Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include('connection.php');
- include('function.php');
- $name = filter_str_param($_POST['name']);
- $lastname = filter_str_param($_POST['lastname']);
- $password = filter_str_param($_POST['password']);
- $email = filter_str_param($_POST['email']);
- $day = 3600*24; //1 час
- $hours = time();
- $time_delete = $hours - $day;
- $result_for_delete = mysql_query("SELECT user_login FROM user_timeout WHERE date < $time_delete");
- $myrow_for_delete = mysql_fetch_array($result_for_delete);
- do{
- $users = $myrow_for_delete['user_login'];
- $query = "DELETE FROM user WHERE user_login = '" . mysql_real_escape_string($users) . "'";
- $query2 = "DELETE FROM user_timeout WHERE user_login = '" . mysql_real_escape_string($users) . "'";
- $result = mysql_query($query) or die(mysql_error());
- $result2 = mysql_query($query2) or die(mysql_error());
- }
- while($myrow_for_delete = mysql_fetch_array($result_for_delete));
- required($name, $lastname, $password, $email);
- function required($name, $lastname, $password, $email)
- {
- $query = "SELECT user_login FROM user WHERE user_login = '" . mysql_real_escape_string($email) . "'";
- $result = mysql_query($query) or die(mysql_error());
- if (mb_strlen($name, 'utf-8') < 2 || mb_strlen($name, 'utf-8') > 30) {
- echo "Некорректное имя";
- exit();
- }
- if (mb_strlen($lastname, 'utf-8') < 2 || mb_strlen($lastname, 'utf-8') > 30) {
- echo "Некорректная фамилия";
- exit();
- }
- if (mb_strlen($email, 'utf-8') < 6 || mb_strlen($email, 'utf-8') > 50 || !filter_var($email, FILTER_VALIDATE_EMAIL)) {
- echo "Некорректный email";
- exit();
- }
- if (mysql_num_rows($result) == 1) {
- echo "Такой email уже существует";
- exit();
- }
- if (mb_strlen($password, 'utf-8') < 6 || mb_strlen($password, 'utf-8') > 30) {
- echo "Некорректный пароль";
- exit();
- }
- insert($email, $name, $lastname, $password);
- }
- function insert($email, $name, $lastname, $password)
- {
- $hours = time();
- $hours_to = md5($hours);
- $query = "INSERT INTO user (user_login,user_name,user_lastname,user_password)
- VALUES('" . mysql_real_escape_string($email) . "',
- '" . mysql_real_escape_string($name) . "',
- '" . mysql_real_escape_string($lastname) . "',
- '" . mysql_real_escape_string($password) . "')";
- $query_time = "INSERT INTO user_timeout (user_login,hash,date)
- VALUES('$email','$hours_to','$hours')";
- $result = mysql_query($query) or die(mysql_error());
- $result_time = mysql_query($query_time) or die(mysql_error());
- echo "Вы успешно зарегестрированы!";
- }
- ?>
Add Comment
Please, Sign In to add comment