public function changePassword($username, $oldPassword, $newPassword) { //Encrypt the passwords $oldPassword = Operations::encryptPassword($username, $oldPassword); $newPassword = Operations::encryptPassword($username, $newPassword); //Grab the account with the given username and password $account = $this->getAccount(array($username, $oldPassword), "user_pass"); //If not null, then the details existed, which means we can change the password if ($account != null) { $this->dbConnect(); $sql = "UPDATE users SET password = ? WHERE username = ?"; $stmt = $this->con->prepare($sql); $stmt->bindParam(1, $newPassword); $stmt->bindParam(2, $username); $stmt->execute(); $this->dbDisconnect(); return "password_changed"; } else { return "no_old_password_match"; } }