<?php include 'functions.php'; $userName = $_POST['name']; /*new users userName*/ /*hash the new users password*/ $passWord = password_hash($_POST['password'], PASSWORD_DEFAULT); $email = $_POST['email']; /*new users email address*/ $ip = $_SERVER['REMOTE_ADDR']; /*ip address of user */ $message = ""; /*message to be returned*/ /*Check if userName is available*/ if (UsernameAvailable($userName) === true) { //the name is not already in associated with user in db if (AddNewUser($userName, $passWord, $email) === true) { // User added to db $message = '{"SIGNINSUCCEED" : true}'; /*add user to connections table*/ $userId = GetUserid($userName); AddUserToConnections($userId, $ip); } } else { //the name is already in associated with user in db $message = '{"ERROR" : "INVALIDUSERNAMETAKEN"}'; } echo $message;
<?php // register.php // // D Provine, 2 August 2013 session_name('reglogin'); session_start(); // Check the form was filled in correctly if (!isset($_POST['username']) || !isset($_POST['password1']) || !isset($_POST['password2'])) { die("You did not fill in the form correctly. Try again."); } if (!preg_match('/^[A-Za-z0-9_]+$/', $_POST['username'])) { die("Username must consist only of letters, numbers, underscore."); } if ($_POST['password1'] != $_POST['password2']) { die("Passwords don't match. Try again."); } include "/export/home/mclaug67/source_html/public_html/awp/PhotoSite/Connect-webuser.php"; include "DB_Functions.php"; $dbh = ConnectDB(); // make sure not already in use $user_id = CheckUsername($dbh, $_POST['username']); if ($user_id != -1) { die("that username is already in use"); } // add new user and get userid $user_id = AddNewUser($dbh, $_POST['username'], $_POST['password1']); // log them in $_SESSION['username'] = $_POST['username']; $_SESSION['user_id'] = $user_id; header("Location: user_page.php");
#!/usr/bin/php <?php require_once "../../conf/cis/Config.php"; require_once "../../lib/cis/Lib.php"; function AddNewUser($var) { global $tbl_db_info; $Conn = mysql_connect($tbl_db_info[0], $tbl_db_info[1], $tbl_db_info[2]); mysql_select_db($tbl_db_info[3], $Conn); $ret = ""; $username = $var["username"]; $userid = $var["userid"]; $vip_type = $var["vip_type"]; $serv_id = $var["serv_id"]; $username_esc = mysql_escape_string($username); $userid_esc = intval($userid); $vip_type_esc = intval($vip_type); $qs = "replace into tbl_user_static set us_uId = '{$userid_esc}', us_sName='{$username_esc}', us_uVipType='{$vip_type_esc}'"; $result = mysql_query($qs); if (!$result) { $ret = "400"; return; } LogAction("AddNewUser({$username_esc}, {$userid_esc}, {$vip_type_esc})", $serv_id); $ret = "200"; header("Content-type: text/html; charset=utf-8"); header("Content-Length:" . strlen($ret)); print $ret; } AddNewUser($_GET);