Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?
- session_start();
- include $_SERVER['DOCUMENT_ROOT'].'/conf/db_connect.php';
- $sql = "call get_user_by_user_name('$_POST[username]')";
- $get_user = db_query($sql, $link, $_SESSION[mode]);
- $row = db_fetch($get_user, $_SESSION[mode]);
- if(!empty($row[user_id]))
- {
- header ("location:/reg/regindex.php?error=1");
- exit;
- }
- if( !empty( $_FILES['avatar']['name'] ) )
- {
- $userAvatar = $_SERVER['DOCUMENT_ROOT'].'/avatars/' .$_POST['username']. basename($_FILES['avatar']['name']);
- $userAvatarPath = '/avatars/' .$_POST['username']. basename($_FILES['avatar']['name']);
- if( substr($_FILES['avatar']['type'], 0, 5)=='image' )
- {
- if (!move_uploaded_file($_FILES['avatar']['tmp_name'], $userAvatar))
- {
- header ("location:/reg/regindex.php?error=2");
- exit;
- }
- }
- else
- {
- header ("location:/reg/regindex.php?error=2");
- exit;
- }
- }
- else
- {
- unset($userAvatar);
- unset($userAvatarPath);
- }
- $userName = $_POST['username'];
- $userPassword = $_POST['pw'];
- $email = $_POST['email'];
- $userFirstName = $_POST['firstname'];
- $userLastName = $_POST['lastname'];
- $birthdate = $_POST['date'];
- $userName = stripslashes($userName);
- $userName = htmlspecialchars($userName);
- $userName = addslashes($userName);
- $userPassword = stripslashes($userPassword);
- $userPassword = htmlspecialchars($userPassword);
- $userPassword = addslashes($userPassword);
- $userFirstName = stripslashes($userFirstName);
- $userFirstName = htmlspecialchars($userFirstName);
- $userFirstName = addslashes($userFirstName);
- $userLastName = stripslashes($userLastName);
- $userLastName = htmlspecialchars($userLastName);
- $userLastName = addslashes($userLastName);
- $email = stripslashes($email);
- $email = htmlspecialchars($email);
- $email = addslashes($email);
- $userName = trim($userName);
- $userPassword = trim($userPassword);
- $userFirstName = trim($userFirstName);
- $userLastName = trim($userLastName);
- $email = trim($email);
- $userName = str_replace("'","’",$userName);
- $userPassword = str_replace("'","’",$userPassword);
- $userFirstName = str_replace("'","’",$userFirstName);
- $userLastName = str_replace("'","’",$userLastName);
- $email = str_replace("'","’",$email);
- $sql_two = "call add_user('$userName','$userPassword','$email','$userLastName','$userLastName','$birthdate','$userAvatarPath')";
- db_query($sql_two, $link, $_SESSION['mode']);
- header ("location:/reg/regend.php");
- ?>
- $sql = "call get_user_by_user_name('$_POST[username]')";
- $get_user = db_query($sql, $link, $_SESSION[mode]);
- $row = db_fetch($get_user, $_SESSION[mode]);
- $tempRow = db_row(db_query("SELECT count(*) FROM view_guest_book", $link, $_SESSION['mode']), $_SESSION['mode']);
- $result = db_query("call get_entries_gb_per_page('$per_page', '$start')", $link, $_SESSION['mode']);
- function db_query($query, $link, $conntype)
- {
- switch($conntype)
- {
- case "sqlb":
- {
- $result = mysql_query($query) or die("nНекорректный SQL запрос >>" . $query);
- return $result;
- break;
- }
- case "sqlip":
- {
- $result = mysqli_query($link, $query) or die("nНекорректный SQL запрос >>" . $query);
- return $result;
- break;
- }
- case "sqlio":
- {
- $result = $link->query($query) or die("nНекорректный SQL запрос >>" . $query);
- return $result;
- break;
- }
- case "pdo":
- {
- $result = $link->prepare($query);
- $result->setFetchMode(PDO::FETCH_NUM);
- $result->execute() or die("nНекорректный SQL запрос >>" . $query);
- return $result;
- break;
- }
- default:break;
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement