add_registration($customerID, $productCode);
$message = "Product {$productName} was successfull registered ";
include 'product_register_success.php';
}
} else {
if ($action == 'login') {
//loging in
//get form data
$username = filter_input(INPUT_POST, 'email', FILTER_SANITIZE_STRING);
$password = filter_input(INPUT_POST, 'password', FILTER_SANITIZE_STRING);
if ($username == NULL || $username == FALSE || $password == NULL || $password == FALSE) {
$message = "Login Failed: missing username or passwrod.";
include 'customer_login.php';
} else {
//check password
if (is_valid_customer_login($username, $password)) {
//login successfull
$_SESSION['customer'] = $username;
header('Location: .');
} else {
$message = "Login Failed: invalid username or passwrod.";
include 'customer_login.php';
}
}
} else {
if ($action == 'logout') {
$message = " ";
unset($_SESSION['customer']);
include 'customer_login.php';
}
}
unset($_SESSION['form_data']);
$_SESSION['user'] = get_customer($customer_id);
// Redirect to the Checkout application if necessary
if (isset($_SESSION['checkout'])) {
unset($_SESSION['checkout']);
redirect('../checkout');
} else {
redirect('.');
}
break;
case 'login':
$email = $_POST['email'];
$password = $_POST['password'];
// If valid username/password, login
// TODO: Improve this validation
if (is_valid_customer_login($email, $password)) {
$_SESSION['user'] = get_customer_by_email($email);
} else {
display_error('Login failed. Invalid email or password.');
}
// If necessary, redirect to the Checkout app
if (isset($_SESSION['checkout'])) {
unset($_SESSION['checkout']);
redirect('../checkout');
} else {
redirect('.');
}
break;
case 'view_account':
$customer_name = $_SESSION['user']['firstName'] . ' ' . $_SESSION['user']['lastName'];
$email = $_SESSION['user']['emailAddress'];
$email_account = filter_input(INPUT_POST, 'email_account');
$password = filter_input(INPUT_POST, 'password');
$confirm_password = filter_input(INPUT_POST, 'confirm_password');
$action = filter_input(INPUT_POST, 'action');
$remember = filter_input(INPUT_POST, 'remember');
//create customer
if ($action == "register") {
if (is_valid_password($password, $confirm_password)) {
create_customer($firstName, $lastName, $street, $postalCode, $province, $phone, $email_account, $password);
echo "thank you for registering";
} else {
echo "Please make sure your password is the same";
}
} else {
if ($action == "login") {
if (is_valid_customer_login($email_account, $password)) {
echo "Logged in<br/>";
echo $remember . "<br/>";
if ($remember) {
echo "Email remembered!<br/>";
setcookie("email", $email_account, 0, "/");
}
start_cart_session();
header("location:" . $home_path . "catalog/products.php");
} else {
echo "Not valid email or password";
}
} else {
if ($action == "edit_info") {
update_customer_info($id, $firstName, $lastName, $street, $postalCode, $province, $phone, $email_account);
echo "Updated your information";
