die; } $pattern = '/[^a-zA-Z0-9-+ .*]/'; //gibt es so ein Zeichen in der Zeichenkette -> Fehlerausgabe if( preg_match($pattern, $benutzername) ) { ?> die; } $aarg = str_replace(' ','',$benutzername); $anzname = strlen($aarg); if( $anzname <= 2 ) { ?> die; } if (!empty($benutzername) AND !empty($passwort) AND $passwort == $confirm AND !empty($email)) { $result_select = mysql_query("SELECT * FROM user WHERE LOWER(username) ='" . $str . "' OR LOWER(user_email) = '" . $str1 . "'"); $row = mysql_fetch_row($result_select); if (!$row) { $result_insert = mysql_query("INSERT INTO user (`username`, `gender`, `user_age`, `user_email`, `passwort`) VALUES ('$benutzername', '$sex', '$geburtstag', '$email', '$passwort')"); if ($bonust ==1) { mysql_query("UPDATE user SET points=points+40, bonuscode='$bonus' WHERE passwort= '$passwort' AND user_email= '$email' LIMIT 1"); } if ($result_insert) { include('verbindung.php'); $c =0; $abfrage = "SELECT * FROM user WHERE (LOWER(username) = '$benutzername' OR LOWER(user_email) = '$benutzername') AND (passwort ='$passwort')"; $ergebnis = mysql_query($abfrage); while($row = mysql_fetch_object($ergebnis)) { $c++; $_SESSION['username'] = $row->username; $_SESSION['id'] = $row->id; $_SESSION['user_bild'] = $row->user_bild; $_SESSION['user_email'] = $row->user_email; $_SESSION['user_zitat'] = $row->user_zitat; $_SESSION['user_passwort'] = $row->passwort; } ?> die; } else { ?> exit; } } else { ?> exit; } } else { ?> exit; } ?> die; } ?>