File "ajax_reset_password.php"
Full path: /home/mysamm/public_html/mysamm_login/ajax_reset_password.php
File
size: 2.06 B
MIME-type: text/x-php; charset=us-ascii
Charset: utf-8
Download Open Edit Advanced Editor &nnbsp; Back
<?php
require_once "/home/mysamm/price_checker/lib/connections.php";
session_start();// Make sure to include your DB connection
if (!isset($_SESSION['user_type']) ) {
// If the user is not admin, redirect or show an error
header("Location: index.php");
exit();
}
$response = ["msg" => "", "msgtype" => ""];
if ($_SERVER["REQUEST_METHOD"] == "POST") {
$old_password = trim($_POST['old_password']);
$new_password = trim($_POST['new_password']);
$confirm_new_password = trim($_POST['confirm_new_password']);
if (empty($old_password) || empty($new_password) || empty($confirm_new_password)) {
$response["msg"] = "All fields are required!";
$response["msgtype"] = "danger";
} elseif ($new_password !== $confirm_new_password) {
$response["msg"] = "Passwords do not match!";
$response["msgtype"] = "danger";
} elseif (strlen($new_password) < 10) {
$response["msg"] = "Password must be at least 10 characters long!";
$response["msgtype"] = "danger";
} else {
$hashedPassword = password_hash($new_password, PASSWORD_BCRYPT);
$user_id = $_SESSION['user_id'];
$db = new Connection();
$user = $db->GetRow("SELECT * FROM admin_users WHERE id = '$user_id' AND status = 0");
if ($user && password_verify($old_password, $user['password'])) {
date_default_timezone_set("Asia/Kolkata");
$updated_at = date("Y-m-d H:i:s");
$update = $db->execute("UPDATE admin_users SET password = '$hashedPassword', updated_at = '$updated_at' WHERE id = $user_id");
if ($update) {
$response["msg"] = "New Password Updated!";
$response["msgtype"] = "success";
} else {
$response["msg"] = "Error updating password!";
$response["msgtype"] = "danger";
}
} else {
$response["msg"] = "Invalid Password!";
$response["msgtype"] = "warning";
}
}
}
echo json_encode($response);
?>