function insert_user($variable) { include 'dbconn.php'; include 'dbtable.php'; $username = $variable['addUser_Username']; $password = $variable['addUser_Password']; $reenterpassword = $variable['addUser_ReEnterPassword']; $fname = $variable['addUser_Fname']; $lname = $variable['addUser_Lname']; $address = $variable['addUser_Address']; $contactno = $variable['addUser_ContactNo']; $user_system_id = '1'; if ($password === $reenterpassword) { include 'pass_encryptor.php'; $encryptedPass = pass_encryptor($password); } $sql = "INSERT INTO {$tbl_user} (user_system_id, username, password, fname, lname, address,contactno) VALUES ('{$user_system_id}','{$username}','{$encryptedPass}','{$fname}','{$lname}','{$address}','{$contactno}')"; $check = mysqli_query($dbconn, $sql); if ($check) { echo "Success"; mysqli_close($dbconn); } else { echo "Epic Fail " . $check; mysqli_close($dbconn); } }
function check_user($variable) { $Username = $variable['Login_Username']; $initPass = $variable['Login_Password']; include 'pass_encryptor.php'; $Password = pass_encryptor($initPass); include 'dbconn.php'; include 'dbtable.php'; $sql = "SELECT * FROM {$tbl_user} WHERE username = '******' AND password = '******'"; $result = mysqli_query($dbconn, $sql); if (mysqli_num_rows($result) > 0) { while ($row = mysqli_fetch_assoc($result)) { echo 'welcome ' . $row['fname'] . '!'; } } else { echo "Epic Fail " . $check; mysqli_close($dbconn); } }