Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if(isset($_POST['post_username']) && isset($_POST['post_password']) && isset($_POST['post_email']) && isset($_POST['post_iscompany']) && isset($_POST['post_sessionid'])){
- require_once 'reg_header.php';
- $company = $_POST['post_iscompany'];
- if($company){
- $company = 'db_companys';
- }else{
- $company = 'db_users';
- }
- $uname = strip_tags($_POST['post_username']);
- $upass = strip_tags($_POST['post_password']);
- $umail = strip_tags($_POST['post_email']);
- $usession = strip_tags($_POST['post_sessionid']);
- $uname = $DBcon->real_escape_string($uname);
- $upass = $DBcon->real_escape_string($upass);
- $umail = $DBcon->real_escape_string($umail);
- $usession = $DBcon->real_escape_string($usession);
- $query = $DBcon->query("SELECT db_username FROM ".$company." WHERE db_username='$uname' || db_email='$umail'");
- $row=$query->fetch_array();
- $count = $query->num_rows;
- if($count < 1){
- $stmt = $DBcon->prepare("INSERT INTO ".$company." (db_username, db_password, db_sessionkey, db_email) VALUES (?, ?, ?, ?)");
- $stmt->bind_param("ssss", $p_username, $p_password, $p_session, $p_mail);
- $p_username = $uname;
- $p_password = password_hash($upass, PASSWORD_DEFAULT);
- $p_session = $usession;
- $p_mail = $umail;
- if($stmt->execute()){
- echo 'SUCCESS_REGISTER';
- }else{
- echo file_get_contents('../data/errorString') . 'ERROR_UNKNOWN';
- }
- $stmt->close();
- }else{
- echo file_get_contents('../data/errorString') . 'ERROR_ALREADY_EXISTS';
- }
- }else{
- echo file_get_contents('../data/errorString') . 'ERROR_SIGNIN_NOSET';
- }
- $DBcon->close();
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
