Jump to content

Recommended Posts

<?php
require_once('db.php');
include('functions.php');

if(isset($_POST['register']))
{
if($_POST['username']!='' && $_POST['password']!='' && $_POST['password']==$_POST['password_confirmed'] && $_POST['email']!='' && valid_email($_POST['email'])==TRUE && checkUnique('users','Username', $_POST['username'])==TRUE && checkUnique('users','Email', $_POST['email'])==TRUE)
{
	$query = mysql_query("INSERT INTO users (`Username` , `Password`, `Email`, `Random_key`) VALUES ('".mysql_real_escape_string($_POST['username'])."', '".mysql_real_escape_string(md5($_POST['password']))."', '".mysql_real_escape_string($_POST['email'])."', '".random_string('alnum', 32)."')") or die(mysql_error());
	$getUser = mysql_query("SELECT ID, Username, Email, Random_key FROM users WHERE Username = '".mysql_real_escape_string($_POST['username'])."'") or die(mysql_error());
	if(mysql_num_rows($getUser)==1)
	{//there's only one MATRIX :PP
		$row = mysql_fetch_assoc($getUser);
		$headers = 	'From: webmaster@ourdomainhere.com' . "\r\n" .
		'Reply-To: webmaster@ourdomainhere.com' . "\r\n" .
		'X-Mailer: PHP/' . phpversion();
		$subject = "Activation email from ourdomainhere.com";
		$message = "Dear ".$row['Username'].", this is your activation link to join our website. In order to confirm your membership please click on the following link: http://www.ourdomainhere.com/confirm.php?ID=".$row['ID']."&key=".$row['Random_key']." Thank you for joining";
		if(mail($row['Email'], $subject, $message, $headers))
		{//we show the good guy only in one case and the bad one for the rest.
			$msg = 'Account created. Please login to the email you provided during registration and confirm your membership.';
		}
		else {
			$error = 'I created the account but failed sending the validation email out. Please inform my boss about this cancer of mine';
		}
	}
	else {
		$error = 'You just made possible the old guy (the impossible). Please inform my boss in order to give you the price for this.';
	}

}
else {
	$error = 'There was an error in your data. Please make sure you filled in all the required data, you provided a valid email address and that the password fields match';
}
}
?>
<?php if(isset($error)){ echo $error;}?>
<?php if(isset($msg)){ echo $msg;} else {//if we have a mesage we don't need this form again.?>
<form action="<?=$_SERVER['PHP_SELF']?>" method="post">
Username: <input type="text" id="username" name="username" size="32" value="<?php if(isset($_POST['username'])){echo $_POST['username'];}?>" /><br />
Password: <input type="password" id="password" name="password" size="32" value="" /><br />
Re-password: <input type="password" id="password_confirmed" name="password_confirmed" size="32" value="" /><br />
Email: <input type="text" id="email" name="email" size="32" value="<?php if(isset($_POST['email'])){echo $_POST['email'];}?>" /><br />
<input type="submit" name="register" value="register" /><br />
</form>
<? } ?>

Link to comment
https://forums.phpfreaks.com/topic/96404-functionsphp/page/2/#findComment-493559
Share on other sites

error-

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /Applications/MAMP/htdocs/functions.php on line 73

 

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /Applications/MAMP/htdocs/functions.php on line 73

No database selected

 

functions.php

<?php
function checkLogin($levels)
{
	if(!$_SESSION['logged_in'])
	{
		$access = FALSE;
	}
	else {
		$kt = split(' ', $levels);

		$query = mysql_query('SELECT Level_access FROM users WHERE ID = "'.mysql_real_escape_string($_SESSION['user_id']).'"');
		$row = mysql_fetch_assoc($query);

		$access = FALSE;

		while(list($key,$val)=each($kt))
		{
			if($val==$row['Level_access'])
			{//if the user level matches one of the allowed levels
				$access = TRUE;
			}
		}
	}
	if($access==FALSE)
	{
		header("Location: login.php");
	}
	else {
	//do nothing: continue
	}

}
function valid_email($eaddr) {
if (!ereg("([[:alnum:]\.\-]+)(\@[[:alnum:]\.\-]+\.+)", $eaddr)) {
	return false;
}
return true;
}

function random_string($type = 'alnum', $len = 
{					
switch($type)
{
	case 'alnum'	:
	case 'numeric'	:
	case 'nozero'	:

			switch ($type)
			{
				case 'alnum'	:	$pool = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
					break;
				case 'numeric'	:	$pool = '0123456789';
					break;
				case 'nozero'	:	$pool = '123456789';
					break;
			}

			$str = '';
			for ($i=0; $i < $len; $i++)
			{
				$str .= substr($pool, mt_rand(0, strlen($pool) -1), 1);
			}
			return $str;
	  break;
	case 'unique' : return md5(uniqid(mt_rand()));
	  break;
}
}

function checkUnique($table, $field, $compared)
{
$query = mysql_query('SELECT  '.mysql_real_escape_string($field).' FROM '.mysql_real_escape_string($table).' WHERE "'.mysql_real_escape_string($field).'" = "'.mysql_real_escape_string($compared).'"');
if(mysql_num_rows($query)==0)
{
	return TRUE;
}
else {
	return FALSE;
}
}


?>

Link to comment
https://forums.phpfreaks.com/topic/96404-functionsphp/page/2/#findComment-493570
Share on other sites

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.