/**
* @depends test_HashType
*/
public function test_matchPWD($encyption_algo)
{
$algo_actual = getPWDHash('test');
$first = matchPWD($algo_actual, 'test');
$this->assertEquals(true, $first);
$first = matchPWD($algo_actual, 'testing');
$this->assertEquals(false, $first);
}
public function test_matchPWD()
{
setConfig("PWD_HASH_TYPE", "logiks");
$salt = strtr(base64_encode(mcrypt_create_iv(16, MCRYPT_DEV_URANDOM)), '+', '.');
$algo_actual = getPWDHash('test', $salt);
$first = matchPWD($algo_actual, 'test', $salt);
$this->assertEquals(true, $first);
$first = matchPWD($algo_actual, 'testing', $salt);
$this->assertEquals(false, $first);
}
function matchPWD($pwdHash, $pwd, $salt = null)
{
if (strlen(getConfig("PWD_HASH_TYPE")) <= 0 || !getConfig("PWD_HASH_TYPE")) {
setConfig("PWD_HASH_TYPE", "logiks");
}
$newHash = getPWDHash($pwd, $salt);
// printArray([$newHash,$pwd,$salt,$pwdHash]);
if (is_array($newHash)) {
$newHash = $newHash['hash'];
}
//println($pwdHash);println(getPWDHash($pwd, $salt));exit($pwd);
// println(($pwdHash===$newHash));exit("XXX $pwdHash $newHash ".getConfig("PWD_HASH_TYPE"));
return $pwdHash === $newHash;
}
function changePWD()
{
$userid = $_SESSION["SESS_USER_ID"];
$tbl = _dbtable("users", true);
$sql1 = "SELECT pwd FROM {$tbl} WHERE userid='{$userid}'";
$r = _dbQuery($sql1, true);
$ra = _dbData($r);
if (!isset($ra[0])) {
$q = array("code" => "1", "msg" => "Error In Changing Password (1).");
echo json_encode($q);
exit;
}
$ra = $ra[0];
$_POST["old"] = getPWDHash($_POST["old"]);
$_POST["new"] = getPWDHash($_POST["new"]);
//printArray($ra);
//printArray($_POST);
//exit();
if ($ra["pwd"] != $_POST["old"]) {
$q = array("code" => "0", "msg" => "Old Password Doesn't Match. Please Use Correct Credentials. (2)");
echo json_encode($q);
exit;
}
$oldPwd = $_POST["old"];
$newPwd = $_POST["new"];
$date = date("Y-m-d");
$q = "UPDATE {$tbl} SET pwd = '{$newPwd}', doe = '{$date}' WHERE userid='{$userid}' and pwd='{$oldPwd}'";
_dbQuery($q, true);
if (_db(true)->affected_rows() <= 0) {
$q = array("code" => "0", "msg" => "Old Password Doesn't Match. Please Use Correct Credentials.(3)");
echo json_encode($q);
} else {
$q = array("code" => "1", "msg" => "Successfully Updated Your New Password");
echo json_encode($q);
}
}
function getDefaultParams($userID = "", $pwd = "", $privilegeID = "", $accessID = "")
{
$params = array("guid" => "c21f969b5f03d33d43e04f8f136e7682", "userid" => $userID, "pwd" => getPWDHash($pwd), "privilegeid" => $privilegeID, "accessid" => $accessID, "name" => toTitle($userID), "dob" => "", "gender" => "male", "email" => "", "mobile" => "", "address" => "", "region" => "", "country" => "", "zipcode" => "", "geolocation" => "", "geoip" => "", "blocked" => "false", "expires" => "", "remarks" => "", "vcode" => "", "mauth" => "", "refid" => "", "privacy" => "protected", "avatar_type" => "photoid", "avatar" => "");
return $params;
}
function updatePassword($pwd, $userID = null, $site = SITENAME)
{
if (!isset($_SESSION['SESS_PRIVILEGE_ID']) || $_SESSION['SESS_PRIVILEGE_ID'] > ROLE_PRIME) {
$site = SITENAME;
$userID = $_SESSION['SESS_USER_ID'];
}
if ($userID == null && isset($_SESSION['SESS_USER_ID'])) {
$userID = $_SESSION['SESS_USER_ID'];
}
if (checkUserID($userID, $site)) {
$hashSalt = strtr(base64_encode(mcrypt_create_iv(16, MCRYPT_DEV_URANDOM)), '+', '.');
$pwdAns = getPWDHash($pwd, $hashSalt);
if (is_array($pwdAns)) {
$pwdAns = $pwdAns['hash'];
}
$dataUser = array("pwd" => $pwdAns, "pwd_salt" => $hashSalt, "edited_on" => date("Y-m-d H:i:s"));
$sql = _db(true)->_updateQ(_dbTable("users", true), $dataUser, array("userid" => "{$userID}"));
$res = _dbQuery($sql, true);
if ($res) {
return true;
}
return array("error" => "Error In User Updating", "details" => _db(true)->get_error());
}
return array("error" => "UserID Not Found");
}
