function handleRegister() { //showLog("handleLogin"); // $ret = array('op' => 'register', 'msg' => 'Registration Successful', 'error_code' => '0'); $username = $_POST["username"]; $email = $_POST["email"]; $password = $_POST["password"]; $upass = md5(mysql_real_escape_string($_POST['password'])); $dao = new DAOuser(); // ensure that user with same email does not exist in database $user = $dao->getByEmail($email); // user already exists for give email if ($user != NULL) { $ret["error_code"] = "1"; $ret["msg"] = "Email '" . $email . "' already exists"; echo json_encode($ret); return; } // ensure that user with same username does not exist in database $user = $dao->getByUsername($username); // user already exists for give username if ($user != NULL) { $ret["error_code"] = "1"; $ret["msg"] = "Username '" . $username . "' already exists"; echo json_encode($ret); return; } $user = new user($_POST['username'], $upass, $_POST['email']); $dao->save($user); echo json_encode($ret); }
<?php session_start(); include_once 'db.php'; include "admin/class.user.dao.php"; $uname = mysql_real_escape_string($_POST['username']); $email = mysql_real_escape_string($_POST['email']); $upass = md5(mysql_real_escape_string($_POST['password'])); $password = mysql_real_escape_string($_POST['password']); // todo // if user already exists // return back to login page, with pt=reg, ec=2 $vo = new user($uname, $upass, $email); $dao = new DAOuser(); //check if the user name and email are unique $useremail = $dao->getByEmail($email); $userpass = $dao->getByPassword($password); //if a valid user then open customer page else display error if ($useremail == NULL or $userpass == NULL) { $dao->save($vo); header("Location: customer.php"); } else { header("Location: index.php?pt=reg&ec=2"); } ?>