Work_Archive/SYSDesk
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 8 Wiki Activity
This repository has been archived on 2023-05-21. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
0d26090074f8bb2dca2468a7bc1a5ed51b75f771
SYSDesk/backend/reset-password.php
brammp 89ae9f3a3a first commit
2019-08-13 23:32:13 +02:00

174 lines
7.2 KiB
PHP
Raw Blame History

<?php
// Initialize the session
session_start();
// Check if the user is logged in, if not then redirect him to login page
if(!isset($_SESSION["loggedin"]) || $_SESSION["loggedin"] !== true){
header("location: login.php");
exit;
}
// Include config file
require_once "../assets/php/config.php";
// Define variables and initialize with empty values
$new_password = $confirm_password = "";
$new_password_err = $confirm_password_err = "";
// Processing form data when form is submitted
if($_SERVER["REQUEST_METHOD"] == "POST"){
// Validate new password
if(empty(trim($_POST["new_password"]))){
$new_password_err = "Please enter the new password.";
} elseif(strlen(trim($_POST["new_password"])) < 6){
$new_password_err = "Password must have atleast 6 characters.";
} else{
$new_password = trim($_POST["new_password"]);
}
// Validate confirm password
if(empty(trim($_POST["confirm_password"]))){
$confirm_password_err = "Please confirm the password.";
} else{
$confirm_password = trim($_POST["confirm_password"]);
if(empty($new_password_err) && ($new_password != $confirm_password)){
$confirm_password_err = "Password did not match.";
}
}
// Check input errors before updating the database
if(empty($new_password_err) && empty($confirm_password_err)){
// Prepare an update statement
$sql = "UPDATE users SET password = ? WHERE id = ?";
if($stmt = mysqli_prepare($link, $sql)){
// Bind variables to the prepared statement as parameters
mysqli_stmt_bind_param($stmt, "si", $param_password, $param_id);
// Set parameters
$param_password = password_hash($new_password, PASSWORD_DEFAULT);
$param_id = $_SESSION["id"];
// Attempt to execute the prepared statement
if(mysqli_stmt_execute($stmt)){
// Password updated successfully. Destroy the session, and redirect to login page
session_destroy();
header("location: login.php");
exit();
} else{
echo "Oops! Something went wrong. Please try again later.";
}
}
// Close statement
mysqli_stmt_close($stmt);
}
// Close connection
mysqli_close($link);
}
?>
<!DOCTYPE html>
<html lang="en">
<head>
<title>SYSDesk - Reset password</title>
<meta charset="UTF-8">
<meta name="description" content="">
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">
<link rel="shortcut icon" type="image/x-icon" href="../assets/favicon.ico" />
<link href="https://fonts.googleapis.com/css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700italic,700,900,900italic" rel="stylesheet">
<!-- STYLESHEETS -->
<style type="text/css">
[fuse-cloak],
.fuse-cloak {
display: none !important;
}
</style>
<!-- Icons.css -->
<link type="text/css" rel="stylesheet" href="../assets/icons/fuse-icon-font/style.css">
<!-- Animate.css -->
<link type="text/css" rel="stylesheet" href="../assets/node_modules/animate.css/animate.min.css">
<!-- Perfect Scrollbar -->
<link type="text/css" rel="stylesheet" href="../assets/node_modules/perfect-scrollbar/css/perfect-scrollbar.css" />
<!-- Fuse Html -->
<link type="text/css" rel="stylesheet" href="../assets/fuse-html/fuse-html.min.css" />
<!-- Main CSS -->
<link type="text/css" rel="stylesheet" href="../assets/css/main.css">
<!-- Custom CSS -->
<link type="text/css" rel="stylesheet" href="../assets/css/custom.css">
<!-- / STYLESHEETS -->
<!-- JAVASCRIPT -->
<!-- jQuery -->
<script type="text/javascript" src="../assets/node_modules/jquery/dist/jquery.min.js"></script>
<!-- Mobile Detect -->
<script type="text/javascript" src="../assets/node_modules/mobile-detect/mobile-detect.min.js"></script>
<!-- Perfect Scrollbar -->
<script type="text/javascript" src="../assets/node_modules/perfect-scrollbar/dist/perfect-scrollbar.min.js"></script>
<!-- Bootstrap -->
<script type="text/javascript" src="../assets/node_modules/bootstrap/dist/js/bootstrap.min.js"></script>
<!-- Fuse Html -->
<script type="text/javascript" src="../assets/fuse-html/fuse-html.min.js"></script>
<!-- Main JS -->
<script type="text/javascript" src="../assets/js/main.js"></script>
<!-- / JAVASCRIPT -->
</head>
<body class="layout layout-vertical layout-left-navigation layout-below-toolbar layout-below-footer">
<main>
<div id="wrapper">
<div class="content-wrapper">
<nav id="toolbar" class="bg-white">
<div class="row no-gutters align-items-center flex-nowrap">
<div class="no-gutters align-items-center flex-nowrap">
<p class="texttoolbar login row align-items-center no-gutters px-2 px-sm-4" style="padding-top: 15%;" id="texttoolbar">SYSDesk</p>
</div>
<div class="col">
</div>
<div class="col-auto">
<div class="row no-gutters align-items-center justify-content-end">
</div>
</div>
</div>
</nav>
<div class="content custom-scrollbar">
<div id="login" class="p-8">
<div class="form-wrapper md-elevation-8 p-8">
<div class="logo bg-secondary icon-desktop-mac">
</div>
<div class="title mt-4">Reset your password</div>
<form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post">
<div class="form-group <?php echo (!empty($new_password_err)) ? 'has-error' : ''; ?>">
<label>New Password</label>
<input type="password" name="new_password" class="form-control" value="<?php echo $new_password; ?>">
<span class="help-block"><?php echo $new_password_err; ?></span>
</div>
<div class="form-group <?php echo (!empty($confirm_password_err)) ? 'has-error' : ''; ?>">
<label>Confirm Password</label>
<input type="password" name="confirm_password" class="form-control">
<span class="help-block"><?php echo $confirm_password_err; ?></span>
</div>
<div class="form-group">
<input type="submit" class="btn btn-secondary" value="Submit">
<a class="btn btn-link" href="login.php">Cancel</a>
</div>
</form>
</div>
</div>
</div>
</div>
</div>
</main>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink