MAINHACK

Viewing / Editing File: sign.php

<?php 
error_reporting(0);
use PHPMailer\PHPMailer\PHPMailer;
use PHPMailer\PHPMailer\Exception;
require 'PHPMailer/src/Exception.php';
require 'PHPMailer/src/PHPMailer.php';
include("functions.php");
?>
<?php  
$login_message = "";
if($_SERVER["REQUEST_METHOD"] == "POST") {
if(!csrf_token_is_valid() || !csrf_token_is_recent()) {
$login_message = "<p class='alert alert-danger text-center ' role='alert'>Sorry, Token Authentication invalid.</p>";
}

$full_name = test_input($_POST['full_name']);
$username = test_input($_POST['username']);
$business_name = test_input($_POST['business_name']);
$phone = test_input($_POST['phone']);
$location = test_input($_POST['location']);
$country = test_input($_POST['country']);
$currency  = test_input($_POST['currency']);
$password = test_input($_POST['password']);
$confirm_password = test_input($_POST['confirm_password']);
$email = test_input($_POST['email']);
$countryCode = test_input($_POST['countryCode']);

$select = mysqli_query($new,"SELECT * FROM barber_admin WHERE email = '$email'");
$dbmail = mysqli_fetch_array($select);
$mail = $dbmail['email'];
$user = $dbmail['username'];

$phone_number_digits = preg_replace("/[^0-9]/","",$phone);
//$pattern = "/^[+]?[0-9]{1,3}[-\s.]?[(]?[0-9]{3}[)]?[-\s.]?[0-9]{3}[-\s.]?[0-9]{4}$/";

// if(empty($full_name)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Full name is required</p>";
// }elseif(empty($username)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Username is required</p>";
// }elseif(empty($business_name)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Shop Name is required</p>";
// }elseif(empty($phone)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Phone number is required</p>";
// }elseif(empty($location)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Location is required</p>";
// }elseif(empty($email)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Email is required</p>";
// }elseif(empty($password)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Password is required</p>";
// }elseif(empty($confirm_password)){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Confirm is required</p>";
// }elseif(!filter_var($email, FILTER_VALIDATE_EMAIL)) {
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Invalid email format</p>";
// }elseif($password != $confirm_password){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Password do not match</p>";
// }elseif($email == $mail){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Email already exist</p>";
// }

if($email == ""){
$login_message = "<p class='alert alert-danger text-center ' role='alert'>Email already exist</p>";
}

// if($password ==""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Password is required</p>";

// } if($confirm_password==""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Confirm is required</p>";
// }

// if(!filter_var($email, FILTER_VALIDATE_EMAIL)) {
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Invalid email format</p>";
// }
// if($password != $confirm_password){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Password do not match</p>";
// }
// if($phone == ""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Phone number is required</p>";
// }
// if($location == ""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Location is required</p>";
// }
// if($email==""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Email is required</p>";
// }
// if($business_name==""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Shop Name is required</p>";
// }

// if($full_name == ""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Full name is required</p>";
// }

// if($username == ""){
// $login_message = "<p class='alert alert-danger text-center ' role='alert'>Username is required</p>";
// }

else{

$randomString = generateRandomString(5); // Change the length as needed

$pass = password_hash($password,PASSWORD_BCRYPT, array('cost'=>12));

$validation_code = md5($email . microtime());
$active = 0;

$account_type = "Owner";
$expired = 'no';
$open_clode_time = '9:00 am - 9:00 pm';

$account_status = "Trial";

$forgot_pass_expire_time = date("Y-m-d");
//$string = str_replace(" ","",$business_name);

$convertedString = str_replace(' ', '', $business_name);

$expiryDate = date('Y-m-d', strtotime($forgot_pass_expire_time . ' + 14 days'));

$finalnumber = $countryCode.''.$phone;

$sms_message = "Hello $business_name,your verification code is $randomString";

$_SESSION['sms_code'] = $randomString;

$curl = curl_init();

curl_setopt_array($curl, [
    CURLOPT_URL => 'https://sms.arkesel.com/api/v2/sms/send',
    CURLOPT_HTTPHEADER => ['api-key: Y1B1a1VaYXBEc3lDVnFCZnZxam8'],
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_ENCODING => '',
    CURLOPT_MAXREDIRS => 10,
    CURLOPT_TIMEOUT => 0,
    CURLOPT_FOLLOWLOCATION => true,
    CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
    CURLOPT_CUSTOMREQUEST => 'POST',
    CURLOPT_POSTFIELDS => http_build_query([
        'sender' => 'SalonFriend',
        'message' => $sms_message,
        'recipients' => [$finalnumber]
    ]),
]);

$response = curl_exec($curl);
curl_close($curl);
if($response == true){

$stmt = $con->prepare("insert into barber_admin (username,email,full_name,password,validation_code,active,forgot_pass_expire_time,phone,business_name,location,account_type,expired,open_clode_time,account_status,master_account,country,currency) values(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)");
$stmt->execute(array($username,$email,$full_name,$pass,$randomString,$active,$expiryDate,$phone_number_digits,$convertedString,$location,$account_type,$expired,$open_clode_time,$account_status,$convertedString,$country,$currency));

$checkbox_value = $_POST['checkbox_values'];
$status = 0;
$account_type2 = "Admin";

$add = 0;
  $delete = 0;
  $update = 0;

foreach ($checkbox_value as $value) {

$querye = 'insert into `role_permissions`(`page_name`, `status`, `business_name`, `type`, `add`, `updaterecord`, `deleterecord`) VALUES ("'.$value.'","'.$status.'","'.$convertedString.'","'.$account_type2.'","'.$add.'","'.$update.'","'.$delete.'")';
  $stmt = mysqli_query($new, $querye);

//   if(!$stmt){
  // die("QUERY FAILED" . mysqli_error($new));
  // }

}

header("Location : verify");
}

$subject = "Welcome to thesalonfriend";

$mail_body = "<head>
<meta name='viewport' content='width=device-width' />
<meta http-equiv='Content-Type' content='text/html; charset=UTF-8' />
</head>

</table>

<table border='0' cellpadding='0' cellspacing='0' style='width: 100%;'>
<tbody>
<tr>
<td style='border-bottom:1px;'>
Hello  ".$business_name."<br/>,

Welcome to thesalonfriend! We are thrilled to have you on board and are excited to see you become part of our community.
Thank you for choosing thesalonfriend. We're committed to providing you with a fantastic experience, and we can't wait to see all the amazing things you'll accomplish on our platform.

Once again, welcome aboard! If you have any questions or need assistance, feel free to contact us anytime.

Best regards,<br/>
Thesalonfriend Team<br/>
https://thesalonfriend.com <br/>
support@thesalonfriend.com
</td>
</tr>
<tr>

</tr>
<tr>
<br   /><br   />

</tr>
</tbody>
</table>

</div>
<center>
<td class='text-center pt-4'>
<p class='email-copyright-text'>Copyright © 2023 THE SALON FRIEND. All rights reserved.</p>
</td>
</center>
</div>

</div>
</div>
</body>
</html>";
$mail = new PHPMailer();
$mail->addAddress($email);
$mail->setFrom('noreply@thesalonfriend.com','thesalonfriend');
$mail->Subject = $subject;
$mail->isHTML(true);
$mail->CharSet= 'UTF-8';
$mail->Body = $mail_body;

if($mail->send()){
}else{
echo 'Message could not be sent. Mailer Error: ', $mail->ErrorInfo;
}

}
}
?>

<!DOCTYPE html>
<html lang="en">
<head>
  
  <meta charset="utf-8">
  <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">

<title>Sign Up  | The Salon Friend</title>

<link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600&display=swap" rel="stylesheet">

<link rel="stylesheet" href="assets/vendor/bootstrap-icons/font/bootstrap-icons.css">

<link rel="stylesheet" href="assets/css/theme.min.css">
</head>

<div class="position-relative">

<div class="card card-shadow card-login">
<div class="col-md-12">
<div class="card-body">

<form method="POST" id="formValidation" name="formValidation">
<?php echo csrf_token_tag(); ?>
<div class="text-center">
<div class="mb-5">
<h3 class="card-title">Create your account</h3>
</div>
<?php echo $login_message;?>
</div>

<div class="row">
<div class="col-sm-6">

<div class="mb-6">
<input type="text" class="form-control form-control-lg" name="full_name" id="full_name"  placeholder="First name">
</div>

</div>

<div class="row">
<div class="col-sm-6">

<div class="mb-6">
<select class="form-control" id="country_select" name="country">
  <option value=""> Select Country</option>
<?php
$so = mysqli_query($new,"SELECT name FROM countries order by name DESC");
 while($fetch = mysqli_fetch_array($so)){
?>
    <option value="<?php echo $fetch['name'];?>"> <?php echo $fetch['name'];?></option>
  <?php }?>

</select>
</div>

</div>

<div class="row">
<div class="col-sm-6">

<div class="mb-6">
<input type="text" class="form-control form-control-lg" name="business_name" id="fullNameSrEmail" placeholder="Business/shop name" aria-label="Mark" required autocomplete="off">
<span class="invalid-feedback">Please enter business / shop name.</span>
</div>

</div>

<div class="col-sm-6">

<div class="mb-6">
<input type="tel" name="phone" class="form-control form-control-lg" placeholder="Phone number" aria-label="Williams" required autocomplete="off">
<span class="invalid-feedback">Please enter business number.</span>
</div>

</div>
</div>

<div class="row">
<div class="col-sm-6">

<div class="mb-6">
     <label class="form-label">Business location</label>
<input type="text" class="form-control form-control-lg" name="location" id="signupSrEmail" placeholder="location / address" required autocomplete="off">
<span class="invalid-feedback">Please your location / address.</span>
</div>

</div>

<div class="col-sm-6">

<div class="mb-6">
   <label class="form-label">Select  Currency</label>
<select class="form-control" name="currency" required>
  <option value=""> Select Currency</option>
<?php
$so = mysqli_query($new,"SELECT distinct currency FROM countries ");
 while($fetch = mysqli_fetch_array($so)){
?>
    <option value="<?php echo $fetch['currency'];?>"> <?php echo $fetch['currency'];?></option>
  <?php }?>

</select>
</div>

</div>
</div>

<div class="mb-6">
<label class="form-label" for="signupSrEmail">Email address</label>
<input type="email" class="form-control form-control-lg" name="email" id="signupSrEmail" placeholder="Email address"  required autocomplete="off">
<span class="invalid-feedback">Please enter a valid email address.</span>
</div>

<div class="form-check mb-4">
<input class="form-check-input" type="checkbox" required>
<label class="form-check-label" for="termsCheckbox">I accept the <a href=".terms-and-conditions">Terms and Conditions</a></label>
<span class="invalid-feedback">Please accept our Terms and Conditions.</span>
</div>

<div class="d-grid gap-4">
<button type="submit" class="btn btn-primary btn-sm" style="width: 30%;">Create an account</button>
<p class="card-text text-muted">Remember your password? <a class="link" href="index">Log in</a></p>
</div>
</form>

</div>
</div>


</div>

<figure class="position-absolute top-0 end-0 zi-n1 d-none d-sm-block mt-n7 me-n10" style="width: 4rem;">
<img class="img-fluid" src="assets/svg/components/pointer-up.svg" alt="Image Description">
</figure>

<figure class="position-absolute bottom-0 start-0 d-none d-sm-block ms-n10 mb-n10" style="width: 15rem;">
<img class="img-fluid" src="assets/svg/components/curved-shape.svg" alt="Image Description">
</figure>

</div>
</div>
</div>
</div>
    
  </main>

<script src="assets/vendor/hs-toggle-password/dist/js/hs-toggle-password.js"></script>

<script src="assets/js/theme.min.js"></script>

submitHandler: function(form) {
    form.submit();
  }
 });

</script>

</body>
</html>

Cancel / Back

[ MAINHACK ]

Viewing / Editing File: sign.php

Server Info

System Features

User Info