1回答

慕盖茨4494581

您必须检查该电子邮件是否存在于您的用户表中。像这样的东西。<?php&nbsp; require_once('./conn.php');&nbsp; $errorMsgs = array('nickname'=>'', 'email'=>'', 'password'=>'');&nbsp;&nbsp;&nbsp; if(isset($_POST['submit'])) {&nbsp; &nbsp; if(empty($_POST['nickname'])) {&nbsp; &nbsp; &nbsp; $errorMsgs['nickname'] = "Please enter your nickname";&nbsp; &nbsp; }&nbsp; &nbsp; $email = $_POST['email'];&nbsp; &nbsp; $password = $_POST['password'];&nbsp; &nbsp;&nbsp;&nbsp; &nbsp; // checking the email is valid or empty&nbsp; &nbsp; if(empty($_POST['email'])) {&nbsp; &nbsp; &nbsp; $errorMsgs['email'] = "Please enter your email";&nbsp; &nbsp; } else {&nbsp; &nbsp; &nbsp; if(!filter_var($email, FILTER_VALIDATE_EMAIL)) {&nbsp; &nbsp; &nbsp; &nbsp; $errorMsgs['email'] = "Please enter a valid email";&nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; &nbsp; else{&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; //you should use sql parameter binding&nbsp; &nbsp; &nbsp;$email = $_POST['email'];&nbsp; &nbsp; $checkDuplicate= $conn->query("SELECT email FROM user_table where email = '$email'");&nbsp; &nbsp; if(!empty($checkDuplicate)) {&nbsp; &nbsp; &nbsp; $errorMsgs['email'] = "The email has been used";&nbsp; &nbsp; }&nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; }&nbsp; &nbsp; &nbsp;&nbsp; &nbsp; // checking the password is valid or empty&nbsp; &nbsp; if(empty($_POST['password'])) {&nbsp; &nbsp; &nbsp; $errorMsgs['password'] = "Please enter your password";&nbsp; &nbsp; } else {&nbsp; &nbsp; &nbsp; if(!preg_match('/\w{8,}/', $password)) {&nbsp; &nbsp; &nbsp; &nbsp; $errorMsgs['password'] = "Please enter at least 8 characters";&nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; }&nbsp; &nbsp;&nbsp;&nbsp; &nbsp; if(empty($errorMsgs)) { //you need to check if there's any error&nbsp; &nbsp; $sql = sprintf("INSERT INTO member (nickname, email, password) values ('%s', '%s', '%s')", $_POST['nickname'], $_POST['email'],$_POST['password']);&nbsp; &nbsp; $result = $conn->query($sql);&nbsp; &nbsp; if($result) {&nbsp; &nbsp; &nbsp; header("Location: index.php");&nbsp; &nbsp; }&nbsp; }}?>

0 0

0