PHP Code:
<?php
if (isset($_POST['login']) && isset($_POST['password']) && isset($_POST['email'])) {
// Connect
$link = mysql_connect('hostname', 'user', 'password');
if(!is_resource($link)) {
echo "Failed to connect to the server\n";
// ... log the error properly
} else {
// Reverse magic_quotes_gpc/magic_quotes_sybase effects on those vars if ON.
if(get_magic_quotes_gpc()) {
$login = stripslashes($_POST['login']);
$password = stripslashes($_POST['password']);
$email = stripslashes($_POST['email']);
} else {
$login = $_POST['login'];
$password = $_POST['password'];
$email = $_POST['email'];
}
// Make a safe query
$query = sprintf("INSERT INTO logon.accounts (`acct`, `login`, `password`, 'encrypted_password', 'gm', 'banned', 'lastlogin', 'lastip', 'email', 'flags', 'forceLanguage', 'muted', 'banreason') VALUES (%u, '%s', '%s', '%s', '%s', %u, %d, '%s', '%s', %u, '%s', %d, '%s')",
NULL,
mysql_real_escape_string($login, $link),
mysql_real_escape_string($password, $link),
'',
0,
0,
NULL,
'',
mysql_real_escape_string($email, $link),
24,
enUS,
0,
'');
if($password == $_POST['cpassword']) {
mysql_query($query, $link);
} else {
echo "Please make sure your passwords match\n";
}
if (mysql_affected_rows($link) > 0) {
header( "Location: connection info page" );
}
}
} else {
echo "Error Creating Account\n";
}
?>