Gitiles
Code Review Sign In
gerrit.avm99963.com / edu / fisi-pastanagapp / 20af6c22073e86d16c03a2f1f3e9186e3bc94a86 / . / php / change_password.php
blob: d8bcc19f10cc0c7e4c776c4ebb9ae90fc9f19cae [file] [log] [blame]
Andreu20cbd1d2019-09-22 00:00:57 +0200[diff] [blame]1<?php
Andreu2457e402019-09-22 00:52:41 +0200[diff] [blame]2 require '../credentials.php';
Andreu20cbd1d2019-09-22 00:00:57 +0200[diff] [blame]3 require 'utils.php';
4
Andreu20af6c22019-09-24 18:33:50 +0200[diff] [blame^]5 $credentials = new Credentials();
6 $usersdb = $credentials->usersdb;
7 $mortsdb = $credentials->mortsdb;
8
Andreu20cbd1d2019-09-22 00:00:57 +0200[diff] [blame]9 // Check if confirmation is the same
10 if ($_POST['password'] != $_POST['confirmation']) {
Andreu0d0f9fd2019-09-23 03:56:08 +0200[diff] [blame]11 die("<script>window.location.href = '../index.php?wrongconfirmation=1'</script>");
Andreu20cbd1d2019-09-22 00:00:57 +0200[diff] [blame]12 } else {
13 // Execute query to change password
Andreu20af6c22019-09-24 18:33:50 +0200[diff] [blame^]14 $update_password = "UPDATE $usersdb SET password=\"".md5($_POST['password'])."\" WHERE id=".$_POST['userid'];
Andreu0d0f9fd2019-09-23 03:56:08 +0200[diff] [blame]15 if(!$result = query($update_password)) die("<script>window.location.href = '../index.php?errordb=1'</script>");
Andreu20cbd1d2019-09-22 00:00:57 +0200[diff] [blame]16
17 // Save 'password' to cookies
18 setcookie('password', md5($_POST['password']), time() + (86400 * 10), "/");
19
20 // Go back to main page
Andreu0d0f9fd2019-09-23 03:56:08 +0200[diff] [blame]21 die("<script>window.location.href = '../index.php?successpassword=1'</script>");
Andreu20cbd1d2019-09-22 00:00:57 +0200[diff] [blame]22 }
23?>