Old password always said "incorrect"

Question

ma.da.7140 0 Newbie Poster

10 Years Ago

Can someone help me with below script, this is script for change password. But it always can't recognize the old password. i'm really thankfull for your comments..

<?php
include("plogin.php");
//$_SESSION["userId"] = $_POST['id'];
//$userId = $_POST['id'];

session_start();
include("config.php");
//Cek Login


    if ($_SESSION['level']==user) {



        $namaLgkp = $_SESSION['username'];

if(count($_POST)>0) {
$result = mysql_query("SELECT *from tb_user WHERE id='" . $_SESSION["userId"] . "'");
$row=mysql_fetch_array($result);
if($_POST["pwlama"] == $row["password"]) {
mysql_query("UPDATE tb_user set password='" . $_POST["pwbaru"] . "' WHERE id='" . $_SESSION["userId"] . "'");
$message = "Password berhasil diganti";
} else $message = "Password lama salah";
}       
?>

<html>
<head>
<title>Online Ticketing</title>
<!-- CSS -->
<link href="style/css/layout.css" rel="stylesheet" type="text/css" media="screen" />
<script>
function passwordck() {
var pwlama,pwbaru,pwbarulg,output = true;

pwlama = document.frmpwd.pwlama;
pwbaru = document.frmpwd.pwbaru;
pwbarulg = document.frmpwd.pwbarulg;

if(!pwlama.value) {
    pwlama.focus();
    document.getElementById("pwlama").innerHTML = "required";
    output = false;
}
else if(!pwbaru.value) {
    pwbaru.focus();
    document.getElementById("pwbaru").innerHTML = "required";
    output = false;
}
else if(!pwbarulg.value) {
    pwbarulg.focus();
    document.getElementById("pwbarulg").innerHTML = "required";
    output = false;
}
if(pwbaru.value != pwbarulg.value) {
    pwbaru.value="";
    pwbarulg.value="";
    pwbaru.focus();
    document.getElementById("pwbarulg").innerHTML = "not same";
    output = false;
}   
return output;
}
</script>
</head>
<body>
<form name="frmpwd" method="post" action="" onSubmit="return passwordck()">
<div class="message"><?php if(isset($message)) { echo $message; } ?></div>
    <div id="wrapper">


       <!-- Batas awal menu atas -->
        <ul id="menu">
            <li><a href="duser.php">DASHBOARD</a></li> 
            <li><a href="staticuser.php">TICKET</a></li>
            <li><a href="passuser.php"  class="active">PASSWORD</a></li><!-- untuk menu  utama yang sedang dipilih  -->
            <li class="logout"><a href="logout.php">LOGOUT</a></li>
        </ul>
        <!-- Batas akhir menu atas -->

        <!-- Batas awal background layar -->
        <div id="backgroundlayar">

            <!-- Batas awal kertas -->
            <div id="kertas">
                <!-- Batas awal kotakkiri -->
                <div id="kotakkiri">

                    <!-- Batas awal menu kiri -->
                    <ul class="menukiri">
                        <li><a href="passuser.php" class="active">NEW PASSWORD</a></li> 
                    </ul>
                    <!-- batas akhir menu kiri-->

                </div>    
                <!-- batas akhir kotaks kiri -->


                <h2><a href="duser.php">Dashboard</a> » <a href="passuser.php" class="active">Password</a></h2>

                <div id="utama">
                    <form action="" >

                    <h3 align="center">Gantilah Password Secara Berkala</h3>


                    <fieldset>
                    <form action="" method="post">
                    <p><label>Nama:</label> <input type="text" name="nama" value="<?php echo $namaLgkp ?>"/><br/></p>
                    <p><label>Password lama: </label><input type="password" name="pwlama" required="required"/>
                    <p><label>Password baru:</label> <input type="password" name="pwbaru" required="required"/>
                    <p><label>Ketik ulang password baru:</label> <input type="password" name="pwbarulg" required="required"/>

                    <input type="submit" value="Update"/>

                    </form>
                </div>
                <!-- batas akhir utama -->

                <div class="clear"></div>
            </div>
            <!-- batas akhir kertas -->

        </div>   
        <!-- batas akhir background layar -->

         <!-- Batas awal kaki -->
        <p id="kaki">Copyright © 2014 <a href="#">Online Ticketing Support</a></p>
        <!-- batas akhir kaki -->

    </div>
    <!-- wrapper -->

</body>
</html>



<?php
}
    else {

    header('location: akses.php');
}
?>

php

3 Contributors
7 Replies
268 Views
6 Days Discussion Span
Latest Post 10 Years Ago Latest Post by Adrian_5

edbr 22 Junior Poster

10 Years Ago

why is this commented out?
<?php
include("plogin.php");
//$_SESSION["userId"] = $_POST['id'];
//$userId = $_POST['id'];

and put
session_start();
at the begining

Adrian_5 1 Light Poster

10 Years Ago

On line 11 is user a constant? Put it between quotes if not. Also, on line 18 put a space between asterisk and from.

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

ma.da.7140 0 Newbie Poster · Answer 1 · 2014-09-17T03:30:31+00:00

ma.da.7140 0 Newbie Poster

10 Years Ago

tq
i'll try it..

ma.da.7140 0 Newbie Poster · Answer 2 · 2014-09-17T03:35:49+00:00

it still doesn't work
error message: Warning: mysql_fetch_array() expects parameter 1 to be resource, boolean given in C:\xampp\htdocs\Skripsi\passuser.php on line 19

Adrian_5 1 Light Poster · Answer 3 · 2014-09-17T05:25:50+00:00

Do an echo $_SESSION['userId'] to see if it returns anything, and if it does make sure that id is in the tb_user table (in the database)

ma.da.7140 0 Newbie Poster · Answer 4 · 2014-09-21T09:05:49+00:00

ma.da.7140 0 Newbie Poster

10 Years Ago

it works.thx for your suggestion..

Adrian_5 1 Light Poster · Answer 5 · 2014-09-22T11:19:55+00:00

Well... it would be nice to set the problem status to "solved" and maybe up-vote some comments...