File:
0.02.12a/server/web/pref.php (
View as Code)
1: 2: ob_start();
3: require("include.php");
4: $NATS->Start();
5: if (!$NATS_Session->Check($NATS->DB))
6: {
7: header("Location: ./?login_msg=Invalid+Or+Expired+Session");
8: exit();
9: }
10: ob_end_flush();
11:
12: if (isset($_REQUEST['action']))
13: {
14: switch ($_REQUEST['action'])
15: {
16: case "password":
17: if ($_REQUEST['p_new']!=$_REQUEST['p_confirm']) $message="Passwords Do Not Match";
18: else if ($_REQUEST['p_new']=="") $message="Illegal New Password";
19: else
20: {
21: $q="UPDATE fnuser SET password=MD5(\"".ss($_REQUEST['p_new'])."\") WHERE username=\"".ss($NATS_Session->username)."\"";
22: $q.=" AND password=MD5(\"".ss($_REQUEST['p_current'])."\")";
23: $NATS->DB->Query($q);
24: if ($NATS->DB->Affected_Rows()>0) $message="Password Changed";
25: else $message="Password Change Failed";
26: }
27: break;
28:
29: }
30: }
31:
32: Screen_Header("User Preferences",1);
33:
34: if (isset($_REQUEST['message'])) echo "
".$_REQUEST['message']."
";
35: if (isset($message)) echo "
".$message."
";
36:
37: ?>
38:
39: User Preferences
40:
41:
54:
55:
56:
57: 58: Screen_Footer();
59: ?>
60: