HospitalManagementSystem/adminUserRegistration.php at main · Dec-246/HospitalManagementSystem · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
<?php
// Registration Logic Here
ini_set("display_errors", 1);
require('patientSessions.php');
require('config.php');

$regLogin = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
$regAdminPassword = $_POST['adminPassword'];
$regPasswordConfirm = $_POST['passwordConfirm'];
$regContactNumber = $_POST['contactNumber'];


if (!$regLogin) {
    $_SESSION['regError'] = 1;
    $referer = "adminRegister.php";
    header("Location: ". $referer);
    exit;
}

//check if password correct
if ($regAdminPassword != $regPasswordConfirm || $regAdminPassword == "") {
    $_SESSION['regError'] = 2;
    $referer = "adminRegister.php";
    header("Location: ../".$referer);
    exit;
} else {

    // Password is valid
    // Check if the admin has already registered
    $stmt = $conn->prepare("SELECT * FROM admin_ WHERE email = ?");
    $stmt->bind_param("s", $regLogin);
    $stmt->execute();
    $stmt->store_result();
    $numUsers = $stmt->num_rows;

    if ($numUsers == 1) {
        $_SESSION['regError'] = 3;
        $referer = "adminRegister.php";
    } else {


        // Insert the New admin user into the Database
        $stmt = $conn->prepare("INSERT INTO admin_(email, adminPassword, contactNumber) VALUES (?, ?, ?)"); // users== patient  //userPassword == patientPassword
        $hashedPw = password_hash($regAdminPassword, PASSWORD_BCRYPT);
        $stmt->bind_param("sss", $regLogin, $hashedPw, $regContactNumber);
        $stmt->execute();

        if (isset($_SESSION['regError'])) {
            unset($_SESSION['regError']);
        }
        $referer = "adminLogin.php";
    }
}

$stmt->close();
$conn->close();

header("Location: ".$referer); // send user to different page
exit;