0

Can someone help me with below script, this is script for change password. But it always can't recognize the old password. i'm really thankfull for your comments..

<?php
include("plogin.php");
//$_SESSION["userId"] = $_POST['id'];
//$userId = $_POST['id'];

session_start();
include("config.php");
//Cek Login


    if ($_SESSION['level']==user) {



        $namaLgkp = $_SESSION['username'];

if(count($_POST)>0) {
$result = mysql_query("SELECT *from tb_user WHERE id='" . $_SESSION["userId"] . "'");
$row=mysql_fetch_array($result);
if($_POST["pwlama"] == $row["password"]) {
mysql_query("UPDATE tb_user set password='" . $_POST["pwbaru"] . "' WHERE id='" . $_SESSION["userId"] . "'");
$message = "Password berhasil diganti";
} else $message = "Password lama salah";
}       
?>

<html>
<head>
<title>Online Ticketing</title>
<!-- CSS -->
<link href="style/css/layout.css" rel="stylesheet" type="text/css" media="screen" />
<script>
function passwordck() {
var pwlama,pwbaru,pwbarulg,output = true;

pwlama = document.frmpwd.pwlama;
pwbaru = document.frmpwd.pwbaru;
pwbarulg = document.frmpwd.pwbarulg;

if(!pwlama.value) {
    pwlama.focus();
    document.getElementById("pwlama").innerHTML = "required";
    output = false;
}
else if(!pwbaru.value) {
    pwbaru.focus();
    document.getElementById("pwbaru").innerHTML = "required";
    output = false;
}
else if(!pwbarulg.value) {
    pwbarulg.focus();
    document.getElementById("pwbarulg").innerHTML = "required";
    output = false;
}
if(pwbaru.value != pwbarulg.value) {
    pwbaru.value="";
    pwbarulg.value="";
    pwbaru.focus();
    document.getElementById("pwbarulg").innerHTML = "not same";
    output = false;
}   
return output;
}
</script>
</head>
<body>
<form name="frmpwd" method="post" action="" onSubmit="return passwordck()">
<div class="message"><?php if(isset($message)) { echo $message; } ?></div>
    <div id="wrapper">


       <!-- Batas awal menu atas -->
        <ul id="menu">
            <li><a href="duser.php">DASHBOARD</a></li> 
            <li><a href="staticuser.php">TICKET</a></li>
            <li><a href="passuser.php"  class="active">PASSWORD</a></li><!-- untuk menu  utama yang sedang dipilih  -->
            <li class="logout"><a href="logout.php">LOGOUT</a></li>
        </ul>
        <!-- Batas akhir menu atas -->

        <!-- Batas awal background layar -->
        <div id="backgroundlayar">

            <!-- Batas awal kertas -->
            <div id="kertas">
                <!-- Batas awal kotakkiri -->
                <div id="kotakkiri">

                    <!-- Batas awal menu kiri -->
                    <ul class="menukiri">
                        <li><a href="passuser.php" class="active">NEW PASSWORD</a></li> 
                    </ul>
                    <!-- batas akhir menu kiri-->

                </div>    
                <!-- batas akhir kotaks kiri -->


                <h2><a href="duser.php">Dashboard</a> » <a href="passuser.php" class="active">Password</a></h2>

                <div id="utama">
                    <form action="" >

                    <h3 align="center">Gantilah Password Secara Berkala</h3>


                    <fieldset>
                    <form action="" method="post">
                    <p><label>Nama:</label> <input type="text" name="nama" value="<?php echo $namaLgkp ?>"/><br/></p>
                    <p><label>Password lama: </label><input type="password" name="pwlama" required="required"/>
                    <p><label>Password baru:</label> <input type="password" name="pwbaru" required="required"/>
                    <p><label>Ketik ulang password baru:</label> <input type="password" name="pwbarulg" required="required"/>

                    <input type="submit" value="Update"/>

                    </form>
                </div>
                <!-- batas akhir utama -->

                <div class="clear"></div>
            </div>
            <!-- batas akhir kertas -->

        </div>   
        <!-- batas akhir background layar -->

         <!-- Batas awal kaki -->
        <p id="kaki">Copyright © 2014 <a href="#">Online Ticketing Support</a></p>
        <!-- batas akhir kaki -->

    </div>
    <!-- wrapper -->

</body>
</html>



<?php
}
    else {

    header('location: akses.php');
}
?>
3
Contributors
7
Replies
33
Views
3 Years
Discussion Span
Last Post by Adrian_5
0

why is this commented out?
<?php
include("plogin.php");
//$_SESSION["userId"] = $_POST['id'];
//$userId = $_POST['id'];

and put
session_start();
at the begining

0

it still doesn't work
error message: Warning: mysql_fetch_array() expects parameter 1 to be resource, boolean given in C:\xampp\htdocs\Skripsi\passuser.php on line 19

0

On line 11 is user a constant? Put it between quotes if not. Also, on line 18 put a space between asterisk and from.

0

Do an echo $_SESSION['userId'] to see if it returns anything, and if it does make sure that id is in the tb_user table (in the database)

Edited by Adrian_5

0

Well... it would be nice to set the problem status to "solved" and maybe up-vote some comments...

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.