[mirrors/Kyberia-bloodline.git] / wwwroot / inc / eventz / set_password.inc

<?php

function set_password() {
	global $db,$error,$error_messages;
	$old_password=$_POST['old_password'];
	$new_password1=$_POST['new_password1'];
	$new_password2=$_POST['new_password2'];

	if ($new_password1!=$new_password2) {
		$error=$error_messages['NEW_PASSWORD_MISMATCH'];
		return false;
	}
	$user_id=$_SESSION['user_id'];
	$login=$_SESSION['user_name'];
	if (!$user_id) {
		return false;
	}

	//old password check
	require_once(INCLUDE_DIR."eventz/login.inc");
	if(!login_check($user_id, $old_password)) {
		$error="bad password";
		return false;
	}

	//changing in MySQL
	$password=sha1($new_password1);
	$db->query("update users set password='$password' where user_id='$user_id'");
	login_check($user_id, $new_password1); //znova se zalogujeme po zmene hesla (kvuli jabberu)
}
Commit	Line	Data
51ff3226	1	<?php
	2
	3	function set_password() {
	4	global $db,$error,$error_messages;
	5	$old_password=$_POST['old_password'];
	6	$new_password1=$_POST['new_password1'];
	7	$new_password2=$_POST['new_password2'];
	8
	9	if ($new_password1!=$new_password2) {
	10	$error=$error_messages['NEW_PASSWORD_MISMATCH'];
	11	return false;
	12	}
	13	$user_id=$_SESSION['user_id'];
	14	$login=$_SESSION['user_name'];
	15	if (!$user_id) {
	16	return false;
	17	}
	18
	19	//old password check
e0946a04 H	20	require_once(INCLUDE_DIR."eventz/login.inc");
	21	if(!login_check($user_id, $old_password)) {
	22	$error="bad password";
51ff3226	23	return false;
	24	}
	25
51ff3226	26	//changing in MySQL
e0946a04	27	$password=sha1($new_password1);
51ff3226	28	$db->query("update users set password='$password' where user_id='$user_id'");
e0946a04	29	login_check($user_id, $new_password1); //znova se zalogujeme po zmene hesla (kvuli jabberu)
51ff3226	30	}