config_registration.sample.php

<?php
/**
 * Configuration Sample for DS Diamonds Registration System
 * Copy this file to config_registration.php and update with your values
 */

// ==================== DATABASE CONFIGURATION ====================
define('DB_HOST', 'localhost');
define('DB_NAME', 'ds_diamonds');
define('DB_USER', 'root');
define('DB_PASS', '');
define('DB_CHARSET', 'utf8mb4');

// ==================== FILE UPLOAD CONFIGURATION ====================
// Base upload directory (must be writable by PHP)
define('UPLOAD_BASE_DIR', __DIR__ . '/uploads/clients/');
define('UPLOAD_BASE_URL', '/ds_diamonds/uploads/clients/');

// Image upload constraints
define('MAX_UPLOAD_SIZE', 2 * 1024 * 1024); // 2MB
define('ALLOWED_IMAGE_TYPES', ['image/jpeg', 'image/png', 'image/jpg']);
define('ALLOWED_EXTENSIONS', ['jpg', 'jpeg', 'png']);

// Thumbnail settings
define('THUMBNAIL_WIDTH', 200);
define('THUMBNAIL_HEIGHT', 200);

// ==================== OTP CONFIGURATION ====================
// OTP settings
define('OTP_LENGTH', 6);
define('OTP_EXPIRY_MINUTES', 10);
define('OTP_MAX_ATTEMPTS', 5);
define('OTP_SECRET_KEY', 'your-secret-key-change-this-in-production'); // CHANGE THIS!

// Rate limiting (per email/IP)
define('OTP_RATE_LIMIT_COUNT', 3); // Max OTPs per hour
define('OTP_RATE_LIMIT_HOURS', 1);

// ==================== EMAIL CONFIGURATION (SMTP) ====================
// SMTP Settings (use Mailtrap for testing, or your production SMTP)
define('SMTP_ENABLED', true); // Set to false to use PHP mail()

define('SMTP_HOST', 'smtp.gmail.com'); // For Gmail
define('SMTP_PORT', 587); // 587 for TLS, 465 for SSL
define('SMTP_SECURE', 'tls'); // 'tls' or 'ssl'
define('SMTP_USERNAME', 'sartiahkarpeh2002@gmail.com');
define('SMTP_PASSWORD', 'your-app-password-here'); // Use App Password for Gmail
define('SMTP_FROM_EMAIL', 'sartiahkarpeh2002@gmail.com');
define('SMTP_FROM_NAME', 'DS Diamonds');

// For Mailtrap (testing):
// define('SMTP_HOST', 'smtp.mailtrap.io');
// define('SMTP_PORT', 2525);
// define('SMTP_SECURE', 'tls');
// define('SMTP_USERNAME', 'your-mailtrap-username');
// define('SMTP_PASSWORD', 'your-mailtrap-password');

// Email templates
define('SUPPORT_EMAIL', 'sartiahkarpeh2002@gmail.com');
define('COMPANY_NAME', 'DS Diamonds');
define('COMPANY_WEBSITE', 'http://localhost/ds_diamonds');

// ==================== SECURITY CONFIGURATION ====================
// CSRF token
define('CSRF_TOKEN_NAME', 'csrf_token');
define('CSRF_TOKEN_EXPIRY', 3600); // 1 hour

// Session configuration
define('SESSION_NAME', 'ds_diamonds_session');
define('SESSION_LIFETIME', 86400); // 24 hours

// Password hashing (use PASSWORD_DEFAULT for bcrypt)
define('PASSWORD_HASH_ALGO', PASSWORD_DEFAULT);
define('PASSWORD_MIN_LENGTH', 8);

// ==================== APPLICATION SETTINGS ====================
// Base URL
define('BASE_URL', 'http://localhost/ds_diamonds/');
define('API_BASE_URL', BASE_URL . 'api/');

// Timezone
date_default_timezone_set('UTC');

// Error reporting (disable in production)
error_reporting(E_ALL);
ini_set('display_errors', 1);

// ==================== HELPER FUNCTIONS ====================

/**
 * Get PDO database connection
 */
function getDbConnection()
{
    static $pdo = null;

    if ($pdo === null) {
        try {
            $dsn = "mysql:host=" . DB_HOST . ";dbname=" . DB_NAME . ";charset=" . DB_CHARSET;
            $options = [
                PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
                PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
                PDO::ATTR_EMULATE_PREPARES => false,
            ];
            $pdo = new PDO($dsn, DB_USER, DB_PASS, $options);
        } catch (PDOException $e) {
            error_log("Database connection failed: " . $e->getMessage());
            die("Database connection failed. Please contact support.");
        }
    }

    return $pdo;
}

/**
 * Generate CSRF token
 */
function generateCsrfToken()
{
    if (session_status() === PHP_SESSION_NONE) {
        session_start();
    }

    $token = bin2hex(random_bytes(32));
    $_SESSION[CSRF_TOKEN_NAME] = $token;
    $_SESSION[CSRF_TOKEN_NAME . '_time'] = time();

    return $token;
}

/**
 * Validate CSRF token
 */
function validateCsrfToken($token)
{
    if (session_status() === PHP_SESSION_NONE) {
        session_start();
    }

    if (!isset($_SESSION[CSRF_TOKEN_NAME]) || !isset($_SESSION[CSRF_TOKEN_NAME . '_time'])) {
        return false;
    }

    // Check expiry
    if (time() - $_SESSION[CSRF_TOKEN_NAME . '_time'] > CSRF_TOKEN_EXPIRY) {
        return false;
    }

    return hash_equals($_SESSION[CSRF_TOKEN_NAME], $token);
}

/**
 * Sanitize input
 */
function sanitizeInput($data)
{
    $data = trim($data);
    $data = stripslashes($data);
    $data = htmlspecialchars($data, ENT_QUOTES, 'UTF-8');
    return $data;
}

/**
 * Validate email
 */
function validateEmail($email)
{
    return filter_var($email, FILTER_VALIDATE_EMAIL) !== false;
}

/**
 * Get client IP address
 */
function getClientIp()
{
    if (!empty($_SERVER['HTTP_CLIENT_IP'])) {
        return $_SERVER['HTTP_CLIENT_IP'];
    } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
        return $_SERVER['HTTP_X_FORWARDED_FOR'];
    } else {
        return $_SERVER['REMOTE_ADDR'] ?? '0.0.0.0';
    }
}

/**
 * Get user agent
 */
function getUserAgent()
{
    return $_SERVER['HTTP_USER_AGENT'] ?? 'Unknown';
}

/**
 * JSON response helper
 */
function jsonResponse($success, $message, $data = [])
{
    header('Content-Type: application/json');
    echo json_encode([
        'success' => $success,
        'message' => $message,
        'data' => $data
    ]);
    exit;
}