osROSE Forums

Posted: **Wed May 02, 2018 9:54 pm**

lazypenguin wrote:Does it work when you use the stored procedure
Line number On/Off | Expand/Contract | Select all
create_account
?

Line number On/Off | Expand/Contract | Select all

if (isset($_POST['username']) && isset($_POST['password'])){
$username= $_POST['username'] ;
$password = $_POST['password'];

$sql = "call create_account(${username}, ${password})";
$query = mysqli_query($connection, $sql) ;

I don't know PHP so YMMV...

I tried

Line number On/Off | Expand/Contract | Select all

$sql = $connection->query("call create_account"(${username}, ${password}));

but gives me the 'Call to undefined function' error.

Posted: **Wed May 02, 2018 10:46 pm**

The function is defined here: https://github.com/dev-osrose/osIROSE-n ... e.sql#L393

You might want to try rebuilding your database if that stored procedure is not working. You can also see how the stored procedure creates an account. Basically:

Line number On/Off | Expand/Contract | Select all

 
SET @salt = create_salt();
INSERT INTO accounts(username, password, salt) VALUES(_user, SHA2( CONCAT(_pass,@salt), 256), @salt);
SET @salt = NULL;
 

Posted: **Thu May 03, 2018 6:24 pm**

The order you are doing things is wrong.

You need to first concatenate the password and the salt and then call sha256 on it. Store the result in the database.

But you should use the stored procedure. We created it so you wouldn't have to worry about salts and the such

Posted: **Thu May 03, 2018 11:05 pm**

aerocoke wrote:
lazypenguin wrote:Does it work when you use the stored procedure
Line number On/Off | Expand/Contract | Select all
create_account
?

Line number On/Off | Expand/Contract | Select all

if (isset($_POST['username']) && isset($_POST['password'])){
$username= $_POST['username'] ;
$password = $_POST['password'];

$sql = "call create_account(${username}, ${password})";
$query = mysqli_query($connection, $sql) ;

I don't know PHP so YMMV...

I tried
Line number On/Off | Expand/Contract | Select all
$sql = $connection->query("call create_account"(${username}, ${password}));
but gives me the 'Call to undefined function' error.

The issue here is i believe the php syntax.
Try

Line number On/Off | Expand/Contract | Select all

$query = $connection->query("CALL create_account('$username','$password')") ;

Posted: **Fri May 04, 2018 4:14 pm**

Oh nice catch, I didn't see that the parenthesis are outside the string.
I second that answer

Posted: **Sat May 12, 2018 10:28 pm**

FYI The create_account stored procedure expects that you are passing it a MD5 hashed password. It will not hash it for you.

Posted: **Sat May 12, 2018 10:49 pm**

Raven0123 wrote:FYI The create_account stored procedure expects that you are passing it a MD5 hashed password. It will not hash it for you.

That explains why mine didn't work either, was too embarrassed to post about it lol.

Posted: **Sun May 13, 2018 1:34 pm**

Oups, totally forgot about that. It's been so long since I last added an account from outside the server.

osROSE Forums

Osirose II registration script issue

Re: Osirose II registration script issue

Re: Osirose II registration script issue

Re: Osirose II registration script issue

Re: Osirose II registration script issue

Re: Osirose II registration script issue

Re: Osirose II registration script issue

Re: Osirose II registration script issue

Re: Osirose II registration script issue