Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include("config.php");
- class Process
- {
- function Process($connection){
- if(isset($_POST['login'])){
- $this->login();
- }
- elseif(isset($_POST['register'])){
- $this->register();
- }
- else{
- header("Location: login.php");
- }
- }
- //Member Login
- function login(){
- global $config;
- ob_start();
- // Define $myusername and $mypassword
- $myusername=$_POST['myusername'];
- $mypassword=$_POST['mypassword'];
- # Allows letters, numbers
- if(!preg_match('/^[a-zA-Z0-9]+$/i', $myusername))
- {
- session_register(bad_char);
- $_SESSION['bad_char'] = "<center><font color='red' size='1'>Invalid Charcter; Only Letters Or Numbers Can Be Used!</font></center>";
- header("location:login.php");
- }
- // To protect MySQL injection (more detail about MySQL injection)
- $myusername = stripslashes($myusername);
- $mypassword = stripslashes($mypassword);
- $myusername = mysql_real_escape_string($myusername);
- $mypassword = mysql_real_escape_string($mypassword);
- $encrypt_password = md5($mypassword);
- $query = $config->query("SELECT * FROM members WHERE username='".$myusername."' and password='".$encrypt_password."'");
- // Mysql_num_row is counting table row
- $count=mysql_num_rows($query);
- // If result matched $myusername and $mypassword, table row must be 1 row
- if($count==1){
- // Register $myusername, $mypassword and redirect to file "login_success.php"
- session_register("myusername");
- header("location:main.php");
- }
- else {
- session_register(error);
- $_SESSION['error'] = "<center><font color='red' size='4'>Wrong Username or Password</font></center>";
- header("location:login.php");
- }
- ob_end_flush();
- }
- //Register_Submit
- function register(){
- global $config;
- //Defines All The Users Inputs
- $myusername=$_POST['myusername'];
- $myusername2=$_POST['myusername'];
- $mypassword=$_POST['mypassword'];
- $mypassword2=$_POST['mypassword2'];
- $email=$_POST['email'];
- $passwordcount=$_POST['mypassword'];
- # Allows letters, numbers
- if(!preg_match('/^[a-zA-Z0-9]+$/i', $myusername2))
- {
- session_register(bad_char);
- $_SESSION['bad_char'] = "<center><font color='red' size='1'>Invalid Charcter; Only Letters Or Numbers Can Be Used!</font></center>";
- header("location:register.php");
- }
- //Stop SQL Injection
- $myusername = stripslashes($myusername);
- $mypassword = stripslashes($mypassword);
- $mypassword2 = stripslashes($mypassword2);
- $email = stripslashes($email);
- $myusername = mysql_real_escape_string($myusername);
- $mypassword = mysql_real_escape_string($mypassword);
- $mypassword2 = mysql_real_escape_string($mypassword2);
- $email = mysql_real_escape_string($email);
- //encrypt password variable
- $encrypt_password = md5($mypassword);
- $query = $config->query("SELECT * FROM members WHERE username='".$myusername."'");
- // Mysql_num_row is counting table row
- $count=mysql_num_rows($query);
- // If result matches $myusername then username is taken
- if($count===1){
- // Send error back to the register page if count = 1
- session_register(username_taken);
- $_SESSION['username_taken'] = "<center><font color='red' size='1'>The Username You Chose Is Already In Use</font></center>";
- header("location:register.php");
- }
- elseif($mypassword != $mypassword2)
- {
- session_register(password_same);
- $_SESSION['password_same'] = "<center><font color='red' size='1'>Passwords Dont Match</font></center>";
- header("location:register.php");
- }
- elseif(strlen($mypassword) < "5")
- {
- session_register(password_less_then_5);
- $_SESSION['password_less_then_5'] = "<center><font color='red' size='1'>Password Must be Greater then 4 Charcters</font></center>";
- header("location:register.php");
- }
- else
- {
- $query = $config->query("INSERT INTO members (id, username, password, email) VALUES (NULL, '$myusername', '$encrypt_password', '$email')");
- session_register(welcome_screen);
- $_SESSION['welcome'] =
- "Welcome, You are now a member of Corpal Uploads.<br>
- Reccommend us to your friends.<br>
- We are a free Upload site and WILL STAY FREE!<br>
- Thanks,<br>
- Whitey.<br>
- <a href='login.php'>Continue</a>";
- header("location: register.php");
- }
- }
- };
- $process = new Process($connection);
- ?>
Add Comment
Please, Sign In to add comment