connect_error){ die("DB Error"); }
if(isset($_POST['register'])){
$u = $_POST['user'];
$p = password_hash($_POST['pass'], PASSWORD_DEFAULT);
$u_safe = $conn->real_escape_string($u);
$conn->query("INSERT INTO users(username,password,highscore_easy, highscore_medium, highscore_hard) VALUES('$u_safe','$p',0,0,0)");
if($conn->affected_rows > 0) {
$_SESSION['user'] = $u;
header("Location: index.php");
exit;
}
}
if(isset($_POST['login'])){
$u = $_POST['user'];
$p = $_POST['pass'];
$u_safe = $conn->real_escape_string($u);
$res = $conn->query("SELECT * FROM users WHERE username='$u_safe'");
if($row = $res->fetch_assoc()){
if(password_verify($p, $row['password'])){
$_SESSION['user'] = $u;
header("Location: index.php");
exit;
}
}
}
?>
Login & Register