$pageErrors["barcode_nmbr"] = "barcode_nmbr is required."; } #**************************************************************************** #* Password edits #**************************************************************************** $error_found = false; $pass_user = $_POST["pass_user"]; $barcode_nmbr = $_POST["barcode_nmbr"]; //modificado jalg por qu eno pasa las bariables d emanera uatamica revisar como lo hace staff quisas por el varpost if ($pass_user == "") { $error_found = true; $pageErrors["pass_user"] = "******"; } else { $mbrQ = new MemberQuery(); $mbrQ->connect(); if ($mbrQ->errorOccurred()) { displayErrorPage($pass_user); } $mbrQ->verifySignon($barcode_nmbr, $pass_user); if ($mbrQ->errorOccurred()) { displayErrorPage($pass_user); } $mbr = $mbrQ->fetchMember(); if ($mbr == false) { # invalid password. Add one to login attempts. $error_found = true; $pageErrors["pass_user"] = "******"; if (!isset($_SESSION["loginAttempts"]) || $_SESSION["loginAttempts"] == "") { $sess_login_attempts = 1; } else { $sess_login_attempts = $_SESSION["loginAttempts"] + 1;
$_POST["pass_user"] = $member->getPassUser(); $member->setPassUser2($_POST["pass_user2"]); $_POST["pass_user2"] = $member->getPassUser2(); if (!$member->validatePassUser()) { $pageErrors["pass_user"] = $member->getPassUserError(); $_SESSION["postVars"] = $_POST; $_SESSION["pageErrors"] = $pageErrors; header("Location: ../user/user_pwd_reset_form.php"); exit; } #************************************************************************** #* Update staff member #************************************************************************** $memberQ = new MemberQuery(); $memberQ->connect(); if ($memberQ->errorOccurred()) { $memberQ->close(); displayErrorPage($memberQ); } if (!$memberQ->resetPassUser($member)) { $memberQ->close(); displayErrorPage($memberQ); } $memberQ->close(); #************************************************************************** #* Destroy form values and errors #************************************************************************** unset($_SESSION["postVars"]); unset($_SESSION["pageErrors"]); #************************************************************************** #* Show success page