add_registration($customerID, $productCode); $message = "Product {$productName} was successfull registered "; include 'product_register_success.php'; } } else { if ($action == 'login') { //loging in //get form data $username = filter_input(INPUT_POST, 'email', FILTER_SANITIZE_STRING); $password = filter_input(INPUT_POST, 'password', FILTER_SANITIZE_STRING); if ($username == NULL || $username == FALSE || $password == NULL || $password == FALSE) { $message = "Login Failed: missing username or passwrod."; include 'customer_login.php'; } else { //check password if (is_valid_customer_login($username, $password)) { //login successfull $_SESSION['customer'] = $username; header('Location: .'); } else { $message = "Login Failed: invalid username or passwrod."; include 'customer_login.php'; } } } else { if ($action == 'logout') { $message = " "; unset($_SESSION['customer']); include 'customer_login.php'; } }
unset($_SESSION['form_data']); $_SESSION['user'] = get_customer($customer_id); // Redirect to the Checkout application if necessary if (isset($_SESSION['checkout'])) { unset($_SESSION['checkout']); redirect('../checkout'); } else { redirect('.'); } break; case 'login': $email = $_POST['email']; $password = $_POST['password']; // If valid username/password, login // TODO: Improve this validation if (is_valid_customer_login($email, $password)) { $_SESSION['user'] = get_customer_by_email($email); } else { display_error('Login failed. Invalid email or password.'); } // If necessary, redirect to the Checkout app if (isset($_SESSION['checkout'])) { unset($_SESSION['checkout']); redirect('../checkout'); } else { redirect('.'); } break; case 'view_account': $customer_name = $_SESSION['user']['firstName'] . ' ' . $_SESSION['user']['lastName']; $email = $_SESSION['user']['emailAddress'];
$email_account = filter_input(INPUT_POST, 'email_account'); $password = filter_input(INPUT_POST, 'password'); $confirm_password = filter_input(INPUT_POST, 'confirm_password'); $action = filter_input(INPUT_POST, 'action'); $remember = filter_input(INPUT_POST, 'remember'); //create customer if ($action == "register") { if (is_valid_password($password, $confirm_password)) { create_customer($firstName, $lastName, $street, $postalCode, $province, $phone, $email_account, $password); echo "thank you for registering"; } else { echo "Please make sure your password is the same"; } } else { if ($action == "login") { if (is_valid_customer_login($email_account, $password)) { echo "Logged in<br/>"; echo $remember . "<br/>"; if ($remember) { echo "Email remembered!<br/>"; setcookie("email", $email_account, 0, "/"); } start_cart_session(); header("location:" . $home_path . "catalog/products.php"); } else { echo "Not valid email or password"; } } else { if ($action == "edit_info") { update_customer_info($id, $firstName, $lastName, $street, $postalCode, $province, $phone, $email_account); echo "Updated your information";