Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- // initializing variables
- $server = "localhost";
- $user = "id7022262_base_yusran";
- $password = "yusran8";
- $nama_database = "id7022262_pendaftaran_siswa";
- $errors = array();
- // connect to the database
- $db = mysqli_connect($server, $user, $password, $nama_database);
- // REGISTER USER
- if (isset($_POST['reg_user'])) {
- // receive all input values from the form
- /* $username = mysqli_real_escape_string($db, $_POST['username']);
- $email = mysqli_real_escape_string($db, $_POST['email']);
- $password_1 = mysqli_real_escape_string($db, $_POST['password_1']);
- $password_2 = mysqli_real_escape_string($db, $_POST['password_2']);
- */
- $username = $_POST['username'];
- $email = $_POST['email'];
- $password_1 = $_POST['password_1'];
- $password_2 = $_POST['password_2'];
- // form validation: ensure that the form is correctly filled ...
- // by adding (array_push()) corresponding error unto $errors array
- if (empty($username)) { array_push($errors, "Username is required"); }
- if (empty($email)) { array_push($errors, "Email is required"); }
- if (empty($password_1)) { array_push($errors, "Password is required"); }
- if ($password_1 != $password_2) {
- array_push($errors, "The two passwords do not match");
- }
- // first check the database to make sure
- // a user does not already exist with the same username and/or email
- $user_check_query = "INSERT INTO login_siswa (username, email, password_1) VALUE ('$username', '$email', '$password_1')";//"SELECT * FROM users WHERE username='$username' OR email='$email' LIMIT 1";
- $result = mysqli_query($db, $user_check_query);
- $user = mysqli_fetch_assoc($result);
- if ($user) { // if user exists
- if ($user['username'] === $username) {
- array_push($errors, "Username already exists");
- }
- if ($user['email'] === $email) {
- array_push($errors, "email already exists");
- }
- }
- // Finally, register user if there are no errors in the form
- else if (count($errors) == 0) {
- $password = md5($password_1);//encrypt the password before saving in the database
- $query = "INSERT INTO login_siswa (username, email, password_1)
- VALUES('$username', '$email', '$password_1')";
- mysqli_query($db, $query);
- $_SESSION['username'] = $username;
- $_SESSION['success'] = "You are now logged in";
- header('location: index.php');
- }
- }
- // ...
- if (isset($_POST['login_user'])) {
- // $username = mysqli_real_escape_string($db, $_POST['username']);
- // $password = mysqli_real_escape_string($db, $_POST['password_1']);
- $username = $_POST['username'];
- $password_1 = $_POST['password_1'];
- /*
- $id = $_POST['id'];
- $nama = $_POST['nama'];
- $alamat = $_POST['alamat'];
- $jk = $_POST['jenis_kelamin'];
- $agama = $_POST['agama'];
- $sekolah = $_POST['sekolah_asal'];
- */
- if (empty($username)) {
- array_push($errors, "Username is required");
- }
- if (empty($password_1)) {
- array_push($errors, "Password is required");
- }
- if (count($errors) == 0) {
- $password = md5($password);
- $query = "SELECT * FROM login_siswa WHERE username='$username' AND password_1='$password_1'";
- $results = mysqli_query($db, $query);
- if (mysqli_num_rows($results) == 1) {
- $_SESSION['username'] = $username;
- $_SESSION['success'] = "You are now logged in";
- header('location: index.php');
- }else {
- array_push($errors, "Wrong username/password combination");
- }
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement