3 function set_password() {
4 global $db,$error,$error_messages;
5 $old_password=$_POST['old_password'];
6 $new_password1=$_POST['new_password1'];
7 $new_password2=$_POST['new_password2'];
9 if ($new_password1!=$new_password2) {
10 $error=$error_messages['NEW_PASSWORD_MISMATCH'];
13 $user_id=$_SESSION['user_id'];
14 $login=$_SESSION['user_name'];
20 require_once(INCLUDE_DIR."eventz/login.inc");
21 if(!login_check($user_id, $old_password)) {
22 $error="bad password";
27 $password=sha1($new_password1);
28 $db->query("update users set password='$password' where user_id='$user_id'");
29 login_check($user_id, $new_password1); //znova se zalogujeme po zmene hesla (kvuli jabberu)