<?php
if (!$_SESSION) {
session_start();
}
require 'dbConnect.php';
require 'password.php';
if (isset($_POST['action'])) {
$action = $_POST['action'];
} elseif (isset($_GET['action'])) {
$action = $_GET['action'];
}
if (!isset($action)) {
$action = 'signup';
}
switch ($action) {
case 'signup':
$title = 'Home';
include 'signup.php';
insertHash($_POST['username'], $_POST['password']);
exit;
}
$newUname = $data["username"];
$err = false;
$errMsg = "";
if (empty($newUname)) {
$errMsg = "Please enter a user name";
$err = true;
} else {
if (!preg_match("/^[a-zA-Z0-9]*\$/", $newUname)) {
$errMsg = "Only letters and numbers allowed.";
$err = true;
} else {
if (nameExists($newUname)) {
$errMsg = "That username is taken, please choose another.";
$err = true;
} else {
insertHash($newUname);
}
}
}
$resp = array('error' => $err, 'message' => $errMsg, 'username' => $newUname, 'userid' => $userid);
echo json_encode($resp);
/** checks to see if this new username is already in the database */
function nameExists($newUname)
{
global $servername, $username, $dbname, $password, $userid;
$conn = new mysqli($servername, $username, $password, $dbname);
// Check connection
if ($conn->connect_error) {
die("Connection failed: " . $conn->connect_error);
} else {
$sql = "SELECT * FROM users WHERE u_username = \"" . $newUname . "\";";
