sm86TRsq

1<?php
2session_start();
3?>
4
5<html>
6
7<body>
8<h1>Please provide your information to register</h1>
9<form method="POST" enctype="multipart/form-data" action="<?php $_SERVER['PHP_SELF'] ?>" >
10    <table border=0 style="text-align:left">
11        <tr><td style="text-align:right">Type your ID:</td><td> <input type="text" name="id" value=""> <font color=red> (only digits allowed)</font></td></tr>
12        <tr><td style="text-align:right">Choose your password:</td><td>  <input type="password" name="passwd"></td></tr>
13        <tr><td style="text-align:right">Retype your password:</td><td>  <input type="password" name="passwd2"></td></tr>
14        <tr><td style="text-align:right">Your name:</td><td>  <input type="text" name="name" value=""></td></tr>
15        <tr><td style="text-align:right">Your email:</td><td>  <input type="text" name="email" value=""></td></tr>
16        <tr><td style="text-align:right">Please upload your picture:</td><td>  <input type="file" name="myfile"></td></tr>
17        <tr><td style="text-align:right"></td><td><input type="submit" value="Sign up" name="submit"></td></tr>
18    </table>
19</form>
20
21<hr/>
22
23<?php
24if ($_REQUEST["passwd"] != $_REQUEST["passwd2"])
25{
26	echo "Password does not match!<br>";
27    exit();
28}
29
30if (isset($_REQUEST["id"]) && !empty($_REQUEST["id"]))
31{
32	require_once("my_DB_functions.php");
33    
34    $conn = My_Connect_DB();
35    if(!$conn)
36    	die("Connection failed: ".mysqli_connect_error());
37        
38    //verify if the table already created
39    
40    $sql = "SHOW TABLES LIKE 'Employee';";
41    $result = My_SQL_EXE($conn, $sql);
42    
43    if(mysqli_num_rows($result) <= 0)
44    {
45        $sql = "CREATE TABLE Employee(id int PRIMARY KEY,password char(32),name varchar(32),salary float(2),bonus float(2), photo varchar(128),email varchar(128));";  
46        My_SQL_EXE($conn, $sql);
47    }
48    
49    // verify if id is registered
50    											// accounts for spaces
51    $sql = "SELECT * FROM Employee WHERE id = '".trim($_REQUEST['id'])."'";
52    $result = My_SQL_EXE($conn, $sql);
53    if(mysqli_num_rows($result) <= 0) //this means the id does exist
54    {
55    	$file = UploadFile("myfile", "PNG:JPG:JPEG:GIF:BMP", 5000000, 1);
56    	$sql = "INSERT INTO Employee VALUES(".trim($_REQUEST['id']).",'".md5(trim($_REQUEST['passwd']))."','".trim($_REQUEST['name'])."',".rand(50000, 100000).",0,'".$file."','".trim($_REQUEST['email'])."');";
57        My_SQL_EXE($conn, $sql);
58    }
59    else
60    {
61    	echo "ID already exists. Please try another one!<br>";
62        exit();
63    }
64    mysqli_close();
65    
66    echo "Registration done succesfully!<br>";
67    echo "id: ".trim($_REQUEST['id'])."<br>";
68    echo "name: ".trim($_REQUEST['name'])."<br>";
69    echo "email: ".trim($_REQUEST['email'])."<br>";
70    echo "photo: <img src='".$file."' width=200><br>";
71    echo "<hr>";
72    echo "Click <a href='Activity-99-01.php'>here</a> to login!<br>";
73}
74?>
75
76</body>
77
78</html>