html - How to make PHP code check if inserted current password is correct password from MySQL database -


i making website settings form, user change password , email address.

my code following:

<meta charset="utf-8"/> <?php include_once 'init/init.funcs.php';  $kehtiv_parool=mysql_real_escape_string($_post['kehtiv_parool']); $kehtiv_parool_uuesti=mysql_real_escape_string($_post['kehtiv_parool_uuesti']); $uus_parool=mysql_real_escape_string($_post['uus_parool']); $kinnita_uus_parool=mysql_real_escape_string($_post['kinnita_uus_parool']); $email=mysql_real_escape_string($_post['email']); $userid=$_session['user']; $current_password = mysql_query("select parool kasutajad kasutaja_id ='$userid'");   if ($kehtiv_parool==$kehtiv_parool_uuesti){     if ($kehtiv_parool==$current_password){         if ($uus_parool==$kinnita_uus_parool){             mysql_query ("update kasutajad set parool='$uus_parool' kasutaja_id='$userid'");             echo "parool muudetud";             }          if (!empty($_post['email'])){             mysql_query ("update kasutajad set e_mail='$email' kasutaja_id='$userid' ");             echo "e-mail muudetud";     }     }     else         echo "sisestatud kehtiv parool ei ole korrektne";  } else     echo "sisestatud kehtivad paroolid ei kattu";  ?>

when remove code works:

<meta charset="utf-8"/> <?php include_once 'init/init.funcs.php';  $kehtiv_parool=mysql_real_escape_string($_post['kehtiv_parool']); $kehtiv_parool_uuesti=mysql_real_escape_string($_post['kehtiv_parool_uuesti']); $uus_parool=mysql_real_escape_string($_post['uus_parool']); $kinnita_uus_parool=mysql_real_escape_string($_post['kinnita_uus_parool']); $email=mysql_real_escape_string($_post['email']); $userid=$_session['user']; $current_password = mysql_query("select parool kasutajad kasutaja_id ='$userid'");   if ($kehtiv_parool==$kehtiv_parool_uuesti){         if ($uus_parool==$kinnita_uus_parool){             mysql_query ("update kasutajad set parool='$uus_parool' kasutaja_id='$userid'");             echo "parool muudetud";           if (!empty($_post['email'])){             mysql_query ("update kasutajad set e_mail='$email' kasutaja_id='$userid' ");             echo "e-mail muudetud";     }     }     else         echo "sisestatud kehtiv parool ei ole korrektne";  } else     echo "sisestatud kehtivad paroolid ei kattu";

but wont check if inserted old password correct password of user, how should write code make work? variable kehtiv_parool holds value of current password user inserted in html form , kehtiv_parool_uuesti confirmation of same thing.

my html following:

<html> <head> <meta charset="utf-8"/> <title>seaded</title> </head> <body> <p>täida väljad, mida soovid muuta</p> <form action="seaded.php" method="post"> <br>uus parool<input type="password" name="uus_parool"> <br>  <br>kinnita uus parool <input type="password" name="kinnita_uus_parool"> <br>  <br>e-mail             <input type="text" name="email"><br> <hr> <br>sisesta kehtiv parool <input type="password" name="kehtiv_parool"><br>  <br>sisesta kehtiv parool uuesti <input type="password" name="kehtiv_parool_uuesti"><br>   <input type="submit" value="kinnita">  </form>    </body> </html>

you need call mysql_fetch_assoc row query returns.

$current_password_result = mysql_query("select parool kasutajad kasutaja_id ='$userid'"); $current_password_row = mysql_fetch_assoc($current_password_result); $current_password = $current_password_row ? $current_password_row['parool'] : null;  if ($kehtiv_parool==$kehtiv_parool_uuesti){     if ($kehtiv_parool===$current_password){

Comments

Post a Comment

Popular posts from this blog

apache - Remove .php and add trailing slash in url using htaccess not loading css -

i have add following code htaccess file removing .php extension , add trailing slash urls. worked fine reduced page loading speed , css code not loading @ all. pages ugly. please help rewriteengine on rewritebase / ## hide .php extension snippet # externally redirect /dir/foo.php /dir/foo rewritecond %{the_request} ^[a-z]{3,}\s([^.]+)\.php [nc] rewriterule ^ %1/ [r,l] # add trailing slash rewritecond %{request_filename} !-f rewritecond %{request_uri} !/$ rewriterule . %{request_uri}/ [l,r=301] # internally forward /dir/foo /dir/foo.php rewritecond %{request_filename} !-d rewritecond %{request_filename}.php -f rewriterule ^(.*?)/?$ $1.php [l] we can rewrite urls using .htaccess files. before writing in .htaccess files need verify kind of server using. can check server adding a <?php phpinfo(); ?> in php page. ensure mod_rewrite module enabled in apache server. can identified checking phpinfo included page. common methods used url rewriting follows ...
Read more

javascript - jQuery show full size image on click -

pretty self explanatory not workking . i want display full image when user click on image... yes know there tons of plugins but i want keep simple. any idea ? css : .full { display: none; width: 500px; height: 500px; margin-left: 100px; margin-top: -300px; position: fixed; background-color: #f00; z-index: 6; } .thumbnail { width: 50px; height: 50px; } html: <img class="thumbnail" src="http://4.bp.blogspot.com/-uhbdp2esxng/txneptvi92i/aaaaaaaaaky/upfqis7zto0/s1600/rihanna-wallpaper.jpg"> jquery: $(document).ready(function() { $('.thumbnail').on('click', function() { var img = $('<img />',{src:this.src,'class':'full'}); $('.full').html(img).show(); console.log('done!'); }); }); try looking how jquery works. $(document).ready(function() { $('.thumbnail').on('click', function(...
Read more