<?php include("sql.php"); session_start(); function Fix($str) {

1. <?php
2. include("sql.php");
3. session_start();
4. function Fix($str) {
5. $str = trim($str);
6. if(get_magic_quotes_gpc()) {
7. $str = stripslashes($str);
8. }
9. return mysql_real_escape_string($str);
10. }
11. $errmsg = array();
12. $errflag = false;
13. $username = Fix($_POST['username']);
14. $password = Fix($_POST['password']);
15. if($username == '') {
16. $errmsg[] = 'Username missing';
17. $errflag = true;
18. }
19. if($password == '') {
20. $errmsg[] = 'Password missing';
21. $errflag = true;
22. }
23. if($errflag) {
24. $_SESSION['ERRMSG'] = $errmsg;
25. session_write_close();
26. header("location: login.php");
27. exit();
28. }
29. $qry = "SELECT * FROM `users` WHERE `Username` = '$username' AND `Password` = '" . md5($password) . "'";
30. $result = mysql_query($qry);
31. if(mysql_num_rows($result) == 1) {
32. while($row = mysql_fetch_assoc($result)) {
33. $_SESSION['UID'] = $row['UID'];
34. $_SESSION['USERNAME'] = $username;
35. session_write_close();
36. header("location: member.php");
37. }
38. } else {
39. $_SESSION['ERRMSG'] = "Invalid username or password";
40. session_write_close();
41. header("location: login.php");
42. exit();
43. }
44. ?>
45.  
46. <?php
47. include("sql.php");
48. session_start();
49. function Fix($str) {
50. $str = @trim($str);
51. if(get_magic_quotes_gpc()) {
52. $str = stripslashes($str);
53. }
54. return mysql_real_escape_string($str);
55. }
56.  
57. $errmsg = array();
58.  
59. $errflag = false;
60.  
61. $UID = "12323543534523453451465685454";
62. $username = Fix($_POST['username']);
63. $email = $_POST['email'];
64. $password = Fix($_POST['password']);
65. $rpassword = Fix($_POST['rpassword']);
66.  
67. if(!eregi("^([0-9]{9})$", $username)) {
68. $errmsg[] = 'Username missing';
69. $errflag = true;
70. }
71.  
72.  
73. if(!eregi("^[_a-z0-9-]+(.[_a-z0-9-]+)*@[a-z0-9-]+(.[a-z0-9-]+)*(.[a-z]{2,3})$", $email)) {
74. $errmsg[] = 'Invalid Email';
75. $errflag = true;
76. }
77.  
78. if($password == '') {
79. $errmsg[] = 'Password missing';
80. $errflag = true;
81. }
82.  
83. if($rpassword == '') {
84. $errmsg[] = 'Repeated password missing';
85. $errflag = true;
86. }
87.  
88. if(strcmp($password, $rpassword) != 0 ) {
89. $errmsg[] = 'Passwords do not match';
90. $errflag = true;
91. }
92.  
93. if($username != '') {
94. $qry = "SELECT * FROM `users` WHERE `Username` = '$username'";
95. $result = mysql_query($qry);
96. if($result) {
97. if(mysql_num_rows($result) > 0) {
98. $errmsg[] = 'Username already in use';
99. $errflag = true;
100. }
101. mysql_free_result($result);
102. }
103. }
104.  
105. if($errflag) {
106. $_SESSION['ERRMSG'] = $errmsg;
107. session_write_close();
108. header("location: register.php");
109. exit();
110. }
111.  
112. $qry = "INSERT INTO `users`(`UID`, `Username`, `Email`, `Password`) VALUES('$UID','$username','$email','" . md5($password) . "')";
113. $result = mysql_query($qry);
114.  
115.  
116. if($result) {
117. echo "Благодарим Вас за регистрацию, " .$username . ". Пожалуйста, входите <a href="login.php">сюда</a>";
118. exit();
119. } else {
120. die("Ошибка, обратитесь позже");
121. }
122.  
123. ?>