A simple php website which displays quotes on pictures of pandas.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 

93 lines
3.3 KiB

<?php
if($admin)
{
$errors = array();
if(isset($_POST['newUser']))
{
// echo '**********';
$i_first = mysqli_real_escape_string($dbc, trim($_POST['first']));
$i_last = mysqli_real_escape_string($dbc, trim($_POST['last']));
$i_pass = mysqli_real_escape_string($dbc, trim($_POST['pass']));
$i_user = mysqli_real_escape_string($dbc, trim($_POST['user_name']));
if($i_first && $i_last && $i_pass && $i_user)
{
$q = "select user_id from users where user_name='$i_user'";
$r = mysqli_query($dbc, $q);
if(@mysqli_num_rows($r) == 1)
{
$errors['name'] = "That user name is already in use.";
}
}
else
{
$errors['input'] = "Please fill in all fields!";
}
if(empty($errors))
{
$passcom = $i_pass . $i_first;
$passcom = SHA1($passcom);
if(isset($_POST['admin']))
{
$adminn = "true";
}
else
{
$adminn = "false";
}
$q = "insert into users(first_name, last_name, user_name, pass, registration_date, admin) values ('$i_first', '$i_last' , '$i_user', '$passcom', now(), $adminn)";
//echo $q;
$r = mysqli_query($dbc, $q);
header("Location: admin.php");
}
}
echo '<h1 class="w3-text-teal"><center>Add User</center></h1>';
echo '<form action="admin.php" method ="post" class="w3-container w3-card-4">
<div class="w3-group">
<input class="w3-input" type="text" name="user_name" required>
<label class="w3-label w3-validate">User Name</label>
</div>
<div class="w3-group">
<input class="w3-input" type="text" name="first" required>
<label class="w3-label w3-validate">First Name</label>
</div>
<div class="w3-group">
<input class="w3-input" type="text" name="last" required>
<label class="w3-label w3-validate">Last Name</label>
</div>
<div class="w3-group">
<input class="w3-input" type="password" name="pass" maxlength="20" required>
<label class="w3-label w3-validate">Password</label>
</div>
<input class="w3-check" type="checkbox" name="admin">
<label class="w3-validate">Admin<label>
<p><input type="submit" name="Submit" value="Add User" class="w3-padding-16 w3-hover-dark-grey w3-btn-block w3-center-align" /></p>
<input type="hidden" name="newUser" value="TRUE" />
</form>';
foreach($errors as $msg)
{
echo " - $msg<br />";
}
}
?>