reset_passwod final fix

[mirrors/Kyberia-bloodline.git] / wwwroot / backend / mysql / backend.inc

diff --git a/wwwroot/backend/mysql/backend.inc b/wwwroot/backend/mysql/backend.inc
index 560c5b8f9f845aa0b6aa1aa8adeb6e7bf25c82d8..bf4c80d806c2b37c4ea16954d5b23845d776663d 100644 (file)
--- a/wwwroot/backend/mysql/backend.inc
+++ b/wwwroot/backend/mysql/backend.inc
@@ -705,17 +705,20 @@ public static function resetPassword($login_id,$login,$vercode,$password) {
 
        // Security checks
        $login = db_escape_string($login);
-       if (!is_numeric($login_id)) { return false; } 
+       if (!is_numeric($login_id)) {
+               $error="Not numeric id is not numeric. Here, take this stone.";
+               return $error; 
+       } 
 
        if ($login == '') {
                $error="Please enter name or id";
-               return false;
+               return $error;
        }
 
-       if ($login_id = 0) {
+       if ($login_id == 0) {
                $set=$db->query("select * from users where login='$login'");
        } else {
-               $set=$db->query("select * from users where user_id='$login'");
+               $set=$db->query("select * from users where user_id='$login_id'");
        }
 
        $set->next();
@@ -725,14 +728,15 @@ public static function resetPassword($login_id,$login,$vercode,$password) {
 
        if ($hash != $vercode) {
                $error="Bad verification code!";
-               return false;
+               return $error;
        }
 
        $password = sha1($password);
        $q="update users set password='$password',hash='' where user_id='$user_id'";
        $db->query($q);
-
-       return 0;
+       
+       $error="OK, password was RE-set";
+       return $error;
 }
 
 }