This has been the most exiting project I've ever done, I got to write a lot of PHP which made me learn a lot of things.
One of those things is how to prevent SQL injection by using prepared statements which basically blocks any attacker from injection of malicious SQL.
Another thing would be how to check the Data Base and compare it to the input to avoid repeated info in the DB, for example you could check the DB when submitting an email in an account creation format to avoid having two accounts with the same email.
This project is not finished, but it works as is. I'll be developing this and uploading updates but remember that this is a gig that I got from a company in Mexico, the code uploaded here is not exactly the same as the real app.
If you want to try it take the next into consideration:
- The app is in Spanish for reasons already mentioned.
- You have to download a server like XAMPP to run this since it has PHP and also create an SQL DB
- To create the DB just execute the SQL_db_creator file on phpMyAdmin or any other SQL DB manager
Accounts:
- Account 1: user = '1001', pass = 'admin'.
- Account 2: user = '1002', pass = 'admin'