">
  155. Confirm Password:
  156. </td>
  157. <td valign="middle">
  158. <input type="password" name="n_cpass">
  159. </td>
  160. </tr>
  161.  
  162. <!-- Buttons -->
  163. <tr>
  164. <td/>
  165. <td align="right" valign="middle">
  166. <input type="button" value="Cancel" onClick="window.location = 'index.html'"/>
  167. <input type="submit" value="Create"/>
  168. </td>
  169. </tr>
  170.  
  171. </table>
  172. </form>
  173. </div>
  174. <div id="output"></div>
  175. </body>
  176. </html>
Advertisement
Add Comment
Please, Sign In to add comment