-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathchange_password.php
More file actions
224 lines (221 loc) · 11.1 KB
/
change_password.php
File metadata and controls
224 lines (221 loc) · 11.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
<?php
ob_start();
session_start();
include "admin/include/db.php";
//Mendapatkan GET
if (isset($_GET['username'])){
if (isset($_SESSION['username'])) {
if ($_SESSION['username'] == $_GET['username']) {
$username = mysqli_escape_string($dbc, $_GET['username']);
}
else {
echo "Tidak sama";
}
}
else {
echo $_SESSION['username'];
}
}
else {
echo "get tak dapat";
}
print "<head>
<meta charset='utf-8' />
<link rel='apple-touch-icon' sizes='76x76' href='../CMS/assets/img/apple-icon.png'>
<link rel='icon' type='image/png' href='../CMS/assets/img/favicon.png'>
<meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1' />
<title>Change Password - Hanibi</title>
<meta content='width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=0, shrink-to-fit=no' name='viewport' />
<!-- Fonts and icons -->
<link href='https://fonts.googleapis.com/css?family=Montserrat:400,700,200' rel='stylesheet' />
<link rel='stylesheet' href='https://maxcdn.bootstrapcdn.com/font-awesome/latest/css/font-awesome.min.css' />
<!-- CSS Files -->
<link href='../CMS/assets/css/bootstrap.min.css' rel='stylesheet' />
<link href='../CMS/assets/css/now-ui-kit.css' rel='stylesheet' />
</head>";
print "<body class='login-page'>
<!-- Navbar -->
<nav class='navbar navbar-toggleable-md bg-primary fixed-top navbar-transparent ' color-on-scroll='500'>
<div class='container'>
<div class='navbar-translate'>
<button class='navbar-toggler navbar-toggler-right' type='button' data-toggle='collapse' data-target='#navigation' aria-controls='navigation-index' aria-expanded='false' aria-label='Toggle navigation'>
<span class='navbar-toggler-bar bar1'></span>
<span class='navbar-toggler-bar bar2'></span>
<span class='navbar-toggler-bar bar3'></span>
</button>
<a class='navbar-brand' href='index.php' rel='tooltip' title='Hanibi' data-placement='bottom'>
Hanibi
</a>
</div>
<div class='collapse navbar-collapse justify-content-end' id='navigation' data-nav-image='../CMS/assets/img/blurred-image-1.jpg'>
<ul class='navbar-nav'>
<li class='nav-item'>
<a class='nav-link' href='../CMS/index.php'>Back to Home</a>
</li>
<li class='nav-item'>
<a class='nav-link' rel='tooltip' title='Follow us on Twitter' data-placement='bottom' href='https://twitter.com/dhnlr' target='_blank'>
<i class='fa fa-twitter'></i>
<p class='hidden-lg-up'>Twitter</p>
</a>
</li>
<li class='nav-item'>
<a class='nav-link' rel='tooltip' title='Like us on Facebook' data-placement='bottom' href='https://www.facebook.com/dhnlr' target='_blank'>
<i class='fa fa-facebook-square'></i>
<p class='hidden-lg-up'>Facebook</p>
</a>
</li>
<li class='nav-item'>
<a class='nav-link' rel='tooltip' title='Follow us on Instagram' data-placement='bottom' href='https://www.instagram.com/dhnlr' target='_blank'>
<i class='fa fa-instagram'></i>
<p class='hidden-lg-up'>Instagram</p>
</a>
</li>
</ul>
</div>
</div>
</nav>
<!-- End Navbar -->
<div class='page-header' filter-color='orange'>
<div class='page-header-image' style='background-image:url(../CMS/assets/img/login.jpg)'></div>
<div class='container'>
<div class='col-md-4 content-center'>
<div class='card card-login card-plain'>
<form class='form' method='post' action=''>
<div class='header header-primary text-center'>
<div class='logo-container'>
<img src='../CMS/assets/img/now-logo.png' alt=''>
</div>
</div>";
//Memanggil user
if (isset($_POST['change_password'])){
$username = mysqli_escape_string($dbc, strip_tags($_POST['username']));
$old_password = mysqli_escape_string($dbc, strip_tags($_POST['old_password']));
$new_password = mysqli_escape_string($dbc, $_POST['new_password']);
$confirm_password = mysqli_escape_string($dbc, $_POST['confirm_password']);
$query = "SELECT user_password FROM users WHERE username='{$username}'";
if ($result = mysqli_query($dbc, $query)){
if (mysqli_num_rows($result)==1){
$row = mysqli_fetch_assoc($result);
$hash = $row['user_password'];
if ($new_password == $confirm_password && password_verify("$old_password", "$hash")){
$user_pass = password_hash($new_password, PASSWORD_DEFAULT);
$query_update = "UPDATE users SET user_password='{$user_pass}' WHERE username='{$username}'";
if ($result_update = mysqli_query($dbc, $query_update)) {
print "<div class=\"alert alert-success\" role=\"alert\">
<div class=\"container\">
<i class=\"now-ui-icons objects_support-17\"></i>
<strong>Success</strong> Password changed.
<button type=\"button\" class=\"close\" data-dismiss=\"alert\" aria-label=\"Close\">
<span aria-hidden=\"true\">
<i class=\"now-ui-icons ui-1_simple-remove\"></i>
</span>
</button>
</div>
</div>";
}
}
else {
print "<div class=\"alert alert-danger\" role=\"alert\">
<div class=\"container\">
<i class=\"now-ui-icons objects_support-17\"></i>
<strong>Oh snap!</strong> Check and retry.
<button type=\"button\" class=\"close\" data-dismiss=\"alert\" aria-label=\"Close\">
<span aria-hidden=\"true\">
<i class=\"now-ui-icons ui-1_simple-remove\"></i>
</span>
</button>
</div>
</div>";
}
}
}
}
print "<div class='content'>
<div class='input-group form-group-no-border input-lg'>
<span class='input-group-addon'>
<i class='now-ui-icons ui-1_lock-circle-open'></i>
</span>
<input type='hidden' class='form-control' value='{$username}' name='username'>
<input type='password' class='form-control' placeholder='Old Password' name='old_password' required>
</div>
<div class='input-group form-group-no-border input-lg'>
<span class='input-group-addon'>
<i class='now-ui-icons ui-1_lock-circle-open'></i>
</span>
<input type='password' placeholder='New Password' class='form-control' name='new_password' required>
</div>
<div class='input-group form-group-no-border input-lg'>
<span class='input-group-addon'>
<i class='now-ui-icons ui-1_lock-circle-open'></i>
</span>
<input type='password' placeholder='Confirm New Password' class='form-control' name='confirm_password' required>
</div>
</div>
<div class='footer text-center'>
<button class='btn btn-primary btn-round btn-lg btn-block' type='submit' name='change_password'>Change</button>
</div>
<div class='pull-left'>
<h6>
<a href='register.php' class='link'>Create Account</a>
</h6>
</div>
<div class='pull-right'>
<h6>
<a href='index.php' class='link'>Home</a>
</h6>
</div>
</form>
</div>
</div>
</div>
<footer class='footer'>
<div class='container'>
<nav>
<ul>
<li>
<a href='https://www.creative-tim.com'>
Creative Tim
</a>
</li>
<li>
<a href='http://presentation.creative-tim.com'>
About Us
</a>
</li>
<li>
<a href='http://blog.creative-tim.com'>
Blog
</a>
</li>
<li>
<a href='https://github.com/creativetimofficial/now-ui-kit/blob/master/LICENSE.md'>
MIT License
</a>
</li>
</ul>
</nav>
<div class='copyright'>
©
<script>
document.write(new Date().getFullYear())
</script>, Thanks to
<a href='http://www.invisionapp.com' target='_blank'>Invision</a> and
<a href='https://www.creative-tim.com' target='_blank'>Creative Tim</a>.
</div>
</div>
</footer>
</div>
</body>
<!-- Core JS Files -->
<script src='../CMS/assets/js/core/jquery.3.2.1.min.js' type='text/javascript'></script>
<script src='../CMS/assets/js/core/tether.min.js' type='text/javascript'></script>
<script src='../CMS/assets/js/core/bootstrap.min.js' type='text/javascript'></script>
<!-- Plugin for Switches, full documentation here: http://www.jque.re/plugins/version3/bootstrap.switch/ -->
<script src='../CMS/assets/js/plugins/bootstrap-switch.js'></script>
<!-- Plugin for the Sliders, full documentation here: http://refreshless.com/nouislider/ -->
<script src='../CMS/assets/js/plugins/nouislider.min.js' type='text/javascript'></script>
<!-- Plugin for the DatePicker, full documentation here: https://github.com/uxsolutions/bootstrap-datepicker -->
<script src='../CMS/assets/js/plugins/bootstrap-datepicker.js' type='text/javascript'></script>
<!-- Control Center for Now Ui Kit: parallax effects, scripts for the example pages etc -->
<script src='../CMS/assets/js/now-ui-kit.js' type='text/javascript'></script>
</html>";