food-inventory/reset-password.php

<?php
require_once("./assets/php/utils.php");

// Check if the user is logged in, if not then redirect him to login page
if (!is_connected()) {
    header("location: login.php");
    exit;
}

// Define variables and initialize with empty values
$new_password = $confirm_password = "";
$new_password_err = $confirm_password_err = "";

// Processing form data when form is submitted
if ($_SERVER["REQUEST_METHOD"] == "POST") {

    // Validate new password
    if (empty(trim($_POST["new_password"]))) {
        $new_password_err = "Please enter the new password.";
    } elseif (strlen(trim($_POST["new_password"])) < $MINIMAL_PASSWORD_LENGTH) {
        $new_password_err = "Password must have atleast $MINIMAL_PASSWORD_LENGTH characters.";
    } else {
        $new_password = trim($_POST["new_password"]);
    }

    // Validate confirm password
    if (empty(trim($_POST["confirm_password"]))) {
        $confirm_password_err = "Please confirm the password.";
    } else {
        $confirm_password = trim($_POST["confirm_password"]);
        if (empty($new_password_err) && ($new_password != $confirm_password)) {
            $confirm_password_err = "Password did not match.";
        }
    }

    // Check input errors before updating the database
    if (empty($new_password_err) && empty($confirm_password_err)) {
        if (change_user_password(
            get_user_info_from_session_id("id"),
            $new_password
        )) { 
            header("location: welcome.php");
        } else {
            echo "Oops! Something went wrong. Please try again later.";
        }
    }
}
?>

<!DOCTYPE html>
<html lang="en">

<head>
    <meta charset="UTF-8">
    <title>Reset Password</title>
    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.css">
    <style type="text/css">
        body {
            font: 14px sans-serif;
        }

        .wrapper {
            width: 350px;
            padding: 20px;
        }
    </style>
</head>

<body>
    <div class="wrapper">
        <h2>Reset Password</h2>
        <p>Please fill out this form to reset your password.</p>
        <form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post">
            <div class="form-group <?php echo (!empty($new_password_err)) ? 'has-error' : ''; ?>">
                <label>New Password</label>
                <input type="password" name="new_password" class="form-control" value="<?php echo $new_password; ?>">
                <span class="help-block"><?php echo $new_password_err; ?></span>
            </div>
            <div class="form-group <?php echo (!empty($confirm_password_err)) ? 'has-error' : ''; ?>">
                <label>Confirm Password</label>
                <input type="password" name="confirm_password" class="form-control">
                <span class="help-block"><?php echo $confirm_password_err; ?></span>
            </div>
            <div class="form-group">
                <input type="submit" class="btn btn-primary" value="Submit">
                <a class="btn btn-link" href="welcome.php">Cancel</a>
            </div>
        </form>
    </div>
</body>

</html>
users can now change their own password 2019-11-10 13:07:27 +01:00			`<?php`
			`require_once("./assets/php/utils.php");`

			`// Check if the user is logged in, if not then redirect him to login page`
			`if (!is_connected()) {`
			`header("location: login.php");`
			`exit;`
			`}`

			`// Define variables and initialize with empty values`
			`$new_password = $confirm_password = "";`
			`$new_password_err = $confirm_password_err = "";`

			`// Processing form data when form is submitted`
			`if ($_SERVER["REQUEST_METHOD"] == "POST") {`

			`// Validate new password`
			`if (empty(trim($_POST["new_password"]))) {`
			`$new_password_err = "Please enter the new password.";`
			`} elseif (strlen(trim($_POST["new_password"])) < $MINIMAL_PASSWORD_LENGTH) {`
			`$new_password_err = "Password must have atleast $MINIMAL_PASSWORD_LENGTH characters.";`
			`} else {`
			`$new_password = trim($_POST["new_password"]);`
			`}`

			`// Validate confirm password`
			`if (empty(trim($_POST["confirm_password"]))) {`
			`$confirm_password_err = "Please confirm the password.";`
			`} else {`
			`$confirm_password = trim($_POST["confirm_password"]);`
			`if (empty($new_password_err) && ($new_password != $confirm_password)) {`
			`$confirm_password_err = "Password did not match.";`
			`}`
			`}`

			`// Check input errors before updating the database`
			`if (empty($new_password_err) && empty($confirm_password_err)) {`
			`if (change_user_password(`
simplified the process of getting user_infos as the user we want to get some info is the one connected 2019-11-10 14:09:59 +01:00			`get_user_info_from_session_id("id"),`
users can now change their own password 2019-11-10 13:07:27 +01:00			`$new_password`
			`)) {`
users are redirected to the welcome page when changing their password 2019-11-10 14:12:01 +01:00			`header("location: welcome.php");`
users can now change their own password 2019-11-10 13:07:27 +01:00			`} else {`
			`echo "Oops! Something went wrong. Please try again later.";`
			`}`
			`}`
			`}`
			`?>`

			`<!DOCTYPE html>`
			`<html lang="en">`

			`<head>`
			`<meta charset="UTF-8">`
			`<title>Reset Password</title>`
			`<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.css">`
			`<style type="text/css">`
			`body {`
			`font: 14px sans-serif;`
			`}`

			`.wrapper {`
			`width: 350px;`
			`padding: 20px;`
			`}`
			`</style>`
			`</head>`

			`<body>`
			`<div class="wrapper">`
			`<h2>Reset Password</h2>`
			`<p>Please fill out this form to reset your password.</p>`
			`<form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post">`
			`<div class="form-group <?php echo (!empty($new_password_err)) ? 'has-error' : ''; ?>">`
			`<label>New Password</label>`
			`<input type="password" name="new_password" class="form-control" value="<?php echo $new_password; ?>">`
			`<span class="help-block"><?php echo $new_password_err; ?></span>`
			`</div>`
			`<div class="form-group <?php echo (!empty($confirm_password_err)) ? 'has-error' : ''; ?>">`
			`<label>Confirm Password</label>`
			`<input type="password" name="confirm_password" class="form-control">`
			`<span class="help-block"><?php echo $confirm_password_err; ?></span>`
			`</div>`
			`<div class="form-group">`
			`<input type="submit" class="btn btn-primary" value="Submit">`
			`<a class="btn btn-link" href="welcome.php">Cancel</a>`
			`</div>`
			`</form>`
			`</div>`
			`</body>`

			`</html>`