<?php // TODO: Make email and password checkin as MD5... if (isset($_POST["email"])) { $email = $_POST["email"]; $userpassword = $_POST["userpassword"]; if ($email == "" || $userpassword == "") { $error = 1; } else { include "DB/initDB.php"; include "DB/registerDB.php"; $rDB = new registerDB(); $id = $rDB->checkLogin($email, $userpassword); if ($id) { $userType = $rDB->getUserType($id); session_start(); $sid = session_id(); $_SESSION["usertype"] = $userType; $_SESSION["leave_app_id"] = $id; header("Location: profile.php"); } else { $error = 2; } } }
<!-- TODO: Make sure password is used as md5 To change this template, choose Tools | Templates and open the template in the editor. --> <?php $error = 0; if (isset($_GET['error'])) { $error = $_GET['error']; } require_once 'DB/initDB.php'; require_once 'DB/registerDB.php'; $rDB = new registerDB(); $departmentlist = $rDB->getDepartmentList(); ?> <!DOCTYPE html> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>Register</title> <script type="text/javascript" src="static/js/jquery.js"></script> <script type="text/javascript" src="static/js/register.js"></script> </head> <body> <div id="registration_form"> <?php switch ($error) { case 1: echo "<div class='form-error' style='display: block;'>";
<?php require_once 'DB/initDB.php'; require_once 'DB/registerDB.php'; $rDB = new registerDB(); $redirect = 'register.php'; $fname = htmlspecialchars(trim($_POST['first_name'])); $lname = htmlspecialchars(trim($_POST['last_name'])); $email = mysql_escape_string(trim($_POST['email'])); $sex = mysql_escape_string(trim($_POST['sex'])); $contact = mysql_escape_string(trim($_POST['contact'])); $pass1 = mysql_escape_string(trim($_POST['pass1'])); $pass2 = mysql_escape_string(trim($_POST['pass2'])); $user_type = mysql_escape_string(trim($_POST['user_type'])); $category = mysql_escape_string(trim($_POST['category'])); // $user_name= $_POST['user_name']; $activated = 0; if (isset($_POST['department'])) { $department = $_POST['department']; } else { $department = 0; //User is office staff } if (isset($_POST['roll_number'])) { $roll_number = $_POST['roll_number']; } if (!preg_match('/^[a-zA-Z0-9._-]+@[a-zA-Z0-9.-]+\\.[a-zA-Z]{2,4}$/', $email)) { header("Location:/" . $redirect . "?error=1"); die; } if ($rDB->checkExistingUser($email)) {