File: 0.00.0a/web/pref.php (View as Code)

1: 2: ob_start(); 3: require("include.php"); 4: $NATS->Start(); 5: if (!$NATS_Session->Check($NATS->DB)) 6: { 7: header("Location: ./?login_msg=Invalid+Or+Expired+Session"); 8: exit(); 9: } 10: ob_end_flush(); 11: 12: if (isset($_REQUEST['action'])) 13: { 14: switch ($_REQUEST['action']) 15: { 16: case "password": 17: if ($_REQUEST['p_new']!=$_REQUEST['p_confirm']) $message="Passwords Do Not Match"; 18: else if ($_REQUEST['p_new']=="") $message="Illegal New Password"; 19: else 20: { 21: $q="UPDATE fnuser SET password=MD5(\"".ss($_REQUEST['p_new'])."\") WHERE username=\"".ss($NATS_Session->username)."\""; 22: $q.=" AND password=MD5(\"".ss($_REQUEST['p_current'])."\")"; 23: $NATS->DB->Query($q); 24: if ($NATS->DB->Affected_Rows()>0) $message="Password Changed"; 25: else $message="Password Change Failed"; 26: } 27: break; 28: 29: } 30: } 31: 32: Screen_Header("User Preferences",1); 33: 34: if (isset($_REQUEST['message'])) echo "
".$_REQUEST['message']."
";
35: if (isset($message)) echo "
".$message."
";
36: 37: ?> 38:
39: User Preferences

40: 41: 42: 43:
44: 45: 46: 47: 48: 49: 50: 51: 52: 53:
Change Password
Current :
New :
Confirm :
54:

55: 56: 57: 58: Screen_Footer(); 59: ?> 60: