<?php
require_once '../mysqli_connect.php';
// defining and connecting to the database as root
$username = $_POST['username'];
$password = $_POST['password'];
$saltValue = createSaltData($username);
$providedPassword = createHashedValue($saltValue, $password);
$type = 'false';
if (!isset($username)) {
$username = '';
}
if (!isset($password)) {
$password = '';
}
// $username='******';
// $password='******';
$query = "SELECT username,password,userType FROM users WHERE username='******'";
$response = mysqli_query($dbc, $query);
//echo 'Salt: '. mysqli_error($dbc);
if (mysqli_num_rows($response) <= 0) {
//number of response is 0, so no user with these credentials
echo json_encode(array("success" => "false", "username" => "{$username}", "error" => "usernamenotfound"));
} else {
$row = mysqli_fetch_array($response);
$passwordDB = $row['password'];
if ($providedPassword == $passwordDB) {
if ($row['userType'] == 1) {
$type = 'true';
} else {
$type = 'false';
<?php
require_once '../mysqli_connect.php';
$old = $_POST['old'];
$new = $_POST['new'];
$newPassword = $_POST['password'];
$saltValue = createSaltData($new);
$encryptedPassword = createHashedValue($saltValue, $newPassword);
if (!isset($old)) {
$old = '';
}
if (!isset($new)) {
$new = '';
}
// $old='Jason';
// $new='JasonB';
//{'old':username, 'new':newUsername},
$query = "SELECT username FROM users WHERE username='******' ";
// search for the user
// with these credentials
$response = mysqli_query($dbc, $query);
//echo 'Error: ' . mysqli_error($dbc);
if (mysqli_num_rows($response) <= 0) {
$sql = "UPDATE `users` SET `username`= '{$new}', `password` = '{$encryptedPassword}' WHERE username='******'";
$response = mysqli_query($dbc, $sql);
echo json_encode(array("result" => "true", "username" => "{$new}", "encryptedPassword" => "{$encryptedPassword}"));
} else {
echo json_encode(array("result" => "false", "error" => "usernameexistsalready"));
}
mysqli_close($dbc);
function createSaltData($username)
