exit;
}
$user_id = $_SESSION['user_id'];
if ($_GET['id']) {
$id = $_GET['id'];
} else {
if ($_POST['id']) {
$id = $_POST['id'];
}
}
$dal = new DataAccessLayer();
$username = $dal->GetUsername($_SESSION['user_id']);
$isadmin = $dal->IsSysAdmin($_SESSION['user_id']);
if (isset($_POST['save'])) {
if ($_POST['force'] == 1) {
$reset = $dal->UpdatePassword(NULL, $_POST['newpw1'], $_POST['id'], 1);
} else {
if ($_POST['newpw1'] == $_POST['newpw2']) {
$reset = $dal->UpdatePassword($_POST['oldpw'], $_POST['newpw1'], $_POST['id']);
if ($reset == 0) {
$error = 1;
$errmsg = "Old password incorrect.";
}
} else {
$error = 1;
$errmsg = "New passwords do not match.";
}
}
}
if ($isadmin == 1 && isset($_GET['id'])) {
$user = $dal->GetUserInfo($id);
