Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- // variable declaration
- $username = "";
- $email = "";
- $errors = array();
- $_SESSION['success'] = "";
- // connect to database
- $db = mysqli_connect('localhost', 'root', '', 'onlineshop');
- // REGISTER USER
- if (isset($_POST['reg_user'])) {
- // receive all input values from the form
- $username = mysqli_real_escape_string($db, $_POST['username']);
- $email = mysqli_real_escape_string($db, $_POST['email']);
- $password_1 = mysqli_real_escape_string($db, $_POST['password_1']);
- $password_2 = mysqli_real_escape_string($db, $_POST['password_2']);
- // form validation: ensure that the form is correctly filled
- if (empty($username)) { array_push($errors, "Username is required"); }
- if (empty($email)) { array_push($errors, "Email is required"); }
- if (empty($password_1)) { array_push($errors, "Password is required"); }
- if ($password_1 != $password_2) {
- array_push($errors, "The two passwords do not match");
- }
- // register user if there are no errors in the form
- if (count($errors) == 0) {
- $password = $password_1;//encrypt the password before saving in the database (removed md5())
- $query = "INSERT INTO klant (username, email, password)
- VALUES('$username', '$email', '$password')";
- mysqli_query($db, $query);
- $_SESSION['username'] = $username;
- $_SESSION['success'] = "You are now logged in";
- header('location: index.php');
- }
- }
- // LOGIN USER
- if (isset($_POST['login_user'])) {
- $username = mysqli_real_escape_string($db, $_POST['username']);
- $password = mysqli_real_escape_string($db, $_POST['password']);
- if (empty($username)) {
- array_push($errors, "Username is required");
- }
- if (empty($password)) {
- array_push($errors, "Password is required");
- }
- if (count($errors) == 0) {
- /* $password = md5($password); */
- if (isset($_POST['admin'])) {
- $query = "SELECT * FROM medewerker WHERE username='$username' AND password='$password'";
- }
- else {
- $query = "SELECT * FROM klant WHERE username='$username' AND password='$password'";
- }
- $results = mysqli_query($db, $query);
- if (mysqli_num_rows($results) == 1) {
- $_SESSION['username'] = $username;
- $_SESSION['success'] = "You are now logged in";
- header('location: index.php');
- }
- else{
- array_push($errors, "Wrong username/password combination");
- }
- }
- }
- // Product Test
- function getPro() {
- global $db;
- $get_pro = "select * from producten";
- $run_pro = mysqli_query($db, $get_pro);
- while( $row_pro = mysqli_fetch_array($run_pro)) {
- $product_id = $row_pro['product_id'];
- $product_title = $row_pro['product_title'];
- $product_price = $row_pro['product_price'];
- $product_desc = $row_pro['product_desc'];
- $product_image = $row_pro['product_image'];
- echo "<li><a href='#'>$product_title</a></li>";
- echo "<li>prijs:$product_price</li>";
- echo "<li>description:$product_desc</li>";
- echo '<li><img src="' . $product_image . '"</li>';
- echo "<li><a href='#' class=" . 'button' . ">Toevoegen</a></li>" . "<br />";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement