CREATE TABLE `login`.`member` ( `id` INT NOT NULL AUTO_INCREMENT PRIMARY KEY, `username` VARCHAR(30) NOT NULL, `password` CHAR(128) NOT NULL, `email` VARCHAR(50) NOT NULL, `salt` CHAR(128) NOT NULL ) ENGINE = InnoDB;
<!<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>Register</title> </head> <body> <form name="register" action="register.php" method="post"> <table width="510" border="0"> <tr> <td colspan="2"><p><strong>Registration Form</strong></p></td> </tr> <tr> <td>Username:</td> <td><input type="text" name="username" maxlength="20" /></td> </tr> <tr> <td>Password:</td> <td><input type="password" name="password1" /></td> </tr> <tr> <td>Confirm Password:</td> <td><input type="password" name="password2" /></td> </tr> <tr> <td>Email:</td> <td><input type="text" name="email" id="email" /></td> </tr> <tr> <td> </td> <td><input type="submit" value="Register" /></td> </tr> </table> </form> </body> </html>
<?php //retrieve our data from POST $username = $_POST['username']; $password1 = $_POST['password1']; $password2 = $_POST['password2']; $email = $_POST['email']; if($password1 != $password2)
function createSalt() { } $salt = createSalt();
//sanitize username $query = "INSERT INTO member ( username, password, email, salt ) VALUES ( '$username', '$password', '$email', '$salt' );"; ?>