prepare("SELECT ID FROM users WHERE username = :username");
$req->bindParam(":username", htmlspecialchars($_POST['username']));
$req->execute();
$resultat = $req->fetchAll(PDO::FETCH_ASSOC);
if($resultat) {
$status = "Erreur, le nom d'utilisateur existe déjà.";
} else {
$req = $bdd->prepare("INSERT INTO users (username, password, email, display_name, role, accreditation) VALUES (:username, :password, :email, :display_name, 0, 0)");
$req->bindParam(':username', htmlspecialchars($_POST['username']));
$req->bindParam(':password', md5($_POST['password']));
$req->bindParam(':email', htmlspecialchars($_POST['email']));
$req->bindParam(':display_name', htmlspecialchars($_POST['display_name']));
if ($req->execute()) {
header("Location: login.php");
exit();
} else {
$status = "Erreur SQL";
}
}
} else {
$status = "Les mots de passe ne correspondent pas.";
}
}
}
?>
<?=$title?>
