Nycholas C
New member
no password, reset pasword? <?php
session_start();
$user = $_SESSION['username'];
if ($user)
{
if ($_POST['submit'])
{
$oldpasswords = md5($_POST['oldpassword']);
$newpasswords = md5($_POST['newpassword']);
$repeatnewpasswords = md5($_POST['repeatnewpassword']);
$connect = mysql_connect ("localhost","------","----") or die("Couldn't Connect!");
mysql_select_db ("-------") or die("Couldn't Find DB!");
$queryget = mysql_query("SELECT password FROM users WHERE username='users'") or die("Query didnt work");
$row = mysql_fetch_assoc($queryget);
$oldpassworddb = $row["password"];
if ($oldpassword==$oldpassworddb)
{
if ($newpassword==$repeatnewpassword)
{
echo "success! ";
//change password in database
$querychange = mysql_query("
UPDATE users SET password='$newpassword' WHERE username='$user'
");
session_destroy();
die("Your pass word has been changed.<a href='index.php'>Return</a/>to main menu.");
}
else
die("New passwords dont match!");
}
else
die("Old password doesnt match!");
}
else
{
echo"
<form action='changepassword.php' method='POST'>
Old password: <input type='password' name='oldpassword'><p>
New password: <input type='password' name='newpassword'><br>
Repeat New password: <input type='password' name='repeatnewpassword'><p>
<input type='submit' name='submit' value='Change password'>
</form>
";
}
}
else die("You must be logged in to change your password!");
?>
session_start();
$user = $_SESSION['username'];
if ($user)
{
if ($_POST['submit'])
{
$oldpasswords = md5($_POST['oldpassword']);
$newpasswords = md5($_POST['newpassword']);
$repeatnewpasswords = md5($_POST['repeatnewpassword']);
$connect = mysql_connect ("localhost","------","----") or die("Couldn't Connect!");
mysql_select_db ("-------") or die("Couldn't Find DB!");
$queryget = mysql_query("SELECT password FROM users WHERE username='users'") or die("Query didnt work");
$row = mysql_fetch_assoc($queryget);
$oldpassworddb = $row["password"];
if ($oldpassword==$oldpassworddb)
{
if ($newpassword==$repeatnewpassword)
{
echo "success! ";
//change password in database
$querychange = mysql_query("
UPDATE users SET password='$newpassword' WHERE username='$user'
");
session_destroy();
die("Your pass word has been changed.<a href='index.php'>Return</a/>to main menu.");
}
else
die("New passwords dont match!");
}
else
die("Old password doesnt match!");
}
else
{
echo"
<form action='changepassword.php' method='POST'>
Old password: <input type='password' name='oldpassword'><p>
New password: <input type='password' name='newpassword'><br>
Repeat New password: <input type='password' name='repeatnewpassword'><p>
<input type='submit' name='submit' value='Change password'>
</form>
";
}
}
else die("You must be logged in to change your password!");
?>