Preloader

Registration Form in PHP

PHP Tutorials
codevigyaan php

A registration form in PHP allows users to create an account on a website by entering their basic details such as username, email, and password. Almost every modern website uses a PHP registration form for features like user dashboards, memberships, and restricted content.

Since user data is sensitive, PHP registration forms should validate the data, hash passwords and save data securely into a database. This knowledge is a vital brick for anyone creating PHP application in real world.

How a PHP Registration Form Works

A PHP registration system follows a clear and logical process.

  • Firstly, fill in the registration form.
  • The second step is that the form will transfer the data to a PHP file with the POST.
  • Then, PHP checks the validation of the entered values.
  • Then, PHP encrypts the password and checks for security.
  • Finally PHP stores the user in the database.

Therefore, it is recognized when login.

Creating the HTML Registration Form

Always use the POST method with the registration form to mask the users information.

<form method="post" action="register.php">
    <label>Username</label><br>
    <input type="text" name="username" required><br><br>

    <label>Email</label><br>
    <input type="email" name="email" required><br><br>

    <label>Password</label><br>
    <input type="password" name="password" required><br><br>

    <label>Confirm Password</label><br>
    <input type="password" name="confirm_password" required><br><br>

    <input type="submit" name="register" value="Register">
</form>

By using POST, the password will not show up in the browser‘s URL.

Creating the Database and Table

You need a database before you save users.

The name of the database being used is: user_system.

CREATE TABLE users (
    id INT AUTO_INCREMENT PRIMARY KEY,
    username VARCHAR(100) NOT NULL,
    email VARCHAR(100) NOT NULL UNIQUE,
    password VARCHAR(255) NOT NULL,
    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);

This table maintains user data in a safe way and the password column also supports the hashed values.

Creating the Database Connection File

Create a file called db.php which will be responsible for having the connection to the database.

<?php
$host = "localhost";
$user = "root";
$password = "";
$database = "user_system";

$conn = mysqli_connect($host, $user, $password, $database);

if (!$conn) {
    die("Database connection failed");
}
?>

Keeping the connection separate makes the project easier to manage.

Processing the Registration Form in PHP

Then connect the form with database and save the user data.

<?php
include "db.php";

if (isset($_POST['register'])) {

    $username = trim($_POST['username']);
    $email = trim($_POST['email']);
    $password = $_POST['password'];
    $confirmPassword = $_POST['confirm_password'];

    if (empty($username) || empty($email) || empty($password)) {
        echo "All fields are required";
        exit;
    }

    if ($password !== $confirmPassword) {
        echo "Passwords do not match";
        exit;
    }

    $hashedPassword = password_hash($password, PASSWORD_DEFAULT);

    $checkEmail = "SELECT id FROM users WHERE email = '$email'";
    $result = mysqli_query($conn, $checkEmail);

    if (mysqli_num_rows($result) > 0) {
        echo "Email already registered";
        exit;
    }

    $query = "INSERT INTO users (username, email, password)
              VALUES ('$username', '$email', '$hashedPassword')";

    if (mysqli_query($conn, $query)) {
        echo "Registration successful";
    } else {
        echo "Something went wrong";
    }
}
?>

This code is to validate the input and generate the hash password of user. also it will check the duplicate email address and store the data.

Why Password Hashing Is Important

Passwords should not be stored in clear text. If the database is compromised, the hashes are not.

PHP provides secure built in functions like:

password_hash()
password_verify()

And because of this, on real projects hashing of passwords is something that has to be done.

Validating User Input

Validation enhances both security and usability.

Check for empty fields
Validate the format of email
Password confirmation
Limit input length
Prevent from multiple accounts

Application without validation is not secure or reliable.

Common Beginner Mistakes

Using GET instead of POST
Passwords in plain text For example, passwords are store as plain text.
Bypassing input validation
Duplicate registration of email should be permitted.
Mixing database code everywhere

Avoiding these mistakes saves time and prevents security issues.

Best Practices for PHP Registration Forms

Always use POST
Hash passwords prior to saving
Validate all input entry controls
Keep database logic separate
Show concise and legible error messages

Adding all of these features will make your app more professional.

Summary

A registration form in PHP ensures that users are able to create an account conveniently and securely by providing their details. Starting from registration pages, PHP codifies the process by accepting user data, performing validation checks, encrypting passwords and storing the important information in a database.

check our Bootstrap Templates section. Visit → https://codevigyaan.com/bootstrap-projects

Want E-Books? Open →https://codevigyaan.com/free-e-books/

Tags:

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *