CCOM4030
/
Goodle
Watch 2
Star 1
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
7 Commits
6 Branches
Branch: sprint_2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'sprint_2'
${ noResults }
Goodle/Admin backend/signup.php

signup.php 2.4KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. <?php

  2. header('Content-type: application/json');

  3. if ($_SERVER["REQUEST_METHOD"] == "POST") {

  4.     # Gets json from POST

  5.     $json = json_decode(file_get_contents('php://input'), true);

  6.     

  7.     # Input validation for username y password

  8.     $username = $json["username"];

  9.     $password = $json["password"];

  10.     if(strlen($username) == 0 or strlen($password) == 0){

  11.         header("400 Bad Request", true, 400);

  12.         exit();

  13.     }

  14.     

  15.     # Hashed password

  16.     $hash = password_hash($password,  PASSWORD_BCRYPT);

  17. 

  18.     include 'db.php';

  19. 

  20.     # Starts a transaction

  21.     $conn->autocommit(FALSE);

  22.     $conn->begin_transaction(MYSQLI_TRANS_START_READ_WRITE);

  23. 

  24.     # Inserts into login

  25.     $sql = "INSERT INTO login (username, hash) VALUES ('".$username."', '".$hash."')";

  26.     if($conn->query($sql) === FALSE){

  27.         $conn->rollback();

  28.         $conn->close();

  29.         header("500 Internal Server Error", true, 500);

  30.         exit();

  31.     }

  32. 

  33.     # Grabs all data

  34.     $userid = $conn->insert_id;

  35.     $nombre = $json["nombre"];

  36.     $organizacion = $json["organizacion"];

  37.     $puesto = $json["puesto"];

  38.     $urbanizacion = $json["urbanizacion"];

  39.     $calle = $json["calle"];

  40.     $pueblo = $json["pueblo"];

  41.     $cpostal = $json["cpostal"];

  42.     $telefono = $json["telefono"];

  43.     $correo = $json["correo"];

  44. 

  45.     # Checks if necessary data is empty

  46.     if(strlen($nombre) == 0 or strlen($urbanizacion) == 0 or strlen($calle) == 0 or strlen($pueblo) == 0 or 

  47.         strlen($cpostal) == 0 or strlen($telefono) == 0 or strlen($correo) == 0 ){

  48.         $conn->rollback();

  49.         $conn->close();

  50.         header("400 Bad Request", true, 400);

  51.         exit();

  52.     }

  53. 

  54.     # Inserts into miembros

  55.     $sql = "INSERT INTO miembros (userid, nombre, organizacion, puesto, urbanizacion, calle, pueblo, cpostal, telefono, correo) VALUES "

  56.             ."('".$userid."', '".$nombre."', '".$organizacion."', '".$puesto."', '".$urbanizacion.

  57.             "', '".$calle."', '".$pueblo."', '".$cpostal."', '".$telefono."', '".$correo."')";

  58.             

  59.     if($conn->query($sql) === FALSE){

  60.         $conn->rollback();

  61.         $conn->close();

  62.         header("500 Internal Server Error", true, 500);

  63.         exit();

  64.     }

  65. 

  66.     # Commits changes

  67.     $conn->commit();

  68.     $conn->close();

  69. 

  70.     # Returns 200

  71.     header("200 OK", true, 200);

  72.     exit();

  73.     

  74. } else {

  75.     header($_SERVER["SERVER_PROTOCOL"]." 405 Method Not Allowed", true, 405);

  76.     exit();

  77. }

  78. ?>