trojans-trophy-room/admin/user_management/add_safe_admin.php

<!DOCTYPE html>

<html>

<head>
  <meta charset="UTF-8" />
  <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />
  <link rel="stylesheet" href="db_management.css" />
  <!-- <script src="trojan.js"></script>-->
  <title>no title</title>
</head>

<body class="sqlOutput">
  <?php
  // USER-DEFINED VARIABLES
  include("../db_config.php"); // Include database stuff


  try {  // Try opening the SQL database connection
    $conn = new PDO("mysql:host=$servername; dbname=$dbName", $username, $password);
    // set the PDO error mode to exception
    $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
    echo "<p>Connected successfully</p>";


    // Check if the users table exists already
    $sqlCheckUserTable = $conn->prepare("SHOW TABLES LIKE '" . $adminUserTableName . "'");
  
    // Run the query
    $sqlCheckUserTable->execute();
  
    //Check if any rows exist - if not, create the table
    $count = $sqlCheckUserTable->rowCount();

    if ($count == 0) {
        try {
          $conn->query($sqlCreateAdminTable);
          echo "<p>Table '" . $adminUserTableName . "' successfully created (user data)</p>";
        } catch (PDOException $e) {
          echo $sqlCreateUserTable . "<br>" . $e->getMessage();
        }
    }
    

  // Variables for the various input fields
  $username = $_POST["username"];
  $password = password_hash($_POST["password"], PASSWORD_DEFAULT);  // Hash the password for security
  $discord = $_POST["discord"];
  $twitch = $_POST["twitch"];
  $youtube = $_POST["youtube"];

  $isAdmin = 0;

  if (filter_has_var(INPUT_POST, "isAdmin")) {
    $isAdmin = 1;
  }

  echo "<br>";
  echo $username . "<br>";
  echo $password . "<br>";
  echo $discord . "<br>";
  echo $twitch . "<br>";
  echo $youtube . "<br>";

  echo $isAdmin . "<br>";

  $insert = $conn->prepare("INSERT INTO " . $adminUserTableName . " (username, password, discord, twitch, youtube, isAdmin) VALUES (:username, :password, :discord, :twitch, :youtube, :isAdmin)");


  $insert->bindParam(":username", $username);
  $insert->bindParam(":password", $password);
  $insert->bindParam(":discord", $discord);
  $insert->bindParam(":twitch", $twitch);
  $insert->bindParam(":youtube", $youtube);

  $insert->bindParam(":isAdmin", $isAdmin);

  $insert->execute();
  echo "New records created successfully?";


  } catch (PDOException $e) { // failed connection
    echo "Connection failed: " . $e->getMessage();
  }

  $conn = null;

  ?>

</body>

</html>
- Added 'safe' admins; these accounts will persist across database resets 2025-03-01 09:58:27 -05:00			`<!DOCTYPE html>`

			`<html>`

			`<head>`
			`<meta charset="UTF-8" />`
			`<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />`
			`<link rel="stylesheet" href="db_management.css" />`
			`<!-- <script src="trojan.js"></script>-->`
			`<title>no title</title>`
			`</head>`

			`<body class="sqlOutput">`
			`<?php`
			`// USER-DEFINED VARIABLES`
			`include("../db_config.php"); // Include database stuff`


			`try { // Try opening the SQL database connection`
			`$conn = new PDO("mysql:host=$servername; dbname=$dbName", $username, $password);`
			`// set the PDO error mode to exception`
			`$conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);`
			`echo "<p>Connected successfully</p>";`


			`// Check if the users table exists already`
			`$sqlCheckUserTable = $conn->prepare("SHOW TABLES LIKE '" . $adminUserTableName . "'");`

			`// Run the query`
			`$sqlCheckUserTable->execute();`

			`//Check if any rows exist - if not, create the table`
			`$count = $sqlCheckUserTable->rowCount();`

			`if ($count == 0) {`
			`try {`
			`$conn->query($sqlCreateAdminTable);`
			`echo "<p>Table '" . $adminUserTableName . "' successfully created (user data)</p>";`
			`} catch (PDOException $e) {`
			`echo $sqlCreateUserTable . "<br>" . $e->getMessage();`
			`}`
			`}`


			`// Variables for the various input fields`
			`$username = $_POST["username"];`
			`$password = password_hash($_POST["password"], PASSWORD_DEFAULT); // Hash the password for security`
			`$discord = $_POST["discord"];`
			`$twitch = $_POST["twitch"];`
			`$youtube = $_POST["youtube"];`

			`$isAdmin = 0;`

			`if (filter_has_var(INPUT_POST, "isAdmin")) {`
			`$isAdmin = 1;`
			`}`

			`echo "<br>";`
			`echo $username . "<br>";`
			`echo $password . "<br>";`
			`echo $discord . "<br>";`
			`echo $twitch . "<br>";`
			`echo $youtube . "<br>";`

			`echo $isAdmin . "<br>";`

			`$insert = $conn->prepare("INSERT INTO " . $adminUserTableName . " (username, password, discord, twitch, youtube, isAdmin) VALUES (:username, :password, :discord, :twitch, :youtube, :isAdmin)");`


			`$insert->bindParam(":username", $username);`
			`$insert->bindParam(":password", $password);`
			`$insert->bindParam(":discord", $discord);`
			`$insert->bindParam(":twitch", $twitch);`
			`$insert->bindParam(":youtube", $youtube);`

			`$insert->bindParam(":isAdmin", $isAdmin);`

			`$insert->execute();`
			`echo "New records created successfully?";`





			`} catch (PDOException $e) { // failed connection`
			`echo "Connection failed: " . $e->getMessage();`
			`}`

			`$conn = null;`

			`?>`

			`</body>`

			`</html>`