<?php require_once '../mysqli_connect.php'; // defining and connecting to the database as root $username = $_POST['username']; $password = $_POST['password']; $saltValue = createSaltData($username); $providedPassword = createHashedValue($saltValue, $password); $type = 'false'; if (!isset($username)) { $username = ''; } if (!isset($password)) { $password = ''; } // $username='******'; // $password='******'; $query = "SELECT username,password,userType FROM users WHERE username='******'"; $response = mysqli_query($dbc, $query); //echo 'Salt: '. mysqli_error($dbc); if (mysqli_num_rows($response) <= 0) { //number of response is 0, so no user with these credentials echo json_encode(array("success" => "false", "username" => "{$username}", "error" => "usernamenotfound")); } else { $row = mysqli_fetch_array($response); $passwordDB = $row['password']; if ($providedPassword == $passwordDB) { if ($row['userType'] == 1) { $type = 'true'; } else { $type = 'false';
<?php require_once '../mysqli_connect.php'; $old = $_POST['old']; $new = $_POST['new']; $newPassword = $_POST['password']; $saltValue = createSaltData($new); $encryptedPassword = createHashedValue($saltValue, $newPassword); if (!isset($old)) { $old = ''; } if (!isset($new)) { $new = ''; } // $old='Jason'; // $new='JasonB'; //{'old':username, 'new':newUsername}, $query = "SELECT username FROM users WHERE username='******' "; // search for the user // with these credentials $response = mysqli_query($dbc, $query); //echo 'Error: ' . mysqli_error($dbc); if (mysqli_num_rows($response) <= 0) { $sql = "UPDATE `users` SET `username`= '{$new}', `password` = '{$encryptedPassword}' WHERE username='******'"; $response = mysqli_query($dbc, $sql); echo json_encode(array("result" => "true", "username" => "{$new}", "encryptedPassword" => "{$encryptedPassword}")); } else { echo json_encode(array("result" => "false", "error" => "usernameexistsalready")); } mysqli_close($dbc); function createSaltData($username)