0

Hi,

I am looking to be able to display errors from my forms or whether the email address is already taken on the same page. My script is shown below:

if(isset($_POST['subregister'])) {
		require_once('../sign-up/recaptchalib.php'); 
  		$privatekey = "Hidden"; 
  		$resp = recaptcha_check_answer ($privatekey, $_SERVER["REMOTE_ADDR"], $_POST["recaptcha_challenge_field"], $_POST["recaptcha_response_field"]); 
		
  		if (!$resp->is_valid) { 
    		// What happens when the CAPTCHA was entered incorrectly 
    		die ("The reCAPTCHA wasn't entered correctly. Go back and try it again." . "(reCAPTCHA said: " . $resp->error . ")"); 
  		} else { 
    					// Your code here to handle a successful verification 
			require_once(MySQL);
			
			$trimmed = array_map('trim', $_POST);
			$errors = array();
				
					if (preg_match ('/^[a-zA-Z0-9 \' . - ]{2,20}$/i', $trimmed['username'])) {
						$un = mysqli_real_escape_string ($dbc, $trimmed['username']);
					} else {
						$errors[] = 'Please Choose A Username';
					}
					
					if (preg_match ('/^[a-zA-Z0-9\' ]{2,20}$/',$trimmed['password']) ) {
						if ($trimmed['password'] == $trimmed['password1']) {
							$p = mysqli_real_escape_string ($dbc, $trimmed['password']);
						} else {
							$errors[] = 'Your Password Did Not Match The Confirmed Password';
						}
					} else {
						$errors[] = 'Please Enter A Valid Password';
					}
					
					if (preg_match ('/^[\w.-]+@[\w.-]+\.[A-Za-z]{2,6}$/', $trimmed['email'])) {
						$e = mysqli_real_escape_string ($dbc, $trimmed['email']);
					} else {
						$errors[] = 'Please Enter A Valid Email Address';
					}
					
					if (isset($_POST['terms']) && ($_POST['terms'] == 'Yes')) {
						$t = mysqli_real_escape_string($dbc, $trimmed['terms']);
					} else { 
                    	$errors [] = 'Please Accept Hidden Terms and Conditions';
                 	}
					
					$user_IP = $_SERVER['REMOTE_ADDR'];
					$User_Status = 'Offline';
					$user_Level = 0;
					
					if (!$errors) {
						$q = "SELECT User_ID FROM Members WHERE Email='$e'";
						$r = mysqli_query ($dbc, $q) or trigger_error("Query: $q\n<br />MySQL Error: " . mysqli_error($dbc));
						
							if (mysqli_num_rows($r) == 0) {
								$a = md5(uniqid(rand(), true));
								
									$q = "INSERT INTO Members(Username,Password,Email,Activate,Terms,User_Registered,User_IP,User_Last_Login,User_Status,User_Level) VALUES ('$un',SHA('$p'),'$e','$a','$t',NOW(),'$user_IP',NOW(),'$User_Status','$user_Level')";
									$r = mysqli_query ($dbc, $q) or trigger_error("Query: $q\n<br />MySQL Error: " . mysqli_error($dbc));
							
										if (mysqli_affected_rows($dbc) == 1) {
											$message = '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" 
	    												"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
	    												<html xmlns="http://www.w3.org/1999/xhtml" xml:long="en" lang="en">
	    												<head>
	    												<meta http-equiv="content-type" content="text/html; charset=iso-8859-1" />
	    												<title>Registration Details</title>
	    												<style type="text/css">
	       													html{ height: 100%; width:100%;}
	       													body{font-family:Tahoma,Trebuchet MS,Lucida Grande,sans-serif;line-height:1.3em;min-height:100%;}
	       													h2{font-size: 18px;font-weight:400;color:#404141;letter-spacing: 1px;padding:15px 18px 10px 18px;}
	       													p.info{line-height:1.3em;font-size: 12px;color:#000;padding:0px 18px 0px 18px;}
	    												</style>
	    												</head>
	    												<body>';
											 $message .="<br />
											 			<h2>REGISTRATION CONFIRMATION</h2>
            											<p class=\"info\">
														This is to confirm that you have signed up to Hidden, please follow the steps below to activate your
														account:<br /><br />";
															   
			   								 $message .= "<a href=\"" . BASE_URL .'sign-up/activate.php?x=' . urlencode($e) . "&y=$a\" />Activate Your Account</a>";
			   								 $message .= "</p>
            											  <h2>ACTIVATE ANOTHER WAY</h2>
	         											  <p class=\"info\">
			   											  If the above Activation Link does not work please copy and paste the code below into your browser address bar 
														  to activate your account:<br /><br />";
			    							 $message .= BASE_URL.'sign-up/activate.php?x='.urlencode($e)."&y=$a";
			    							 $message .="</p>
	    												 </body>
	 													 </html>";
					
                							 $headers = 'MIME-Version: 1.0' . "\r\n";
											 $headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n";
											 $headers .='From: hidden Registration <noreply@hidden>' . "\r\n" .
    			   										'Reply-To: Admin@hidden'. "\r\n" .
    			   										'X-Mailer: PHP/' . phpversion();

											 mail($trimmed['email'],'Registration Confirmation',$message,$headers);
											 
											 	echo '<div id="rows">
													  	<div id="container">
																<div id="registerPanel>
																	<div class="goodResult">
	                  													<h2>Congratulations</h2>
	                     													<div class="resultRow">
                    															<p>
																					Thank you for registering! A confirmation email has been sent to your email address. Please click on the link 
																					in that email in order to activate your account.
																				</p>
																			</div>
																		</div>
																 </div>
														</div>
													</div>';
													include ('../includes/footer.php');
													exit();
										} else {
							 
							 	echo '<div id="registerPanel">
                       						<div class="badResult">
	                  							<h2>REGISTER ERROR</h2>
	                     							<div class="resultRow">
														<p>
															You could not be registered due to a system error, We apologize for any inconvenience.
														</p>
													</div>
											</div>
										</div>';
										
							}
					 } else {
					 	echo '<div id="registerPanel">
                       				<div class="badResult">
	                  					<h2>EMAIL ALREADY REGISTERED</h2>
												<p>
													That email address has already been registered. If you have forgotten your password, use the link at the login page to 
													have your password sent to you.
												</p>
									 </div>
								</div>';
								
					}
					
			} else {
			
				echo '<div id="rows">
					  	<div id="container">
							<div id="registerPanel">
                        		<div class="badResult">
	                  				<h2>FORM VALIDATION ERRORS</h2>
										<p>
											Please correct the following errors:<ul>';
												foreach ($errors as $v) {
													echo "<li>$v.</li>\n";
												}
											echo '</ul>
									  	</p>
							  	</div>
							</div>
						</div>
					</div>';
			}
					
				mysqli_close($dbc);
				
		} //END OF SUCCESS FOR CAPTURE						
	} //END OF SUBREGISTER
?>
<div id="rows">
	<div id="container">
		<div id="registerPanel">
			<h1>Registration</h1>
				<form name="register" id="register" method="post" action="http://www.Hidden/sign-up/register.php">
					<div id="bx1">
						<h2>User Details</h2>
						<div class="rowElem">
							<label for="username">Username:</label>	
								<input type="text" name="username" size="20" maxlength="20" class="username" value="<?php if (isset($trimmed['username'])) echo $trimmed['username']; ?>" />
						</div>
						<div class="rowElem">
							<label for="password">Password:</label>	
								<input type="password" name="password" size="20" maxlength="20" class="psw" value="<?php if (isset($trimmed['password'])) echo $trimmed['password']; ?>" />
						</div>
						<div class="rowElem">
							<label for="password">Confirm Password:</label>	
								<input type="password" name="password1" size="20" maxlength="20" class="psw" value="<?php if (isset($trimmed['password1'])) echo $trimmed['password1']; ?>" />
						</div>
						<div class="rowElem">
							<label for="email">E-Mail:</label>	
								<input type="text" name="email" size="80" maxlength="80" class="email" value="<?php if (isset($trimmed['email'])) echo $trimmed['email']; ?>" />
						</div>
					</div>
					<div id="bx1">
						<h2>Terms & Conditions</h2>
						<div class="rowElem">
							<label for="terms" class="l2">You agree to the <a href="#">Terms & Conditions</a> set out by Hidden</label>	
								<input type="radio" name="terms" class="terms" value="Yes" />
						</div>
					</div>
					<div id="bx1">
						<div class="rowElem">
							<h2>Security Question</h2>
								<div class="capture">
									<?php
										require_once('../sign-up/recaptchalib.php'); 
  										$publickey = "Hidden"; // you got this from the signup page 
  										echo recaptcha_get_html($publickey);
									?>
								</div>
						</div>
					</div>
					<div class="rowElem">
						<input type="submit" class="regBut" name="register" value="Register" />
						<input type="hidden" name="subregister" value="TRUE" />
					</div>
				</form>
		</div>

I would consider AJAX as a way of doing it but using the POST method but I did have problems when trying to implement it with the checking of regular expressions and also I don't really understand AJAX well enough to dive into head first.

Any help would be much appreciated.

Thanks

Edited by SunnySideUp: n/a

3
Contributors
3
Replies
4
Views
7 Years
Discussion Span
Last Post by Stefano Mtangoo
0

Hi,

Why dont you use session to save message and show it on same page. If the action was successful redirect to new page with thanks you messages. The way you have done could have issue with browser throwing form data when user will refresh the page

One more advantage with session message would be that, you can decorate your message on screen, rather then die.

Let me know if you need more understanding on this

Good luck.

0

Hi it200219

Thanks for your response, could you give me some more understanding or some examples.

Thanks

0

No way you can do this with traditional PHP. Only way is AJAX. In that way you can check the variables and report error without moving. I will suggest you check JQuery JS library with simplified AJAX calls

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.