function user_create($db, $username, $password)
{
$sql = $db->prepare('
INSERT INTO users (username, password)
VALUES (:username, :password)
');
$sql->bindvalue(':username', $username, PDO::PARAM_STR);
$sql->bindvalue(':password', get_hashed_password($password), PDO::PARAM_STR);
$sql->execute();
return $db->lastInsertId();
}
private function setPassword($password)
{
# Check dependencies
self::dependencies(isset($this->database));
$password = get_hashed_password($password);
# Execute query
# Do not prepare $password because it is hashed and save
# Preparing (escaping) the password would destroy the hash
$query = Database::prepare($this->database, "UPDATE ? SET value = '{$password}' WHERE `key` = 'password'", array(LYCHEE_TABLE_SETTINGS));
$result = $this->database->query($query);
if (!$result) {
Log::error($this->database, __METHOD__, __LINE__, $this->database->error);
return false;
}
return true;
}
function checkLogin($data)
{
if (!empty($data)) {
$uname = trim($data['username']);
$paswd = get_hashed_password($data['password']);
$this->db->where('email', $uname);
$this->db->where('password', $paswd);
$result['gtech_logged_user'] = $this->db->select('*')->from('gtech_users')->get()->row_array();
if (!empty($result['gtech_logged_user'])) {
unset($result['gtech_logged_user']['password']);
$this->session->set_userdata($result);
return true;
} else {
return false;
}
} else {
return false;
}
}
private function setPassword($password)
{
# Check dependencies
self::dependencies(isset($this->database, $this->albumIDs));
# Call plugins
$this->plugins(__METHOD__, 0, func_get_args());
if (strlen($password) > 0) {
# Get hashed password
$password = get_hashed_password($password);
# Set hashed password
# Do not prepare $password because it is hashed and save
# Preparing (escaping) the password would destroy the hash
$query = Database::prepare($this->database, "UPDATE ? SET password = '******' WHERE id IN (?)", array(LYCHEE_TABLE_ALBUMS, $this->albumIDs));
$result = $this->database->query($query);
} else {
# Unset password
$query = Database::prepare($this->database, "UPDATE ? SET password = NULL WHERE id IN (?)", array(LYCHEE_TABLE_ALBUMS, $this->albumIDs));
$result = $this->database->query($query);
}
# Call plugins
$this->plugins(__METHOD__, 1, func_get_args());
if (!$result) {
Log::error($this->database, __METHOD__, __LINE__, $this->database->error);
return false;
}
return true;
}
public function updateAccountInfo()
{
if (check_login()) {
$updateArray = array();
$newPassword = get_hashed_password($this->input->post('password'));
$oldPasswordUserEntered = get_hashed_password($this->input->post('old_password'));
$logedUser = $this->session->userdata('gtech_logged_user');
$userDetails = $this->user_model->getUser($logedUser['id']);
$oldPassword = $userDetails['password'];
if (empty($newPassword)) {
$updateArray = array('first_name' => $this->input->post('first_name'), 'last_name' => $this->input->post('last_name'), 'email' => $this->input->post('email'));
} else {
if ($oldPasswordUserEntered == $oldPassword) {
$updateArray = array('first_name' => $this->input->post('first_name'), 'last_name' => $this->input->post('last_name'), 'email' => $this->input->post('email'), 'password' => $newPassword);
}
}
if (!empty($updateArray)) {
if ($this->user_model->editUser($updateArray, $logedUser['id'])) {
echo json_encode(array('status' => 'success', 'msg' => 'The account information has been saved successfully'));
} else {
echo json_encode(array('status' => 'failed', 'msg' => "Can't update user information"));
}
}
} else {
echo json_encode(array('status' => 'failed', 'msg' => 'Your not logged in'));
}
}
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title></title>
</head>
<body>
<?php
$password = '******';
print get_hashed_password($password);
function get_hashed_password($password)
{
// コストパラメーター
$cost = 10;
$salt = strtr(base64_encode(mcrypt_create_iv(16, MCRYPT_DEV_URANDOM)), '+', '.');
$salt = sprintf("\$2y\$%02d\$", $cost) . $salt;
$hash = crypt($password, $salt);
return $hash;
}
?>
</body>
</html>
