/var/www/hkosl.com/dashboard/webadmin/sys_cms_user_modifypwform.php

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118

<?php
header('X-UA-Compatible: IE=edge,chrome=1');
include 'config.php';
// Check if the user is logged in

if ((!isSet($_SESSION['loginname'])) || ($loggin <> '1'))
{
    header("Location: login.php");
    exit;
}


// var_dump($_POST);

if(isset($_POST['cmsloginid']) && isset($_POST['originalpw']) && isset($_POST['cmsloginpw']) && isset($_POST['cmsloginpw_confirm'])){

    if( Sys_user::changePassword( (int)$_POST['cmsloginid'], $_POST['originalpw'], $_POST['cmsloginpw'], $_POST['cmsloginpw_confirm'] ) ){
        header('Location: mainpage.php');
        exit;
    }
    else{
        header('Location: sys_cms_user_modifypwform.php?msg=Failed+to+modify+password');
        exit;
    }

}
?>
<html>
<head>
<link rel="stylesheet" type="text/css" href="css/style.css" />
<!--<meta http-equiv="x-ua-compatible" content="ie=7"/>-->
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title>Content Management System (CMS) </title>
    <script src="js/jquery-1.11.1.min.js"></script>
    <script src="js/jquery-migrate-1.2.1.min.js"></script>
    <script src="js/jquery.validate.min.js"></script>

<script type="text/javascript">
$(document).ready(function(e) {
    $("#myform").validate({
        rules : {
            cmsloginpw_confirm : {
                equalTo : "#cmsloginpw"
            }
        }
    });
});
</script>
</head>
<body>
<?php
$sql "SELECT * FROM sys_cms_login WHERE cmsloginid=:cmsloginid";
$sql_param = array(    ':cmsloginid' => (int)$_SESSION["cmsloginid"] );

    if (!($sth $dbh->prepare($sql))) {
        throw new Exception('[' $sth->errorCode() . ']: ' print_r($sth->errorInfo()));
    }

    if (!$sth->execute($sql_param)) {
        throw new Exception('[' $sth->errorCode() . ']: ' print_r($sth->errorInfo()));
    }

if ( !$row $sth->fetch() ) {
    header('Location: logout.php');
}

?>
<form method="post" name="modifyform" id="myform" enctype="multipart/form-data" autocomplete="off">
<input type="hidden" name="cmsloginid" value="<?=$row{'cmsloginid'};?>">
<input type="hidden" class="content" name="cmsloginname" value="<?=$row{'cmsloginname'}?>" id="cmsloginname" />
<table width="1000" border="0" cellpadding="0" cellspacing="0">
  <tr>
    <td height="70" align="right" valign="middle" class="icontxt"><table border="0" cellpadding="0" cellspacing="0">
      <tr>        
        <td width="50" align="center"><a href="#" onClick="$('#myform').submit()"><img src="images/iconSave.png" alt="Save" width="32" height="32" border="0"><br>
          &nbsp;Save&nbsp;&nbsp;</a></td>
        <td width="50" align="center"><a href="logout.php"><img src="images/iconCancel.png" alt="Cancel" width="32" height="32" border="0"><br>
          &nbsp;Cancel&nbsp;&nbsp;</a></td>
        <td>&nbsp;</td>
      </tr>
    </table></td>
  </tr>
  <tr>
    <td class="pagetitletxt">&nbsp;&nbsp;<b><img src="images/iconList.jpg" width="48" height="48" align="absmiddle" /> Please update your password </b></td>
  </tr>

    <tr>
        <td height="25" align="left" valign="middle" class="msg"><?php if (isset($_GET["msg"])) echo $_GET['msg']; ?></td>
    </tr>

  <tr>
    <td align="left" valign="middle"><!-- Content -->
    <table border="0" cellpadding="0" cellspacing="0">
        <tr>
            <td width="120" align="right" valign="top" class='content'>Current Password</td>
            <td class='content' valign="top">:&nbsp;</td>
            <td class='content'><input type="password" class="content required" id="originalpw" name="originalpw" size="50" maxlength="15" /></td>
        </tr>
        <tr>
            <td width="120" align="right" valign="top" class='content'>New Password</td>
            <td class='content' valign="top">:&nbsp;</td>
            <td class='content'><input type="password" class="content required" id="cmsloginpw" name="cmsloginpw" size="50" maxlength="15" /><?=Password::ajax_validate('cmsloginpw''ajax_passwordChecker.php''cmsloginname')?> length:8-15</td>
        </tr>
        <tr>
            <td width="120" align="right" valign="top" class='content'>Confirm New Password</td>
            <td class='content' valign="top">:&nbsp;</td>
            <td class='content'><input type="password" class="content required" id="cmsloginpw_confirm" name="cmsloginpw_confirm" size="50" maxlength="15"  /></td>
        </tr>        
        </table>        
    <!-- End Content --></td>
  </tr>
  <tr>
    <td align="left" valign="middle">&nbsp;</td>
  </tr>
</table>
</form>
</body>
</html>