Help with Password Encoding/Decoding?
Posted on
16th Feb 2014 07:03 pm by
admin
Trying to design a "change password" tool. On my signup code I'm using base64_encode, now I am trying to decode it on the change password screen and having issues. Yes I am very new to this.
I keep returning a fail response with this. Help?
<?php
include("check_session.php");
include("online.php");
include("site.conf.php");
include("$base_dir/include/scTemplate.class.php");
include("$base_dir/include/timestamp.inc.php");
include("$base_dir/include/index.inc.php");
include("$base_dir/include/calendar.inc.php");
include("$base_dir/include/images.inc.php");
/****************************************************************
* open connection to mysql server *
****************************************************************/
$conn = mysql_connect($db_host, $db_user, $db_password);
mysql_select_db($db_name, $conn);
$sql = "select id from tbl_pm_message ";
$sql .= "where (id_to='$user_id') and (status='online') and
(flag='1')";
$result = mysql_query($sql);
$new_message = mysql_num_rows($result);
if (($old_password == "") || ($password1 == "") || ($password2 == "") ||
($password1 != $password2)) {
$error = "upt01";
}
else {
$old_password = base64_decode($old_password);
$password1 = base64_encode($password1);
$password2 = base64_encode($password2);
$sql = "select id from tbl_user where (id='$user_id') and
(code='$user_code') and ";
$sql .= "('$old_password') ";
$result = mysql_query($sql);
$rows = mysql_num_rows($result);
if ($rows > 0) {
$sql = "update tbl_user set ('$password1'),
status='active' ";
$sql .= "where (id='$user_id') and (code='$user_code')
";
$result = mysql_query($sql);
if ($result) {
$error = "";
}
else {
$error = "upt02";
}
}
else {
$error = "upt03";
}
}
/****************************************************************
* generate page *
****************************************************************/
$tpl = new scTemplate("$templates_dir/password_result.html");
$tpl->replace("SC_SI_BANNER", show_banner());
$tpl->replace("SC_SI_ADS", show_ads());
$tpl->replace("SC_SI_MENU", show_menu(1));
$tpl->replace("SC_SI_LOGO", show_logo());
$tpl->replace("SC_SI_RIGHTLOGO", show_rightlogo());
$tpl->replace("SC_SI_SEARCH", show_search());
$tpl->replace("SC_SI_NEWS", show_news());
$tpl->replace("SC_SI_MEMBER", show_member());
$tpl->replace("SC_SI_CALENDAR", show_calendar());
$tpl->replace("SC_SI_BOTTOM", show_bottom());
$tpl->replace("SC_SI_COPYRIGHT", show_copyright());
$tpl->replace("SC_USERNAME", $user_name);
$tpl->replace("SC_NEW", $new_message);
if ($error == "") {
$tpl->replace("SC_RESULT", "OK");
}
else {
$tpl->replace("SC_RESULT", "Failed");
}
$tpl->write();
?>
No comments posted yet
Your Answer:
Login to answer
328 
25 
Other forums
help me fix these syntax errors...
I keep getting multiple syntax errors on this script like this one:
Parse error: syntax error
Force download script not handling files with spaces properly
I have a regular old php force download script, uses this code:
Code: header("Cache-Cont
order by date not ID number help php
I am trying to orginize the following code to order by date not id number.
any help would be grea
php or sql?
Sorry not sure if this is a sql problem or php the following code is supposed to delete data from th
Creating a custom API
I'm creating a site, and I need to create a basic API. Unfortunately I have no idea where to start.
Oracle Connectivity
Hi Every One,
Can we access SAP from oracle database.If it possible then please spec
array help
Does anyone know how to require 10 text fields for individual grades and output class average? (10 p
Why is the logic of this simple code not working?
Hey, I'm trying to determine if a table already exists in mysql, but doing a query first with mysql_
upgrade from 4.7 to ECC 6.0
Hi all,
we are going to do an upgrade from R/3 4.7 to ECC 6.0. I need to know if i can find som
SQL Query/echo not working
Hey all,
I'm trying to run (what I thought) was a simple operation and it isn't working. I h
