35591-vm/register.php

<?php
require_once 'db/config.php';
require_once 'includes/header.php';

$error = null;
$success = null;

if ($_SERVER['REQUEST_METHOD'] === 'POST') {
    $pdo = db();

    $username = $_POST['username'] ?? '';
    $email = $_POST['email'] ?? '';
    $password = $_POST['password'] ?? '';
    $password_confirm = $_POST['password_confirm'] ?? '';

    if (empty($username) || empty($email) || empty($password) || empty($password_confirm)) {
        $error = t('fill_all_fields');
    } elseif ($password !== $password_confirm) {
        $error = t('passwords_do_not_match');
    } elseif (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
        $error = t('invalid_email');
    } else {
        try {
            $stmt = $pdo->prepare('SELECT id FROM users WHERE email = ?');
            $stmt->execute([$email]);
            if ($stmt->fetch()) {
                $error = t('email_already_registered');
            } else {
                $hashed_password = password_hash($password, PASSWORD_DEFAULT);
                $stmt = $pdo->prepare('INSERT INTO users (username, email, password) VALUES (?, ?, ?)');
                $stmt->execute([$username, $email, $hashed_password]);
                $success = t('registration_successful');
            }
        } catch (PDOException $e) {
            $error = "Database error: " . $e->getMessage();
        }
    }
}
?>
    <main class="container">
        <section class="auth-form">
            <h1><?= t('create_account') ?></h1>
            <p><?= t('register_subtitle') ?></p>

            <?php if ($error): ?>
                <div class="error-message"><?= $error ?></div>
            <?php endif; ?>
            <?php if ($success): ?>
                <div class="success-message">
                    <?= $success ?>
                    <a href="login.php"><?= t('login_now') ?></a>
                </div>
            <?php endif; ?>

            <form action="register.php" method="POST" id="register-form" novalidate>
                <div class="form-group">
                    <label for="username"><?= t('registration_form_username') ?></label>
                    <input type="text" id="username" name="username" required>
                </div>
                <div class="form-group">
                    <label for="email"><?= t('registration_form_email') ?></label>
                    <input type="email" id="email" name="email" required>
                </div>
                <div class="form-group">
                    <label for="password"><?= t('registration_form_password') ?></label>
                    <input type="password" id="password" name="password" required>
                </div>
                <div class="form-group">
                    <label for="password_confirm"><?= t('registration_form_password_confirm') ?></label>
                    <input type="password" id="password_confirm" name="password_confirm" required>
                </div>
                <div class="form-group">
                    <button type="submit" class="btn btn-primary"><?= t('register_button') ?></button>
                </div>
            </form>
            <p class="auth-switch"><?= t('already_have_account') ?> <a href="login.php"><?= t('login_link') ?></a></p>
        </section>
    </main>

<?php include 'includes/footer.php'; ?>