/** * function show * render and return content */ function show() { $data = json_decode(file_get_contents("php://input"), true); if (Adapter::row_count(Adapter::secure_query('SELECT * FROM cms_restore_password WHERE user_hash = :userhash LIMIT 1', [':userhash' => $data['token']])) == 1) { $get = Adapter::fetch_object(Adapter::secure_query('SELECT * FROM cms_restore_password WHERE user_hash = :userhash LIMIT 1', [':userhash' => $data['token']])); $row = Adapter::fetch_object(Adapter::secure_query('SELECT * FROM users WHERE id = :userid LIMIT 1', [':userid' => $get->user_id])); $data['currentPassword'] = ''; User::change_password($data, $row->id, false); Adapter::secure_query('DELETE FROM cms_restore_password WHERE user_hash = :userhash', [':userhash' => $data['token']]); return null; } header('HTTP/1.1 404 Not Found'); return null; }
/** * function show * render and return content */ function show() { $data = json_decode(file_get_contents("php://input"), true); $data['currentPassword'] = $data['password']; header('Content-type: application/json'); if (User::change_password($data, Data::$user_instance->user_id, true, false) == true) { $query = Adapter::fetch_object(Adapter::secure_query('SELECT trade_lock FROM users WHERE id = :userid', [':userid' => Data::$user_instance->user_id])); if ($query->trade_lock == 0) { Adapter::secure_query('UPDATE users SET trade_lock = :statusl WHERE id = :userid', [':statusl' => '1', ':userid' => Data::$user_instance->user_id]); } if (Adapter::row_count(Adapter::secure_query('SELECT * FROM cms_security_questions WHERE user_id = :userid', [':userid' => Data::$user_instance->user_id])) == 0) { Adapter::secure_query('INSERT INTO cms_security_questions (user_id,question_one,question_two) VALUES (:userid,:questionone,:questiontwo)', [':questionone' => $data['answer1'], ':questiontwo' => $data['answer2'], ':userid' => Data::$user_instance->user_id]); } Adapter::secure_query('UPDATE cms_security_questions SET question_one = :questionone, question_two = :questiontwo WHERE user_id = :userid', [':questionone' => $data['answer1'], ':questiontwo' => $data['answer2'], ':userid' => Data::$user_instance->user_id]); return null; } header('HTTP/1.1 400 Bad Request'); $error_object = new stdClass(); $error_object->error = 'invalid_password'; return json_encode($error_object); }
/** * function show * render and return content */ function show() { header('Content-type: application/json'); $data = json_decode(file_get_contents("php://input"), true); User::change_password($data, Data::$user_instance->user_id); }