Well look at it this way...
[Register]';
}
switch($_GET['page']) {
case 'templates' :
$content = '
There are no templates right now';
break;
case 'tutorials':
$content = '
There are no tutorials right now';
break;
case 'links':
$content = '
There are no links right now';
break;
case 'contact':
$content = '
We are currently not accepting emails...';
break;
case 'submit':
$mode = $_GET['mode']
if($mode == 'login') {
//login
$username = $_POST['username']
$password = md5($_POST['password'])
$query = 'SELECT name, password FROM users WHERE name = "'.$username.'"';
$result = mysql_query($query)
$row = @mysql_fetch_array($result, MYSQL_ASSOC)
if($username == $row['name'] && $password == $row['password']) {
$_SESSION['logged_in'] = $row['name']
header('location: index.php')
} else {
$content = 'Invalid Login credentials';
}
mysql_free_result($result)
} elseif($mode == 'register') {
//register
$name = $_POST['name']
$password1 = md5($_POST['password1'])
$password2 = md5($_POST['password2'])
$email = $_POST['email']
if(!$name || !$password1 || !$password2 || !$email) {
$content = 'Your missing a field in your registration information';
} else {
if($password1 == $password2) {
$query = 'INSERT INTO users(name, password, email)';
$query .= 'VALUES("'.$name.'", "'.$password1.'", "'.$email.'")';
$result = mysql_query($query)
$content = '
Successfully registered!
Click HERE to login';
} else {
$content = 'Passwords do no match!';
}
}
} else {
$content = 'This is not a valid submition page';
}
break;
case 'register':
$content = '
';
break;
default:
$query = 'SELECT * FROM news ORDER BY id DESC';
$result = mysql_query($query)
if ($result) {
while( $row = @mysql_fetch_array($result, MYSQL_ASSOC)) {
$content .= '
'.$row['title'].'
'.$row['content'].'
';
}
} else {
$content = 'There is currently no news...';
}
mysql_free_result($result)
break;
}
$data = array('CONTENT' => $content,
'SHOUTBOX' => 'Chatbox coming soon!',
'NAV' => $nav)
$tpl = new template;
$tpl->parseTemplate('templates/main.tpl', $data)
$tpl->display()
?>
Reply
