-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathcrtusr.php
More file actions
35 lines (32 loc) · 1.12 KB
/
crtusr.php
File metadata and controls
35 lines (32 loc) · 1.12 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
<?php
session_start();
//conntecting to database
require "conn.php";
//setting some vars
$user = $_POST['username'];
$pass = $_POST['password'];
$pass = password_hash($pass, PASSWORD_DEFAULT);
//making sure the username isn't already in use
$stmt = $conn->prepare("SELECT * FROM users WHERE username=:usr");
$stmt->bindParam(":usr", $user);
$stmt->execute();
$array = $stmt->fetch(PDO::FETCH_ASSOC);
if($array != ""){
header('Location: signup.php?userexists=true');
} else {
//inserting the new user
//preparing statement against injection
$stmt = $conn->prepare("INSERT INTO users (username, password) VALUES (:unm, :psw)");
$stmt->bindParam(":unm", $user);
$stmt->bindParam(":psw", $pass);
$stmt->execute();
$_SESSION["user"] = $user;
//getting user level and putting it in url for $_GET
$stmt = $conn->prepare("SELECT level FROM users WHERE username=:usr");
$stmt->bindParam(":usr", $user);
$stmt->execute();
$array = $stmt->fetch(PDO::FETCH_ASSOC);
$lvl = $array['level'];
header("Location: https://lukeogburn.com/rwv/vamos.php?level=".$lvl);
}
?>