<?phpsession_start();$db=mysqli_connect("localhost","root","Naruto97","musicga

1. <?php
2. session_start();
3. $db=mysqli_connect("localhost","root","Naruto97","musicgallery");
4.  
5. if (isset($_POST['login_btn'])){
6. $email = mysqli_real_escape_string($db,$_POST['email']);
7. $password = mysqli_real_escape_string($db,$_POST['password']);
8. $password=md5($password);
9. $sql="SELECT * FROM LoginCredentials WHERE email='$email' AND password='$password'";
10. $result = mysqli_query($db,$sql);
11. if(mysqli_num_rows($result)==1){
12. $_SESSION['message']="You are now logged in";
13. $_SESSION['email']=$email;
14. //Want to store the customer in session variable here after successful login
15. header("location:home.php");
16. }
17. else{
18. $_SESSION['message']= "Email/Password combination Incorrect";
19. }
20. }
21.  
22. ?>
23.  
24. <?php
25. session_start();
26. $db=mysqli_connect("localhost","root","Naruto97","musicgallery");
27.  
28. if (isset($_POST['register_btn'])){
29.  
30. $username = mysqli_real_escape_string($db,$_POST['username']);
31. $email = mysqli_real_escape_string($db,$_POST['email']);
32. $password = mysqli_real_escape_string($db,$_POST['password']);
33. $password2 = mysqli_real_escape_string($db,$_POST['password2']);
34.  
35. if($password==$password2){
36. $password=md5($password);
37. $sql = "INSERT INTO LoginCredentials(Username,email,password) VALUES('$username','$email','$password')";
38. mysqli_query($db, $sql);
39. $_SESSION['message']="You are now logged in";
40. $_SESSION['email']=$email;
41. //Want to store the customer_id here in the session variable after successful registration
42. header("location:home.php");
43. }else{
44. $_SESSION['message']="The passwords do not match";
45.  
46. }
47. }
48. ?>
49.  
50. <?php
51. session_start();
52. $db=mysqli_connect("localhost","root","Naruto97","musicgallery");
53. if(isset($_POST["add_to_cart"])){
54. if(isset($_SESSION['email'])){
55. $album_name = mysqli_real_escape_string($db,$_POST['hidden_name']);
56. $price = mysqli_real_escape_string($db,$_POST['hidden_price']);
57. $quantity = mysqli_real_escape_string($db,$_POST['quantity']);
58. //$customer_id= $_SESSION['customer_id'];
59. $sql = "INSERT INTO cart(album_name,price,quantity,customer_id) VALUES('$album_name','$price','$quantity','$customer_id')";
60. mysqli_query($db, $sql);
61. echo "<script>alert('Added to cart')</script>";
62. echo "<script>window.location('kpop.php')</script>";
63. }
64. else
65. {
66. echo "<script>alert('Please Login')</script>";
67. echo "<script>window.location('kpop.php')</script>";
68. }
69. }
70. ?>