Help with Password Encoding/Decoding?
Posted on
16th Feb 2014 07:03 pm by
admin
Trying to design a "change password" tool. On my signup code I'm using base64_encode, now I am trying to decode it on the change password screen and having issues. Yes I am very new to this.
I keep returning a fail response with this. Help?
<?php
include("check_session.php");
include("online.php");
include("site.conf.php");
include("$base_dir/include/scTemplate.class.php");
include("$base_dir/include/timestamp.inc.php");
include("$base_dir/include/index.inc.php");
include("$base_dir/include/calendar.inc.php");
include("$base_dir/include/images.inc.php");
/****************************************************************
* open connection to mysql server *
****************************************************************/
$conn = mysql_connect($db_host, $db_user, $db_password);
mysql_select_db($db_name, $conn);
$sql = "select id from tbl_pm_message ";
$sql .= "where (id_to='$user_id') and (status='online') and
(flag='1')";
$result = mysql_query($sql);
$new_message = mysql_num_rows($result);
if (($old_password == "") || ($password1 == "") || ($password2 == "") ||
($password1 != $password2)) {
$error = "upt01";
}
else {
$old_password = base64_decode($old_password);
$password1 = base64_encode($password1);
$password2 = base64_encode($password2);
$sql = "select id from tbl_user where (id='$user_id') and
(code='$user_code') and ";
$sql .= "('$old_password') ";
$result = mysql_query($sql);
$rows = mysql_num_rows($result);
if ($rows > 0) {
$sql = "update tbl_user set ('$password1'),
status='active' ";
$sql .= "where (id='$user_id') and (code='$user_code')
";
$result = mysql_query($sql);
if ($result) {
$error = "";
}
else {
$error = "upt02";
}
}
else {
$error = "upt03";
}
}
/****************************************************************
* generate page *
****************************************************************/
$tpl = new scTemplate("$templates_dir/password_result.html");
$tpl->replace("SC_SI_BANNER", show_banner());
$tpl->replace("SC_SI_ADS", show_ads());
$tpl->replace("SC_SI_MENU", show_menu(1));
$tpl->replace("SC_SI_LOGO", show_logo());
$tpl->replace("SC_SI_RIGHTLOGO", show_rightlogo());
$tpl->replace("SC_SI_SEARCH", show_search());
$tpl->replace("SC_SI_NEWS", show_news());
$tpl->replace("SC_SI_MEMBER", show_member());
$tpl->replace("SC_SI_CALENDAR", show_calendar());
$tpl->replace("SC_SI_BOTTOM", show_bottom());
$tpl->replace("SC_SI_COPYRIGHT", show_copyright());
$tpl->replace("SC_USERNAME", $user_name);
$tpl->replace("SC_NEW", $new_message);
if ($error == "") {
$tpl->replace("SC_RESULT", "OK");
}
else {
$tpl->replace("SC_RESULT", "Failed");
}
$tpl->write();
?>
No comments posted yet
Your Answer:
Login to answer
328 
25 
Other forums
please help me... my password gets encrypted but not able to get in database
hai guys,
please help me... in the following function my password gets encrypted but no
weird problem
last time, i did post a topic concerning why my page sometime will load as blank page when using IE.
is this the proper use of mysql_real_escape_string() to prevent sql injections?
i was wondering is this the proper use of mysql_real_escape_string() to prevent sql injections? any
getAlexaRank($url) function not working
I have made a function to get alexa rank
the site is here: http://mytestsite.rack111.com/1
Finding digits in variable containing text, and IDing them
$romanstock = "http://www.remoteprice.com/data.asp?storeid=123&itemcode=456&typ
Help with PHP Calendar code...
Hello, I'm new to this forum and I'm glad I found it.
I wrote this code for a PHP calendar as an
adding 0 to numbers
Hey guys i need to create a 00001 number in a loop. Is there a better way of forcing a 5 digit numbe
Using cURL to PUT
Can somebody help with the correct php code to make a cURL PUT request. Here is a sample of code bel
PHP Redirecting
Hello everyone. Is there a way to redirect people to pages within a statement in PHP? Since there is
Progress bar tracking file downloads
Hey guys, was wondering if there was a way to track how far a file has been downloaded. I know there
