Fix

2025-12-17 01:18:27 +03:00
parent 8a93cf8657
commit a7282f7363
394 changed files with 16013 additions and 146 deletions
--- a/OLD_CODE/api/register_handler.php
+++ b/OLD_CODE/api/register_handler.php
@@ -0,0 +1,151 @@
+<?php
+
+session_start();
+require_once __DIR__ . '/../config/database.php';
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+    $errors = [];
+
+    $full_name = trim($_POST['fio'] ?? '');
+    $city = trim($_POST['city'] ?? '');
+    $email = trim($_POST['email'] ?? '');
+    $phone = trim($_POST['phone'] ?? '');
+    $password = $_POST['password'] ?? '';
+    $confirm_password = $_POST['confirm-password'] ?? '';
+
+    if (empty($full_name) || strlen($full_name) < 3) {
+        $errors[] = 'ФИО должно содержать минимум 3 символа';
+    }
+
+    if (empty($city) || strlen($city) < 2) {
+        $errors[] = 'Введите корректное название города';
+    }
+
+    if (empty($email) || !filter_var($email, FILTER_VALIDATE_EMAIL)) {
+        $errors[] = 'Введите корректный email адрес';
+    }
+
+    if (empty($phone) || !preg_match('/^(\+7|8)[\s-]?\(?\d{3}\)?[\s-]?\d{3}[\s-]?\d{2}[\s-]?\d{2}$/', $phone)) {
+        $errors[] = 'Введите корректный номер телефона';
+    }
+
+    if (empty($password) || strlen($password) < 6) {
+        $errors[] = 'Пароль должен содержать минимум 6 символов';
+    }
+
+    if ($password !== $confirm_password) {
+        $errors[] = 'Пароли не совпадают';
+    }
+
+    if (!isset($_POST['privacy']) || $_POST['privacy'] !== 'on') {
+        $errors[] = 'Необходимо согласие с условиями обработки персональных данных';
+    }
+
+    if (!empty($errors)) {
+        $_SESSION['registration_errors'] = $errors;
+        $_SESSION['old_data'] = [
+            'fio' => $full_name,
+            'city' => $city,
+            'email' => $email,
+            'phone' => $phone
+        ];
+        header('Location: register.php');
+        exit();
+    }
+
+    $db = Database::getInstance()->getConnection();
+
+    try {
+
+        $checkStmt = $db->prepare("SELECT user_id FROM users WHERE email = ?");
+        $checkStmt->execute([$email]);
+
+        if ($checkStmt->fetch()) {
+            $_SESSION['registration_errors'] = ['Пользователь с таким email уже существует'];
+            $_SESSION['old_data'] = [
+                'fio' => $full_name,
+                'city' => $city,
+                'email' => $email,
+                'phone' => $phone
+            ];
+            header('Location: register.php');
+            exit();
+        }
+
+        $password_hash = password_hash($password, PASSWORD_DEFAULT);
+
+        $is_admin = false;
+        $admin_emails = ['admin@aeterna.ru', 'administrator@aeterna.ru', 'aeterna@mail.ru'];
+        if (in_array(strtolower($email), $admin_emails)) {
+            $is_admin = true;
+        }
+
+        $stmt = $db->prepare("
+            INSERT INTO users (email, password_hash, full_name, phone, city, is_admin)
+            VALUES (?, ?, ?, ?, ?, ?)
+            RETURNING user_id
+        ");
+
+        $stmt->execute([
+            $email,
+            $password_hash,
+            $full_name,
+            $phone,
+            $city,
+            $is_admin ? 1 : 0
+        ]);
+
+        $user_id = $stmt->fetchColumn();
+
+        if ($user_id) {
+
+            $_SESSION['user_id'] = $user_id;
+            $_SESSION['user_email'] = $email;
+            $_SESSION['full_name'] = $full_name;
+            $_SESSION['user_phone'] = $phone;
+            $_SESSION['user_city'] = $city;
+            $_SESSION['isLoggedIn'] = true;
+            $_SESSION['isAdmin'] = $is_admin;
+            $_SESSION['login_time'] = time();
+
+            $updateStmt = $db->prepare("UPDATE users SET last_login = CURRENT_TIMESTAMP WHERE user_id = ?");
+            $updateStmt->execute([$user_id]);
+
+            $_SESSION['registration_success'] = 'Регистрация прошла успешно! ' .
+                ($is_admin ? 'Вы зарегистрированы как администратор.' : 'Добро пожаловать в AETERNA!');
+
+            header('Location: catalog.php');
+            exit();
+        } else {
+            throw new Exception('Ошибка при создании пользователя');
+        }
+
+    } catch (PDOException $e) {
+
+        error_log("Registration DB Error: " . $e->getMessage());
+        error_log("SQL State: " . $e->getCode());
+        error_log("Email: " . $email);
+
+        $_SESSION['registration_errors'] = ['Ошибка базы данных: ' . $e->getMessage()];
+        $_SESSION['old_data'] = [
+            'fio' => $full_name,
+            'city' => $city,
+            'email' => $email,
+            'phone' => $phone
+        ];
+        header('Location: register.php');
+        exit();
+    } catch (Exception $e) {
+        error_log("Registration Error: " . $e->getMessage());
+
+        $_SESSION['registration_errors'] = [$e->getMessage()];
+        header('Location: register.php');
+        exit();
+    }
+
+} else {
+
+    header('Location: register.php');
+    exit();
+}
+?>