{"id":1349,"date":"2022-11-28T09:03:33","date_gmt":"2022-11-28T01:03:33","guid":{"rendered":"https:\/\/hostscripter.com\/?p=1349"},"modified":"2022-11-28T09:03:33","modified_gmt":"2022-11-28T01:03:33","slug":"part-4-create-your-own-registration-system-using-php-and-mysql","status":"publish","type":"post","link":"https:\/\/hostscripter.com\/?p=1349","title":{"rendered":"Part 4: Create your own Registration System using PHP and MySql"},"content":{"rendered":"

4. Registering Users with PHP & MySQL<\/h2>\n

Now we need to create the registration file that will process the form fields, check for basic validation, and insert the new account into our database.<\/p>\n

The registration page will require a connection to our database and therefore we must include the necessary variables and MySQL functions. Edit the\u00a0register.php<\/i>\u00a0file and add the following code:<\/p>\n

<\/div>\n
<?php<\/span>\r\n\/\/ Change this to your connection info.<\/span>\r\n$DATABASE_HOST<\/span> =<\/span> 'localhost'<\/span>;<\/span>\r\n$DATABASE_USER<\/span> =<\/span> 'root'<\/span>;<\/span>\r\n$DATABASE_PASS<\/span> =<\/span> ''<\/span>;<\/span>\r\n$DATABASE_NAME<\/span> =<\/span> 'phplogin'<\/span>;<\/span>\r\n\/\/ Try and connect using the info above.<\/span>\r\n$con<\/span> =<\/span> mysqli_connect<\/span>(<\/span>$DATABASE_HOST<\/span>,<\/span> $DATABASE_USER<\/span>,<\/span> $DATABASE_PASS<\/span>,<\/span> $DATABASE_NAME<\/span>)<\/span>;<\/span>\r\nif<\/span> (<\/span>mysqli_connect_errno<\/span>(<\/span>)<\/span>)<\/span> {<\/span>\r\n\t\/\/ If there is an error with the connection, stop the script and display the error.<\/span>\r\n\texit<\/span>(<\/span>'Failed to connect to MySQL: '<\/span> .<\/span> mysqli_connect_error<\/span>(<\/span>)<\/span>)<\/span>;<\/span>\r\n}<\/span><\/span><\/code><\/pre>\n
Don’t forget to update the MySQL variables if your MySQL credentials do not reflect the declared values.<\/p>\n
Next, we can add basic validation to ensure the user has entered their details and check for empty variables.<\/p>\n
<\/div>\n
\/\/ Now we check if the data was submitted, isset() function will check if the data exists.<\/span>\r\nif<\/span> (<\/span>!<\/span>isset<\/span>(<\/span>$_POST<\/span>[<\/span>'username'<\/span>]<\/span>,<\/span> $_POST<\/span>[<\/span>'password'<\/span>]<\/span>,<\/span> $_POST<\/span>[<\/span>'email'<\/span>]<\/span>)<\/span>)<\/span> {<\/span>\r\n\t\/\/ Could not get the data that should have been sent.<\/span>\r\n\texit<\/span>(<\/span>'Please complete the registration form!'<\/span>)<\/span>;<\/span>\r\n}<\/span>\r\n\/\/ Make sure the submitted registration values are not empty.<\/span>\r\nif<\/span> (<\/span>empty<\/span>(<\/span>$_POST<\/span>[<\/span>'username'<\/span>]<\/span>)<\/span> ||<\/span> empty<\/span>(<\/span>$_POST<\/span>[<\/span>'password'<\/span>]<\/span>)<\/span> ||<\/span> empty<\/span>(<\/span>$_POST<\/span>[<\/span>'email'<\/span>]<\/span>)<\/span>)<\/span> {<\/span>\r\n\t\/\/ One or more values are empty.<\/span>\r\n\texit<\/span>(<\/span>'Please complete the registration form'<\/span>)<\/span>;<\/span>\r\n}<\/span><\/code><\/pre>\n
Now we need to check if the account already exists in the database. We can check this by selecting a record from our accounts table with the same\u00a0username<\/i>\u00a0that the user has provided.<\/p>\n
Add after:<\/p>\n
<\/div>\n
\/\/ We need to check if the account with that username exists.<\/span>\r\nif<\/span> (<\/span>$stmt<\/span> =<\/span> $con<\/span>-<\/span>><\/span>prepare<\/span>(<\/span>'SELECT id, password FROM accounts WHERE username = ?'<\/span>)<\/span>)<\/span> {<\/span>\r\n\t\/\/ Bind parameters (s = string, i = int, b = blob, etc), hash the password using the PHP password_hash function.<\/span>\r\n\t$stmt<\/span>-<\/span>><\/span>bind_param<\/span>(<\/span>'s'<\/span>,<\/span> $_POST<\/span>[<\/span>'username'<\/span>]<\/span>)<\/span>;<\/span>\r\n\t$stmt<\/span>-<\/span>><\/span>execute<\/span>(<\/span>)<\/span>;<\/span>\r\n\t$stmt<\/span>-<\/span>><\/span>store_result<\/span>(<\/span>)<\/span>;<\/span>\r\n\t\/\/ Store the result so we can check if the account exists in the database.<\/span>\r\n\tif<\/span> (<\/span>$stmt<\/span>-<\/span>><\/span>num_rows<\/span> ><\/span> 0<\/span>)<\/span> {<\/span>\r\n\t\t\/\/ Username already exists<\/span>\r\n\t\techo<\/span> 'Username exists, please choose another!'<\/span>;<\/span>\r\n\t}<\/span> else<\/span> {<\/span>\r\n\t\t\/\/ Insert new account<\/span>\r\n\t}<\/span>\r\n\t$stmt<\/span>-<\/span>><\/span>close<\/span>(<\/span>)<\/span>;<\/span>\r\n}<\/span> else<\/span> {<\/span>\r\n\t\/\/ Something is wrong with the sql statement, check to make sure accounts table exists with all 3 fields.<\/span>\r\n\techo<\/span> 'Could not prepare statement!'<\/span>;<\/span>\r\n}<\/span>\r\n$con<\/span>-<\/span>><\/span>close<\/span>(<\/span>)<\/span>;<\/span>\r\n?><\/span><\/code><\/pre>\n
Replace:<\/p>\n
\/\/ Insert new account<\/span><\/code><\/pre>\n
With:<\/p>\n
<\/div>\n
\/\/ Username doesnt exists, insert new account<\/span>\r\nif<\/span> (<\/span>$stmt<\/span> =<\/span> $con<\/span>-<\/span>><\/span>prepare<\/span>(<\/span>'INSERT INTO accounts (username, password, email) VALUES (?, ?, ?)'<\/span>)<\/span>)<\/span> {<\/span>\r\n\t\/\/ We do not want to expose passwords in our database, so hash the password and use password_verify when a user logs in.<\/span>\r\n\t$password<\/span> =<\/span> password_hash<\/span>(<\/span>$_POST<\/span>[<\/span>'password'<\/span>]<\/span>,<\/span> PASSWORD_DEFAULT<\/span>)<\/span>;<\/span>\r\n\t$stmt<\/span>-<\/span>><\/span>bind_param<\/span>(<\/span>'sss'<\/span>,<\/span> $_POST<\/span>[<\/span>'username'<\/span>]<\/span>,<\/span> $password<\/span>,<\/span> $_POST<\/span>[<\/span>'email'<\/span>]<\/span>)<\/span>;<\/span>\r\n\t$stmt<\/span>-<\/span>><\/span>execute<\/span>(<\/span>)<\/span>;<\/span>\r\n\techo<\/span> 'You have successfully registered, you can now login!'<\/span>;<\/span>\r\n}<\/span> else<\/span> {<\/span>\r\n\t\/\/ Something is wrong with the sql statement, check to make sure accounts table exists with all 3 fields.<\/span>\r\n\techo<\/span> 'Could not prepare statement!'<\/span>;<\/span>\r\n}<\/span><\/code><\/pre>\n
This will insert a new account into our accounts table.<\/p>\n
Remember in our\u00a0Login System<\/a>\u00a0we used the\u00a0password_verify<\/a><\/i>\u00a0function? As you can see in the code above we use the\u00a0password_hash<\/a><\/i>\u00a0function, this will encrypt the user’s password using the one-way algorithm \u2014 this will prevent your users passwords from being exposed if for somehow your database becomes vulnerable.<\/p>\n
That’s basically all we need to do to register accounts on our website.<\/p>\n
<\/a><\/a><\/a><\/a><\/div>
<\/a><\/a><\/a><\/a><\/div>","protected":false},"excerpt":{"rendered":"
4. Registering Users with PHP & MySQL Now we need to create the registration file that will process the form fields, check for basic validation, and insert the new account […]<\/p>\n","protected":false},"author":301,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_newsletter_tier_id":0,"footnotes":""},"categories":[4],"tags":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9KaPo-lL","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":1343,"url":"https:\/\/hostscripter.com\/?p=1343","url_meta":{"origin":1349,"position":0},"title":"Part 1: Create your own Registration System using PHP and MySql","author":"h05t5cr1pt3r","date":"November 28, 2022","format":false,"excerpt":"This tutorial is a follow up to our previous tutorial\u00a0Secure Login System with PHP and MySQL. In this tutorial, we'll be creating a secure registration form and implementing basic validation. A registration form is what your website's visitors can use to register their details, which will subsequently be stored in\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/hostscripter.com\/?cat=4"},"img":{"alt_text":"Secure Registration System with PHP and MySQL","src":"https:\/\/i0.wp.com\/codeshack.io\/web\/img\/posts\/secure-registration-system-php-mysql.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/codeshack.io\/web\/img\/posts\/secure-registration-system-php-mysql.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/codeshack.io\/web\/img\/posts\/secure-registration-system-php-mysql.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/codeshack.io\/web\/img\/posts\/secure-registration-system-php-mysql.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":1354,"url":"https:\/\/hostscripter.com\/?p=1354","url_meta":{"origin":1349,"position":1},"title":"Part 6: Create your own Registration System using PHP and MySql","author":"h05t5cr1pt3r","date":"November 28, 2022","format":false,"excerpt":"6. Implementing Account Activation The account activation system will send an email to the user with the activation link when the user has registered. The first thing we need to do is to go into\u00a0phpMyAdmin\u00a0and select our database, in our case this would be\u00a0phplogin, you can either add the column\u00a0activation_code\u00a0to\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/hostscripter.com\/?cat=4"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1341,"url":"https:\/\/hostscripter.com\/?p=1341","url_meta":{"origin":1349,"position":2},"title":"Part 7: Create your own Login System using PHP and MySql","author":"h05t5cr1pt3r","date":"November 28, 2022","format":false,"excerpt":"7. Creating the Logout Script Creating the logout script is straightforward. All you need to do is destroy the sessions that were declared in the authenticate file. Edit the\u00a0logout.php\u00a0file and add the following code:  Initialize sessions, destroy them,\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/hostscripter.com\/?cat=4"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1335,"url":"https:\/\/hostscripter.com\/?p=1335","url_meta":{"origin":1349,"position":3},"title":"Part 4: Create your own Login System using PHP and MySql","author":"h05t5cr1pt3r","date":"November 28, 2022","format":false,"excerpt":"4. Authenticating Users with PHP Now that we have our database setup, we can go ahead and start coding with PHP. We're going to start with the authentication file, which will process and validate the form data that we'll send from our\u00a0index.html\u00a0file. Edit the\u00a0authenticate.php\u00a0file and add the following: