register+login with secur ok

post.php

@@ -1,5 +1,9 @@
 <?php
 require_once("function.php");
+if (session_status() == PHP_SESSION_NONE) {
+    session_start();
+}
+//var_dump($_POST);
 $emailPatern = '/^(([^<>()\[\]\\.,;:\s@"]+(\.[^<>()\[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/';
 $pwPatern = '/^[a-z]{8,16}$/';
 $loginPatern = '/^[a-z]{8,16}$/';
@@ -40,7 +44,7 @@ elseif (isset($_POST["newUser"],$_POST["datene"], $_POST["email"], $_POST["pw"])
     }
     else
     {
-      $sl = isset($_POST["sl"])?$_POST["sl"]:"1";
+      $sl = isset($_POST["sl"])?$_POST["sl"]:"5";
       $ret["pw"] = md5(htmlspecialchars($_POST["pw"], ENT_QUOTES, 'UTF-8'));
       $req = $bdd->prepare('INSERT INTO `projetphp` (`login`, `date_naissance`, `e_mail`, `mot_de_passe`, `security_level`) VALUES (:login, :datene, :email, :pw, :slvl)');
       $req->execute(array(
@@ -70,7 +74,7 @@ else if (isset($_POST["newUser"], $_POST["updatePW"], $_POST["datene"], $_POST["
 'datene' => htmlspecialchars($_POST["datene"], ENT_QUOTES, 'UTF-8'),
 'email' => htmlspecialchars($_POST["email"], ENT_QUOTES, 'UTF-8'),
 'pw' => md5(htmlspecialchars($_POST["pw"], ENT_QUOTES, 'UTF-8')),
-'sl' => htmlspecialchars($_POST["sl"], ENT_QUOTES, 'UTF-8'),
+'sl' => ($_SESSION["sl"]=="10"?htmlspecialchars($_POST["sl"], ENT_QUOTES, 'UTF-8'):$_SESSION["sl"]),
 'login' => htmlspecialchars($_POST["login"], ENT_QUOTES, 'UTF-8'),
 ));
 $req->closeCursor();
@@ -81,7 +85,7 @@ $req->closeCursor();
             $req->execute(array(
 'datene' => htmlspecialchars($_POST["datene"], ENT_QUOTES, 'UTF-8'),
 'email' => htmlspecialchars($_POST["email"], ENT_QUOTES, 'UTF-8'),
-'sl' => htmlspecialchars($_POST["sl"], ENT_QUOTES, 'UTF-8'),
+'sl' => ($_SESSION["sl"]=="10"?htmlspecialchars($_POST["sl"], ENT_QUOTES, 'UTF-8'):$_SESSION["sl"]),
 'login' => htmlspecialchars($_POST["login"], ENT_QUOTES, 'UTF-8'),
 ));
 $req->closeCursor();