Advertisement
Jodyone

change.php

Apr 28th, 2014
138
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 1.10 KB | None | 0 0
  1. <?php
  2.     // configuration
  3.    require("../includes/config.php");      
  4.    if ($_SERVER["REQUEST_METHOD"] == "POST")
  5.    {
  6.        //TODO
  7.         if (empty($_POST["password"]))
  8.         {
  9.             apologize("You must provide your password.");
  10.         }
  11.         else if (empty($_POST["new password"]))
  12.         {
  13.             apologize("You must provide your new password.");
  14.         }
  15.         else if ($_POST["new password"] != $_POST["confirmation"])
  16.         {
  17.               apologize("Invalid username and/or password.");
  18.         }
  19.         $info = query("SELECT * FROM users WHERE id = ?",$_SESSION['id']);
  20.      
  21.         // if password does not match hash
  22.         if (crypt($_POST["password"],$info[0]["hash"] == $info[0]["hash"] ))
  23.         {
  24.            // query INSERT new hash
  25.            query("UPDATE users SET hash = ? WHERE id = ?",$_POST["new password"],$_SESSION['id']);
  26.         }
  27.            
  28.         // else
  29.         else
  30.         {
  31.             apologize("INVALID PASSWORD");
  32.         }
  33.     }
  34.     else
  35.     {
  36.         render("change_form.php", [ "title" => "change password"]);
  37.     }
  38. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement