-
Notifications
You must be signed in to change notification settings - Fork 7
/
auth.php
46 lines (41 loc) · 1.22 KB
/
auth.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
<?php
require_once "config/config.php";
if(isset($_POST["register"]))
{
$username = Escape($_POST["utilizador"]);
$password = Hash512(Escape($_POST["passchave"]));
$name = $_POST["name"];
$email = Escape($_POST["email"]);
$phone = Escape($_POST["phone"]);
$reg = $db->Execute("INSERT INTO `accounts`(`username`, `password`, `nome`, `telefone`, `email`) VALUES (?, ?, ?, ?, ?)", $username, $password, $name, $phone, $email);
if($reg)
{
echo "<h3>Success!</h3>";
Redirect("index.php");
$_SESSION["username"] = $username;
}
else
{
Redirect(("register.php?error=" . Hash512("Your username / email or phone number is already in use. Please try again.")));
}
}
else if(isset($_POST["login"]))
{
$username = Escape($_POST["username"]);
$password = Hash512(Escape($_POST["password"]));
$result = $db->Execute("SELECT * FROM accounts WHERE username=? AND password=?", $username, $password);
foreach($result as $row)
{
$_SESSION["username"] = Escape($row->username);
}
$result->Close();
if(isset($_SESSION["username"]))
Redirect("index.php");
else
Redirect(("register.php?error=" . Hash512("Username or Password are invalid!")));
}
else
{
Redirect("index.php");
}
?>