Databases
StackOverflow2013
Postsdbo
POlet user change their own password?
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POlet user change their own password?
    primarykey
    data
    text
    <p>I am just starting to learn php and sql so please go easy on me, i know i'm going to be wrong in certain places. I am trying to allow a user to login and be able to change their password. I have made an attempt of a script which i believe should work, but i guess i'm doing something wrong as it will just link to the php function page and not change the password at all. Here's my script:</p> <p>HTML form:</p> <pre><code>&lt;form method="POST" action="includes/changepassword.php"&gt; &lt;p&gt;&lt;input type="password" name="oldpasswd" id="oldpasswd" maxlength="30" placeholder="Old Password"&gt;&lt;/p&gt; &lt;p&gt;&lt;input type="password" name="newpsswd1" id="newpsswd1" maxlength="30" placeholder="New Password"&gt;&lt;/p&gt; &lt;p&gt;&lt;input type="password" name="newpsswd2" id="newpsswd2"maxlength="30" placeholder="Confirm Password"&gt;&lt;/p&gt; &lt;input type="submit" name="submit" id="submit" value="change password"&gt; </code></pre> <p>changepassword.php file:</p> <pre><code> &lt;?php require_once("session.php"); require_once("functions.php"); require('_config/connection.php'); function changepassword ($oldpasswd, $newpasswd1, $newpasswd2) { /* * RETURNS * 0 - if password changed * 1 - if new passwords are not equal * 2 - if user authentification problems */ $oldpasswd = ($_POST['oldpasswd']); $newpasswd1 = ($_POST['newpasswd1']); $newpasswd1 = ($_POST['newpasswd2']); if ($newpasswd1 != $newpasswd2) { return 1; } //check user logged in changes OWN passwd $sql = "SELECT password FROM ptb_users WHERE id = ".$_SESSION['user_id']; $result = mysql_query($sql)or die('User not found: ' . mysql_error()); if (md5($oldpasswd)==$result) { //Encrypt $emailpassword in MD5 format for the database $md5_np=md5($newpasswd1); // Make a safe query $query = sprintf("UPDATE `ptb_users` SET `password` = '%s' WHERE `id` = ".$_SESSION['user_id'], mysql_real_escape_string($md5_np)); mysql_query($query)or die('Could not update password: ' . mysql_error()); return 0; } else { return 2; } } ?&gt; </code></pre> <p>What have I done wrong?</p>
    singulars
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PTQuestion
    1. USCrazyCasta
    1. USMatthew Williams
    plurals
    1. This table or related slice is empty.
    1. PL
      singulars
      1. LTLinked
    1. This table or related slice is empty.
    1. PO
      singulars
      1. PTAnswer
    2. PO
      singulars
      1. PTAnswer
    3. PO
      singulars
      1. PTAnswer
    1. VO
      singulars
      1. POlet user change their own password?
      1. This table or related slice is empty.
      1. VTUpMod
    2. VO
      singulars
      1. POlet user change their own password?
      1. This table or related slice is empty.
      1. VTUpMod
    3. VO
      singulars
      1. POlet user change their own password?
      1. USRichard
      1. VTFavorite
    1. COPlease, don't use `mysql_*` functions to write new code. They are no longer maintained and the community has begun [deprecation process](http://goo.gl/KJveJ). See the *[red box](http://goo.gl/GPmFd)*? Instead you should learn about [prepared statements](http://goo.gl/vn8zQ) and use either [PDO](http://php.net/pdo) or [MySQLi](http://php.net/mysqli). If you can't decide which, [this article](http://goo.gl/3gqF9) will help you. If you pick PDO, [here is good tutorial](http://goo.gl/vFWnC).
      singulars
      1. POlet user change their own password?
      1. USWaleed Khan
    2. COPlease see [the manual for `placeholder`](http://www.w3.org/TR/html5/common-input-element-attributes.html#the-placeholder-attribute), it is not a substitute for a [`<label>`](http://www.w3.org/TR/html5/the-label-element.html#the-label-element)
      singulars
      1. POlet user change their own password?
      1. USQuentin
    3. CODon't use md5, [it isn't secure enough](http://php.net/manual/en/faq.passwords.php)
      singulars
      1. POlet user change their own password?
      1. USQuentin
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload