Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- if(isset($_POST['btnSubmit'])){
- $login = $_SESSION["login"];
- $servername = "localhost";
- $db_user = "dbi336338";
- $db_password = "cTiEVLJPVK";
- $conn = new PDO("mysql:host=$servername;dbname=dbi336338", $db_user, $db_password);
- $conn->setAttribute(PDO::ATTR_EMULATE_PREPARES, false);
- $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
- $sql = $conn->prepare('SELECT * FROM users WHERE login = :login');
- $sql->bindParam(':login', $login);
- $sql->execute();
- $change_pw_result = $sql->fetch(PDO::FETCH_ASSOC);
- if(count($change_pw_result)>0) {
- $newpassword = MD5($_POST["newPassword"]);
- if (MD5($_POST["currentPassword"]) == $change_pw_result["password"]) {
- $updatesql = $conn->prepare('UPDATE users SET password = :password WHERE login = :login');
- $updatesql->bindParam(':password', $newpassword);
- $updatesql->bindParam(':login', $login);
- $updatesql->execute();
- $message = "Password Changed";
- } else {
- $message = "Current Password is not correct";
- }
- }
- }
- ?>
- <!DOCTYPE html>
- <html>
- <head>
- <title>Change Password</title>
- <link rel="stylesheet" type="text/css" href="styles.css" />
- <script>
- function validatePassword() {
- var currentPassword, newPassword, confirmPassword, output = true;
- currentPassword = document.frmChange.currentPassword;
- newPassword = document.frmChange.newPassword;
- confirmPassword = document.frmChange.confirmPassword;
- if (!currentPassword.value) {
- currentPassword.focus();
- document.getElementById("currentPassword").innerHTML = "required";
- output = false;
- }
- else if (!newPassword.value) {
- newPassword.focus();
- document.getElementById("newPassword").innerHTML = "required";
- output = false;
- }
- else if (!confirmPassword.value) {
- confirmPassword.focus();
- document.getElementById("confirmPassword").innerHTML = "required";
- output = false;
- }
- if (newPassword.value != confirmPassword.value) {
- newPassword.value = "";
- confirmPassword.value = "";
- newPassword.focus();
- document.getElementById("confirmPassword").innerHTML = "not same";
- output = false;
- }
- return output;
- }
- </script>
- </head>
- <body>
- <?php
- if (isset($_SESSION['login']) != "") {
- ?>
- <form name="frmChange" method="post" action="" onSubmit="return validatePassword()">
- <div style="width:500px;">
- <div class="message"><?php
- if (isset($message)) {
- echo $message;
- }
- ?></div>
- <table border="0" cellpadding="10" cellspacing="0" width="500" align="center" class="tblSaveForm">
- <tr class="tableheader">
- <td colspan="2">Change Password</td>
- </tr>
- <tr>
- <td width="40%"><label>Current Password</label></td>
- <td width="60%"><input type="password" name="currentPassword" class="txtField"/><span id="currentPassword" class="required"></span></td>
- </tr>
- <tr>
- <td><label>New Password</label></td>
- <td><input type="password" name="newPassword" class="txtField"/><span id="newPassword" class="required"></span></td>
- </tr>
- <td><label>Confirm Password</label></td>
- <td><input type="password" name="confirmPassword" class="txtField"/><span id="confirmPassword" class="required"></span></td>
- </tr>
- <tr>
- <td colspan="2"><input type="submit" name="btnSubmit" value="Submit" class="btnSubmit"></td>
- </tr>
- </table>
- </div>
- </form>
- <?php
- }
- ?>
- </body></html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement