File size: 1.97Kb
<?php
require_once ('../inc/init.php');
if (!$isadmin) {
header('location:' . get_setting('blogurl') . '/admin-panel/index.php');
exit;
}
if (isset ($_GET['update']) && isset ($_POST['submit'])) {
$old = isset ($_POST['old']) ? $_POST['old'] : '';
$new = isset ($_POST['new']) ? $_POST['new'] : '';
$confirm = isset ($_POST['confirm']) ? $_POST['confirm'] : '';
if ($new != $confirm)
$_SESSION['set_err_msg'] = 'Password baru dan konfirmasi tidak sama';
if (empty ($confirm))
$_SESSION['set_err_msg'] = 'Mohon masukkan konfirmasi password baru';
if (empty ($new))
$_SESSION['set_err_msg'] = 'Mohon masukkan password baru';
$cek = mysql_fetch_assoc(mysql_query("select * from user where id='$user_id' and password='" . md5(md5(md5(trim(mysql_real_escape_string($old))))) . "'"));
if (!$cek['password'])
$_SESSION['set_err_msg'] = 'Password lama salah';
if (empty ($old))
$_SESSION['set_err_msg'] = 'Mohon masukkan password lama';
if (!isset ($_SESSION['set_err_msg'])) {
mysql_query("update user set " .
"password='" . md5(md5(md5(trim($new)))) . "'" .
" where id='$user_id'") or die(mysql_error());
$_SESSION['set_success_msg'] = 'Password berhasil diperbarui.';
}
}
require_once ('../inc/header.php');
if (isset ($_SESSION['set_err_msg'])) {
show_warning($_SESSION['set_err_msg']);
unset ($_SESSION['set_err_msg']);
}
if (isset ($_SESSION['set_success_msg'])) {
show_notif($_SESSION['set_success_msg']);
unset ($_SESSION['set_success_msg']);
}
rt('tm');
echo '<div class="list-head">Kelola profil</div>' .
'<div class="content"><form action="?update" method="post">' .
'Password lama:<br /><input type="password" name="old" value=""/><hr />' .
'Password baru:<br /><input type="password" name="new" value=""/><hr />' .
'Konfirmasi password baru:<br /><input type="password" name="confirm" value=""/><hr />' .
'<input type="submit" name ="submit" value=" Ubah " /></form></div>';
rb('b');
require_once ('../inc/footer.php');
?>