From 9f1565abef92ad59254fb2819488fb13079504f7 Mon Sep 17 00:00:00 2001
From: Andrea Fiorencis <andrea.fiorencis@itis.biella.it>
Date: Tue, 14 Apr 2026 09:26:47 +0200
Subject: [PATCH] Implementazione registrazione e ruolo utente

---
 assets/Gener_Z.sql |  9 ++++----
 register.php       | 55 ++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 60 insertions(+), 4 deletions(-)
 create mode 100644 register.php

diff --git a/assets/Gener_Z.sql b/assets/Gener_Z.sql
index a4804e4..6deac24 100644
--- a/assets/Gener_Z.sql
+++ b/assets/Gener_Z.sql
@@ -36,7 +36,8 @@ CREATE TABLE Utenti(
     nome VARCHAR(30),
     cognome VARCHAR(18),
     email VARCHAR(255) UNIQUE NOT NULL,
-    password VARCHAR(255) NOT NULL
+    password VARCHAR(255) NOT NULL,
+    ruolo VARCHAR(16) DEFAULT 'utente'
 );
 
 -- 3. INSERIMENTO DATI (INSERT INTO)
@@ -78,6 +79,6 @@ INSERT INTO Statistiche_Social (id_fascia, piattaforma, minuti_medi_giornalieri,
 -- Login utente esempio
 -- Email: jeevacation@gmail.com
 -- Password: changeme
-INSERT INTO Utenti(nome,cognome,email,password) VALUES
-('Jeffrey', 'Epstein', 'jeevacation@gmail.com', '$2y$10$1ZILQ71xxMjaAxDs2A6/Iut8UJfBPEGkeEuZgoIkVDapbNYUACxtW'),
-('Andrea', 'Fiorencis', 'andrea@fiorencis.eu','$2y$10$y7fs8u4UOFJW5ds/dO84KumTxG2kh4jCubb1W0mAHzgmBZKRqA8Va');
\ No newline at end of file
+INSERT INTO Utenti(nome,cognome,email,password,ruolo) VALUES
+('Jeffrey', 'Epstein', 'jeevacation@gmail.com', '$2y$10$1ZILQ71xxMjaAxDs2A6/Iut8UJfBPEGkeEuZgoIkVDapbNYUACxtW', 'gestore'),
+('Andrea', 'Fiorencis', 'andrea@fiorencis.eu','$2y$10$y7fs8u4UOFJW5ds/dO84KumTxG2kh4jCubb1W0mAHzgmBZKRqA8Va', 'gestore');
\ No newline at end of file
diff --git a/register.php b/register.php
new file mode 100644
index 0000000..185e03e
--- /dev/null
+++ b/register.php
@@ -0,0 +1,55 @@
+<?php
+    include 'db_conf.php';
+?>
+
+<!DOCTYPE html>
+<html lang="it">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Registrazione - TechStore</title>
+    <link rel="stylesheet" href="assets/style.css">
+</head>
+<body>
+    <?php
+        if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+            if($_POST['password'] !== $_POST['confirm_password']){
+                echo "<p style='color: red; text-align: center;'>Le password non corrispondono.</p>";
+            }
+            else{
+                $sql = "INSERT INTO Utenti (nome, cognome, email, password) VALUES (?, ?, ?, ?)";
+                if($stmt = $conn->prepare($sql)){
+                    $stmt->bind_param("ssss", $name, $surname, $email, $password);
+
+                    $name = $_POST['name'];
+                    $surname = $_POST['surname'];
+                    $email = $_POST['email'];
+                    $password = password_hash($_POST['password'], PASSWORD_BCRYPT);
+                    $stmt->execute();
+
+                    echo "<p style='color: green; text-align: center;'>Registrazione avvenuta con successo! <a href=\"login.php\">Accedi</a></p>";
+                }
+                else{
+                    echo "Errore: " . $conn->error;
+                }
+            }
+        }
+    ?>
+
+    <form action="" method="POST">
+        <h2>Registrazione</h2>
+        <label for="name">Nome:</label>
+        <input type="text" id="name" name="name" required><br>
+        <label for="surname">Cognome:</label>
+        <input type="text" id="surname" name="surname" required><br>
+        <label for="email">Indirizzo e-mail:</label>
+        <input type="email" id="email" name="email" required><br>
+        <label for="password">Password:</label>
+        <input type="password" id="password" name="password" required><br>
+        <label for="confirm_password">Conferma password:</label>
+        <input type="password" id="confirm_password" name="confirm_password" required><br><br>
+        <input type="submit" value="Registrati">
+        <p>Hai già un account? <a href="login.php">Accedi</a></p>
+    </form>
+</body>
+</html>