-
Notifications
You must be signed in to change notification settings - Fork 1
/
changepass.php
68 lines (57 loc) · 1.34 KB
/
changepass.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
<?php
session_start();
if (!isset($_SESSION['sess_user'])) {
header("location:login.php");
# code...
}
$servername = "localhost";
$username = "thecdpda_sana";
$password = "sana123";
$dbname = "thecdpda_thecounsellor.io";
$user=$_SESSION['sess_user'];
// Create connection
$conn = new mysqli($servername, $username, $password, $dbname);
// Check connection
if ($conn->connect_error) {
die("Connection failed: " . $conn->connect_error);
}
$sql="SELECT password FROM user_info Where id='$user'";
$result = $conn->query($sql);
$oldpass=$_POST['oldpass'];
$newpass=$_POST['newpass'];
$repass=$_POST['repass'];
if($result)
{
$row = $result->fetch_assoc();
$dbpassword=$row["password"];
}
if ($dbpassword==$oldpass) {
if ($newpass==$repass) {
$sql="UPDATE user_info SET password='$repass' where id='$user'";
$result = $conn->query($sql);
?>
<script type="text/javascript">
window.alert("Password Changed");
window.location.assign("profile_edit.php");
</script>
<?php
}
else
{
?>
<script type="text/javascript">
window.alert("Password Not Matched");
window.location.assign("profile_edit.php");
</script>
<?php
}
}
else
{?>
<script type="text/javascript">
window.alert("Incorrect Old Password");
window.location.assign("profile_edit.php");
</script>
<?php
}
?>