Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // Used to Login & Register users
- ob_start();
- session_start();
- //---------------------------------
- //Error Array
- $errors = array();
- $fname = "";
- $lname = "";
- $userName = "";
- // To Connect To The Server - Used MySQLi
- $db_connect = mysqli_connect('localhost','root','mariadb123','users');
- If($db_connect){
- echo "sucess";
- }
- else {
- echo "Failed";
- }
- if(isset($_POST['register'])){
- $fName = mysqli_real_escape_string($db_connect,$_POST['FirstName']);
- $lName = mysqli_real_escape_string($db_connect,$_POST['LastName']);
- $userName = mysqli_real_escape_string($db_connect,$_POST['UserName']);
- $pass_1 = mysqli_real_escape_string($db_connect,$_POST['password_1']);
- $pass_2 = mysqli_real_escape_string($db_connect,$_POST['password_2']);
- $userEmail = mysqli_real_escape_string($db_connect,$_POST['Email']);
- // Check if fields are filled.
- if(empty($fName)){
- array_push($errors,"First Name is required.");
- }
- if(empty($lName)){
- array_push($errors,"Last Name is required.");
- }
- if(empty($userName)){
- array_push($errors,"User Name is required.");
- }
- if(empty($userEmail)){
- array_push($errors,"Email is required.");
- }
- if(empty($pass_1)){
- array_push($errors,"Password is required.");
- }
- if(empty($pass_2)){
- array_push($errors,"Please Confirm the passwords.");
- }
- if($pass_1 != $pass_2){
- array_push($errors,"Passwords do not match. Please try again.");
- }
- if(count($errors)==0){
- $password = password_hash($pass_1,PASSWORD_DEFAULT);
- $query = "INSERT INTO user_t(user_FName,user_LName,user_userName,user_Email,user_Password) VALUES ('$fName','$lName','$userName','$userEmail','$password')";
- $result = mysqli_query($db_connect,$query);
- $query = "SELECT user_ID from user_t WHERE user_Email='$userEmail';";
- $result = mysqli_query($db_connect,$query);
- $row = mysqli_fetch_array($result, MYSQLI_BOTH);
- mkdir("../../users/$row[0]", 0777, true);
- $_SESSION['userName'] = $userName;
- //header('location:../index.php');
- }
- }
- if(isset($_POST['login'])){
- $email_or_userName = mysqli_real_escape_string($db_connect,$_POST['email']);
- $pass = mysqli_real_escape_string($db_connect,$_POST['password']);
- // checks with userName or Email
- $loginQuery = "SELECT * FROM user_t WHERE user_Email='$email_or_userName' OR user_userName = '$email_or_userName'";
- $result = mysqli_query($db_connect,$loginQuery); // Inserts Query into The Database and returns mysqli_result Object.
- $userRow = mysqli_fetch_array($result, MYSQLI_BOTH); // Stores the object into an array;
- $password = password_verify($pass,$userRow["user_Password"]); // Verifies the password
- if(($userRow["user_Email"]==$email_or_userName || $userRow["user_userName"]==$email_or_userName) && $userRow["user_Password"]==$password ){
- $_SESSION['user_ID'] = $userRow["user_ID"]; // Sets user_ID session Variable to ID of the logged in User.
- header("Location:../../index.html");
- }
- }
- /*
- if(isset($_POST['post_ad'])){
- $itemTitle = mysqli_real_escape_string($db_connect,$_POST['item_Title']);
- $itemPrice = mysqli_real_escape_string($db_connect,$_POST['FirstName']);
- $itemCategory = mysqli_real_escape_string($db_connect,$_POST['FirstName']);
- $itemLocation = mysqli_real_escape_string($db_connect,$_POST['FirstName']);
- $itemDescription = mysqli_real_escape_string($db_connect,$_POST['FirstName']);
- // Image Upload And Checking
- $image
- }
- */
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement