Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- // variable declaration
- $username = "";
- $email = "";
- $errors = array();
- $_SESSION['success'] = "";
- require 'dbCon.php';
- // login
- if (isset($_POST['login_user'])) {
- $username = mysqli_real_escape_string($db, $_POST['username']);
- $password = mysqli_real_escape_string($db, $_POST['password']);
- if (count($errors) == 0) {
- $password = md5($password);
- $query = "SELECT * FROM users WHERE username='$username' AND password='$password'";
- $results = mysqli_query($db, $query);
- if (mysqli_num_rows($results) == 1) {
- $_SESSION['username'] = $username;
- $_SESSION['success'] = "You are now logged in";
- $followingdata = $results->fetch_array(MYSQLI_ASSOC);
- $_SESSION['userLevel'] = $followingdata['userLevel'];
- $_SESSION['freeSpace'] = $followingdata['freeSpace'];
- header('location: index.php');
- }else {
- array_push($errors, "Wrong username/password combination");
- }
- }
- }
- // register
- if (isset($_POST['reg_user'])) {
- // receive all input values from the form
- $username = mysqli_real_escape_string($db, $_POST['username']);
- $email = mysqli_real_escape_string($db, $_POST['email']);
- $password_1 = mysqli_real_escape_string($db, $_POST['password_1']);
- $password_2 = mysqli_real_escape_string($db, $_POST['password_2']);
- // form validation: ensure that the form is correctly filled
- if (empty($username)) { array_push($errors, "Username is required"); }
- if (empty($email)) { array_push($errors, "Email is required"); }
- if (empty($password_1)) { array_push($errors, "Password is required"); }
- if ($password_1 != $password_2) {
- header('login.php');
- }
- // register user if there are no errors in the form
- if (count($errors) == 0) {
- $password = md5($password_1);//encrypt the password before saving in the database
- $query = "INSERT INTO users (username, email, password,freeSpace)
- VALUES('$username', '$email', '$password',1024)";
- mysqli_query($db, $query);
- $_SESSION['username'] = $username;
- $_SESSION['success'] = "You are now logged in";
- $_SESSION['userLevel'] = "u";
- $_SESSION['freeSpace'] = "1024";
- //create a space for user in server
- $dirBaseName = $_SESSION['username'];
- $path = "uploads/".$dirBaseName;
- if (!mkdir($path, 0777, true)) {
- die('Failed to create folders...');
- }
- header('location: index.php');
- }
- }
- ?>
Add Comment
Please, Sign In to add comment