Try: ca/tecreations/ViewFile.php -- Online
<?php
require_once $_SERVER['DOCUMENT_ROOT'] . "/Base.php";
require_once $DOCROOT . "$PREFIX_DIR/Apps/IsLoggedIn.php";
global $user;
$user = new User();
$pass = $conf = $pass_err = $conf_err = "";
if (isset($_SESSION['uid']) && isset($_REQUEST['pass']) && isset($_REQUEST['conf'])) {
$email = $user->getEmail($_SESSION['uid']);
if (isset($_REQUEST['pass']) && isset($_REQUEST['conf'])) {
if (isset($_REQUEST['pass'])) $pass = $_REQUEST['pass'];
if (isset($_REQUEST['pass']) && empty($pass)) $pass_err = "Empty";
if (isset($_REQUEST['conf'])) $conf = $_REQUEST['conf'];
if (isset($_REQUEST['conf']) && empty($conf)) $conf_err = "Empty";
if (isset($pass) && isset($conf)) {
if ($pass != $conf) $conf_err = "Confirmation different from password.";
}
if ($pass_err == "" && $conf_err == "") {
changePass($email,$_REQUEST['pass']);
}
}
} else {
if (!empty($_SERVER['QUERY_STRING'])) {
Unauthorized();
}
}
function changePass($email = "", $pass = "") {
global $user, $PREFIX_DIR;
if ($user->changePass($email,$pass)) {
header("Location: $PREFIX_DIR/Login/Login.php");
}
}
include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/start.php";
?>
<title>Change Password</title>
<style type="text/css">
.wrapper { width: 450px; padding: 25px; }
</style>
<script>
function showPassword(cbox) {
var x = document.form1.pass;
var x2 = document.form1.conf;
if (cbox == x) x2.selected = cbox.selected;
if (cbox == x2) x.selected = cbox.selected;
if (x.type === "password") {
x.type = "text";
x2.type = "text";
} else {
x.type = "password";
x2.type = "password";
}
}
</script>
<?php
require_once "$DOCROOT/$PREFIX_DIR/includes/auto-logout.php";
include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/header_start.php";
if (isset($_SESSION['level'])) {
if ($_SESSION['level'] == 1) include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/Apps/Unprivileged.php";
else if ($_SESSION['level'] == 9) include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/Apps/Admin.php";
include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/menu/userAccount.php";
include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/menu/logout.php";
}
include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/header_finish.php";
?>
<div class="wrapper">
<center><h2>Change Password</h2>
<p>Please enter a new password for this account: (<b><?php $user->setDebug(false); echo $user->getEmail($_SESSION['uid']); ?></b>).</p>
</center>
<form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="<?php echo $METHOD; ?>" name="form1" id="form1">
<div class="form-group <?php echo (!empty($pass_err)) ? 'has-error' : ''; ?>">
<h5>Password</h5>
<input type="password" name="pass" class="form-control" value="<?php echo htmlspecialchars($pass); ?>">
<input type="checkbox" onclick="showPassword(this)">Show Password
<span class="help-block"><?php echo $pass_err; ?></span>
</div>
<div class="form-group <?php echo (!empty($conf_err)) ? 'has-error' : ''; ?>">
<h5>Confirm Password</h5>
<input type="password" name="conf" class="form-control" value="<?php echo htmlspecialchars($conf); ?>">
<span class="help-block"><?php echo $conf_err; ?></span>
</div>
<div class="form-group">
<input type="submit" class="btn btn-primary" value="Submit">
<input type="reset" class="btn btn-default" value="Reset">
</div>
</form>
</div>
</body>
</html>