*/ # functions require dirname(__FILE__) . '/../../functions/functions.php'; # objects $Database = new Database_PDO(); $Admin = new Admin($Database, false); $Install = new Install($Database); $User = new User($Database); $Result = new Result(); # only permit if Admin user has default pass !!! $admin = $Admin->fetch_object("users", "username", "Admin"); if ($admin->password != '$6$rounds=3000$JQEE6dL9NpvjeFs4$RK5X3oa28.Uzt/h5VAfdrsvlVe.7HgQUYKMXTJUsud8dmWfPzZQPbRbk8xJn1Kyyt4.dWm4nJIYhAV2mbOZ3g.') { $Result->show("danger", "Not allowed!", true); } else { # check lenghts if (strlen($_POST['password1']) < 8) { $Result->show("danger", _("Password must be at least 8 characters long!"), true); } if (strlen($_POST['password2']) < 8) { $Result->show("danger", _("Password must be at least 8 characters long!"), true); } # check password match if ($_POST['password1'] != $_POST['password2']) { $Result->show("danger", _("Passwords do not match"), true); } # Crypt password $_POST['password1'] = $User->crypt_user_pass($_POST['password1']); # all good, update password! $Install->postauth_update($_POST['password1'], $_POST['siteTitle'], $_POST['siteURL']); $Result->show("success", "Settings updated, installation complete!<hr><a class='btn btn-sm btn-default' href='" . create_link("login") . "'>Proceed to login</a>", false); }