{ $data = trim($data); $data = stripslashes($data); $data = htmlspecialchars($data); return $data; } if ($_SERVER["REQUEST_METHOD"] == "POST") { if (empty($_POST["username"])) { $nameErr = "Name ist erforderlich"; } else { $correct_username = validation_input($_POST["username"]); } if (empty($_POST["password"])) { $passwordErr = "Password ist erforderlich"; } else { $correct_password = validation_input($_POST["password"]); } } $servername = "localhost"; $username = "******"; $password = "******"; $dbname = "Schule"; // Create connection $conn = new mysqli($servername, $username, $password, $dbname); // Check connection if ($conn->connect_error) { die("Connection failed: " . $conn->connect_error); } if ($_SERVER["REQUEST_METHOD"] == "POST") { if (!empty($_POST["username"]) && !empty($_POST["password"])) { $user_hobby = $_POST['hobby'];
$name = validation_input($_POST["name"]); } if (empty($_POST["email"])) { $emailErr = "E-Mail ist erforderlich"; } else { $email = validation_input($_POST["email"]); } if (empty($_POST["comment"])) { $comment = ""; } else { $comment = validation_input($_POST["comment"]); } if (empty($_POST["gender"])) { $genderErr = "Geschlecht ist erforderlich"; } else { $gender = validation_input($_POST["gender"]); } } ?> <h3 class="text-center">Formular Validierung</h3> <div class="row"> <div class="col-xs-12 col-md-6"> <form method="post" action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?> "> <p>Name*:</p> <input type="text" name="name" tabindex="1"> <p class="text-danger"><?php echo $nameErr; ?>
$password_saltedHash = saltPassword($user_password_input, $user_salt); $input_username = $_POST['username']; $input_password = $_POST['password']; // define variables and set to empty values $nameErr = $passwordErr = ""; $name = $password = ""; if ($_SERVER["REQUEST_METHOD"] == "POST") { if (empty($_POST["name"])) { $nameErr = "Username ist erforderlich"; } else { $name = validation_input($_POST["username"]); } if (empty($_POST["password"])) { $passwordErr = "Passwort ist erforderlich"; } else { $password = validation_input($_POST["email"]); } } function validation_input($data) { $data = trim($data); $data = stripslashes($data); $data = htmlspecialchars($data); return $data; } $sql = "INSERT INTO User_DB(Username, Password, Password_Salt, Timestamp)\n VALUES ('{$input_username}', '{$input_password}', '{$user_salt}', NOW())"; if (!$conn->query($sql)) { echo "Error: " . $sql . "<br>" . $conn->error; } $conn->close(); echo $nameErr . $passwordErr;