reg.php

1. <?php
2. session_start();
3.  
4.  
5. if(isset($_POST['submit'])){
6. include '../db.php';
7.  
8. $username = $_POST['username'];
9. $email = $_POST['email'];
10. $password = $_POST['password'];
11. $country = $_POST['country'];
12.  
13. if(empty($username) || empty($email) || empty($password) || empty($country)){
14. header("Location: ../login.php?register=empty");
15. exit();
16.  
17. } else{
18. if(!preg_match("/^[a-zA-Z]*$/", $username)){
19. header("Location: ../login.php?register=invalid");
20. exit();
21. }else{
22. if(!filter_var($email, FILTER_VALIDATE_EMAIL)){
23. header("Location: ../login.php?register=email");
24. exit();
25. } else {
26. $sql = "SELECT * FROM users WHERE username='$username'";
27. $result = mysqli_query($conn, $sql);
28. $resultCheck = mysqli_num_rows($result);
29.  
30. if ($resultCheck > 0) {
31. header("Location: ../login.php?register=usertaken");
32. exit();
33. } else {
34. $hashedpwd = password_hash($password, PASSWORD_DEFAULT);
35.  
36. $sql = "INSERT INTO users (username, email, password, country)
37. VALUES ('$username','$email', '$hashedPwd', '$country')";
38. $result = mysqli_query($conn, $sql);
39. header("Location: ../index.php?register=success");
40. exit();
41.  
42. }
43.  
44. }
45. }
46. }
47.  
48.  
49. } else{
50. header("Location: ../login.php");
51. exit();
52. }
53.  
54. ?>