function handleRegister()
{
//showLog("handleLogin");
//
$ret = array('op' => 'register', 'msg' => 'Registration Successful', 'error_code' => '0');
$username = $_POST["username"];
$email = $_POST["email"];
$password = $_POST["password"];
$upass = md5(mysql_real_escape_string($_POST['password']));
$dao = new DAOuser();
// ensure that user with same email does not exist in database
$user = $dao->getByEmail($email);
// user already exists for give email
if ($user != NULL) {
$ret["error_code"] = "1";
$ret["msg"] = "Email '" . $email . "' already exists";
echo json_encode($ret);
return;
}
// ensure that user with same username does not exist in database
$user = $dao->getByUsername($username);
// user already exists for give username
if ($user != NULL) {
$ret["error_code"] = "1";
$ret["msg"] = "Username '" . $username . "' already exists";
echo json_encode($ret);
return;
}
$user = new user($_POST['username'], $upass, $_POST['email']);
$dao->save($user);
echo json_encode($ret);
}
<?php
session_start();
include_once 'db.php';
include "admin/class.user.dao.php";
$uname = mysql_real_escape_string($_POST['username']);
$email = mysql_real_escape_string($_POST['email']);
$upass = md5(mysql_real_escape_string($_POST['password']));
$password = mysql_real_escape_string($_POST['password']);
// todo
// if user already exists
// return back to login page, with pt=reg, ec=2
$vo = new user($uname, $upass, $email);
$dao = new DAOuser();
//check if the user name and email are unique
$useremail = $dao->getByEmail($email);
$userpass = $dao->getByPassword($password);
//if a valid user then open customer page else display error
if ($useremail == NULL or $userpass == NULL) {
$dao->save($vo);
header("Location: customer.php");
} else {
header("Location: index.php?pt=reg&ec=2");
}
?>
