php add pizza login

Author: CodingBDX

add.php

@@ -1,6 +1,9 @@
 <?php
 include('../tuto/config/db_connect.php');
-
+session_start();
+if(!isset($_SESSION['username'])){
+  header('Location:index.php');
+}
 if(isset($_POST['submit'])) {
   session_start();
 

config/db_connect.php

@@ -4,4 +4,13 @@
   echo 'connection errors' . mysqli_connect_error();
 }else{
 
-} ?>
+} 
+
+$connB = mysqli_connect('localhost', 'admin', 'admin', 'login_register') or die('connection failed');
+
+if(!$connB){
+  echo 'connection errors' . mysqli_connect_error();
+}else{
+
+}
+?>

login.php

@@ -0,0 +1,47 @@
+<?php 
+include 'config/db_connect.php';
+session_start();
+if(isset($_POST['submit'])){
+  $email = $_POST['email'];
+  $password = md5($_POST['password']);
+
+  $result = mysqli_query($connB, "SELECT * FROM `users` WHERE email='$email' AND password='$password'");
+
+  
+  if($result->num_rows > 0){
+$row = mysqli_fetch_assoc($result);
+$_SESSION['username'] = $row['username']; 
+header("Location: add.php");
+
+  }else{
+    echo 'something wrong with password or email';
+  }
+}
+?>
+<!DOCTYPE html>
+<html lang="en">
+
+  <?php include('templates/header.php') ?>
+  <div class="container">
+    <form action="" method="POST" class="login-email">
+      <p class="login-text" style="font-size:2 rem; font-weight: 800;">
+      login
+      </p>
+      <p><?php echo $success ?></p>
+      <div class="input-group">
+        <input required type="email"  placeholder="email" value="<?php echo $email ?>" name="email" class="email">
+      </div>
+<div class="input-group">
+        <input required type="password" value="<?php echo $_POST['password']; ?>" name="password" placeholder="password" class="password">
+      </div>
+      <div class="input-group">
+        <button class="btn" name="submit">login</button>
+      </div>
+      <p class="login-register-text">don't have a account? <a href="register.php">register</a></p>
+    </form>
+  </div>
+
+  <?php include('templates/footer.php') ?>
+
+
+</html>

logout.php

@@ -0,0 +1,8 @@
+<?php
+
+
+session_start();
+session_destroy();
+
+header("Location: index.php");
+ ?>

register.php

@@ -0,0 +1,79 @@
+<?php 
+include 'config/db_connect.php';
+
+
+if(isset($_POST['submit'])){
+$username = $_POST['username'];
+$email = $_POST['email'];
+$password = md5($_POST['password']);
+$cpassword = md5($_POST['cpassword']);
+
+if($password == $cpassword){
+  $result = mysqli_query($connB, "SELECT * FROM `users` WHERE email='$email'");
+  
+
+  if($result->num_rows > 0){
+   $already =  "user already exist";
+
+  }else{
+ $result = mysqli_query($connB, "INSERT INTO `users` (username, email, password) VALUES ('$username', '$email', '$password')");
+
+ 
+ if($result){
+   
+$username = "";
+$email = "";
+$_POST['password'] = "";
+$_POST['cpassword'] = "";
+$success =  "you are register";
+
+header('location:login.php'); 
+
+}else {
+   echo "<script>alert('eror register')</script>";
+
+}
+}
+
+}else{
+   echo "<script>alert('eror register')</script>";
+
+}
+}
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<?php include('templates/header.php') ?>
+
+  <div class="container">
+    <form action="register.php" method="POST" class="login-email">
+      <p class="login-text" style="font-size:2 rem; font-weight: 800;">
+      register
+      </p>
+      <div class="input-group">
+        <input required type="text" value="<?php echo $username ?>"  placeholder="Username" name="username">
+      </div>
+
+      <div class="input-group">
+        <input required type="email"  placeholder="Email" value="<?php echo $email ?>" name="email">
+      </div>
+<div class="input-group">
+        <input required type="password" value="<?php echo $password ?>"    
+         placeholder="password" name="password" class="password">
+      </div>
+      <div class="input-group">
+        <input required type="password"  value="<?php echo $cpassword ?>" placeholder="Confirm password" name="cpassword" class="password">
+      </div>
+      <p><?php echo $errorCpassword; ?></p>
+      <p><?php echo $already; ?></p>
+
+      <div class="input-group">
+        <button name="submit" class="btn">register</button>
+      </div>
+      <p class="login-register-text">have a account? <a href="index.php">register</a></p>
+    </form>
+  </div>
+  <script src="script.js"></script>
+<?php include('templates/footer.php') ?>
+</html>

templates/header.php

@@ -1,10 +1,10 @@
 <?php 
 session_start();
 if($_SERVER['query_string'] == 'noname'){
-  unset($_SESSION['name']);
+  unset($_SESSION['username']);
 }
-$name = $_SESSION['name'] ?? 'Guest';
-$gender = $_COOKIE['gender'] ?? 'unknow';
+$name = $_SESSION['username'] ?? 'Guest';
+
 ?>
 <head>
   <meta charset="UTF-8">
@@ -39,8 +39,20 @@
     <div class="container">
       <a href="index.php" class="brand-logo brand-text">Ninja pizza</a>
       <ul id="nav-mobile" class="right hide-on-small-and-down">
-        <li class="grey-text">hello<?php echo htmlspecialchars($name)?>(<?php echo htmlspecialchars($gender)?>)</li>
-        <li><a href="add.php" class="btn brand z-depth-0">add a pizza</a></li>
+        <li class="grey-text">hello:<?php echo htmlspecialchars($name)?></li>
+       
+        
+
+        
+<?php if( isset($_SESSION['username']) && !empty($_SESSION['username']) )
+{
+?>
+      <li><a href="logout.php" class="btn brand z-depth-0">logout</a></li>
+<?php }else{ ?>
+     <li><a href="login.php" class="btn brand z-depth-0">login</a></li>
+     <li><a href="register.php" class="btn brand z-depth-0">register</a></li>
+<?php } ?>
+
       </ul>
     </div>
   </nav>