MAINHACK

Viewing / Editing File: change-password.php

<?php include("../admin/includes/functions/functions.php");?>
<?php include("../admin/db/db.php");?>
<?php 
if(!isset($_SESSION['username_Xw211qAAsq4']))
{
header('Location: ../auth/');
exit();
} else{

$pageTitle1 = 'Change password';
$shopname = $_SESSION['business_name_Xw211qAAsq4'];
$admin_id = $_SESSION['admin_id_Xw211qAAsq4'];

$message = "";

if($_SERVER["REQUEST_METHOD"] == "POST") {
if(!csrf_token_is_valid() || !csrf_token_is_recent()) {
$login_message = "<p class='alert alert-danger text-center ' role='alert'>Sorry, Token Authentication invalid.</p>";
} else {

$password = test_input($_POST['password']);
$confirm_password = test_input($_POST['confirm_password']);

if($password != $confirm_password){
  $message = "<p style='color:red'>Password do not march</p>";
  }

if($confirm_password == ""){
  $message = "<p style='color:red'>Confirm Password is required</p>";
}

if($password == ""){
$message = "<p style='color:red'>Password is required</p>";
}

else {

if(!$message){

$options = ['cost' => 12,];

$hashed_password =  password_hash($password, PASSWORD_BCRYPT, $options);
        
  $stmt = $con->prepare("UPDATE barber_admin SET password = ? WHERE admin_id = ?");
  $stmt->execute(array($hashed_password,$admin_id));

$message = "<p style='color:green'>Password Change successfully</p>";

session_destroy();
}

}

}
}
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8" />
<title> <?php echo $shopname;?> || <?php echo $pageTitle1;?></title>

#loader {
display: block;
position: absolute;
top: 50%;
left: 50%;
border: 16px solid #f3f3f3;
border-top: 16px solid #3498db;
border-radius: 50%;
width: 70px;
height: 70px;
animation: spin 2s linear infinite;
}

@keyframes spin {
0% { transform: rotate(0deg); }
100% { transform: rotate(360deg); }
}

td {
    width: 100px;
    height: 10px;
  }
</style>

</head>

<div id="layout-wrapper">
<div class="header-border"></div>

<?php include("includes/template/head.php");?>
<?php include("includes/template/side.php");?>

<div class="row">
<div class="col-12">
<div class="page-title-box d-flex align-items-center justify-content-between">
<h4 class="mb-0 font-size-18">Change password</h4>

</div>
</div>
</div>

<?php 
              if($message != "") {
              echo ($message) ;
              }
                          ?>
           <form  method="POST" action="<?php echo test_input($_SERVER['PHP_SELF']) ?>">
            <?php echo csrf_token_tag(); ?>
                <div class="form-group">
                    <label>Enter password</label>
             <input type="password"  name="password"   class="form-control">
                </div>
                <div class="form-group">
                    <label>Confrim password</label>
                    <input type="password" name="confirm_password"  class="form-control">
                </div>

<button type="submit" name="submit" class="btn btn-success">Change password</button>

</form>
        </div>

</div> 
</div>

</div> 
</div>

</div>

</div> 
</div>

<?php include("includes/template/newfooter.php");?>
</div>

</div>

<div class="menu-overlay"></div>

<?php include("includes/modals/CustomersModal.php");?>

</body>

</html>

Cancel / Back

[ MAINHACK ]

Viewing / Editing File: change-password.php

Server Info

System Features

User Info