lindeas
/
jilo-web
1
1
Fork 0
Code Issues Pull Requests Packages Projects Releases 5 Wiki Activity

Adds validation to registration form

main
Yasen Pramatarov 2025-02-10 19:25:17 +02:00
parent d2a9280d7d
commit 6c37a082bf
3 changed files with 41 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
app/includes/sanitize.php
View File

@ -2,7 +2,7 @@
// sanitize all input vars that may end up in URLs or forms // sanitize all input vars that may end up in URLs or forms
$platform_id = htmlspecialchars($_REQUEST['platform']); $platform_id = htmlspecialchars($_REQUEST['platform'] ?? '');
if (isset($_REQUEST['page'])) { if (isset($_REQUEST['page'])) {
$page = htmlspecialchars($_REQUEST['page']); $page = htmlspecialchars($_REQUEST['page']);
} else { } else {

28
app/pages/register.php
View File

@ -17,6 +17,27 @@ if ($config['registration_enabled'] == true) {
$dbWeb = connectDB($config); $dbWeb = connectDB($config);
if ( $_SERVER['REQUEST_METHOD'] == 'POST' ) { if ( $_SERVER['REQUEST_METHOD'] == 'POST' ) {
require_once '../app/classes/validator.php';
$validator = new Validator($_POST);
$rules = [
'username' => [
'required' => true,
'min' => 3,
'max' => 20
],
'password' => [
'required' => true,
'min' => 8,
'max' => 100
],
'confirm_password' => [
'required' => true,
'matches' => 'password'
]
];
if ($validator->validate($rules)) {
$username = $_POST['username']; $username = $_POST['username'];
$password = $_POST['password']; $password = $_POST['password'];
@ -25,7 +46,7 @@ if ($config['registration_enabled'] == true) {
// redirect to login // redirect to login
if ($result === true) { if ($result === true) {
Messages::flash('NOTICE', 'DEFAULT', "Registration successful.<br />You can log in now."); Messages::flash('NOTICE', 'DEFAULT', "Registration successful. You can log in now.");
header('Location: ' . htmlspecialchars($app_root)); header('Location: ' . htmlspecialchars($app_root));
exit(); exit();
// registration fail, redirect to login // registration fail, redirect to login
@ -34,6 +55,11 @@ if ($config['registration_enabled'] == true) {
header('Location: ' . htmlspecialchars($app_root)); header('Location: ' . htmlspecialchars($app_root));
exit(); exit();
} }
} else {
Messages::flash('ERROR', 'DEFAULT', $validator->getFirstError());
header('Location: ' . htmlspecialchars($app_root . '?page=register'));
exit();
}
} }
} catch (Exception $e) { } catch (Exception $e) {
Messages::flash('ERROR', 'DEFAULT', $e->getMessage()); Messages::flash('ERROR', 'DEFAULT', $e->getMessage());

2
app/templates/form-register.php
View File

@ -7,6 +7,8 @@
<input type="text" name="username" placeholder="Username" required autofocus /> <input type="text" name="username" placeholder="Username" required autofocus />
<br /> <br />
<input type="password" name="password" placeholder="Password" required /> <input type="password" name="password" placeholder="Password" required />
<br />
<input type="password" name="confirm_password" placeholder="Confirm password" required />
<br />&nbsp;<br /> <br />&nbsp;<br />
<input type="submit" class="btn btn-primary" value="Register" /> <input type="submit" class="btn btn-primary" value="Register" />
</form> </form>