exit; } $user_id = $_SESSION['user_id']; if ($_GET['id']) { $id = $_GET['id']; } else { if ($_POST['id']) { $id = $_POST['id']; } } $dal = new DataAccessLayer(); $username = $dal->GetUsername($_SESSION['user_id']); $isadmin = $dal->IsSysAdmin($_SESSION['user_id']); if (isset($_POST['save'])) { if ($_POST['force'] == 1) { $reset = $dal->UpdatePassword(NULL, $_POST['newpw1'], $_POST['id'], 1); } else { if ($_POST['newpw1'] == $_POST['newpw2']) { $reset = $dal->UpdatePassword($_POST['oldpw'], $_POST['newpw1'], $_POST['id']); if ($reset == 0) { $error = 1; $errmsg = "Old password incorrect."; } } else { $error = 1; $errmsg = "New passwords do not match."; } } } if ($isadmin == 1 && isset($_GET['id'])) { $user = $dal->GetUserInfo($id);