/includes/account.php
PHP | 53 lines | 51 code | 1 blank | 1 comment | 8 complexity | d2f10c20c985f80058a3930ecab06abd MD5 | raw file
- <?
- $result=mysql_query("SELECT * FROM users WHERE ID='$g_user'");
- $r = mysql_fetch_array($result);
- if (isset($_POST['change'])) { //an edit request has been submitted
- $user = escape($_POST['user']);
- $pass = escape($_POST['pass']);
- if ($pass != '') { //if a new password has been set
- $pass = md5($pass);
- }
- else {
- $pass = $r[2]; //old password
- }
- //now we look to see if the username is in use already
- $u = mysql_query("SELECT * FROM users WHERE username='$user'");
- if (mysql_num_rows($u)==0) { //username not in use
- if (mysql_query("UPDATE users SET username='$user', password='$pass' WHERE ID='$g_user'")) {
- $result=mysql_query("SELECT * FROM users WHERE ID='$g_user'");
- $r = mysql_fetch_array($result); //repopulating $r with new data
- $_SESSION['username'] = $user;
- }
- else { echo "There was an error. ".mysql_error(); }
- } else { echo "Username is already in use, please choose another"; }
- }
- echo "<div class='left_cont'>
- <div class='accountform'>
- <form class='accForm' name='form1' method='post' action='?p=account'>
- <h6>
- <label class='formText'>Username : </label>
- <input type='hidden' name='change' value='yes' />
- <input name='user' type='text' class='input3' value='$r[1]' />
- </h6>
- <h6>
- <label class='formText'>Password :</label>
- <input name='pass' type='password' class='input3'/>
- </h6>
- <h6>
- <label class='formText'>Email :</label>
- <input name='email' type='text' class='input3' value='$r[4]'/>
- </h6>
- <h6>
- <label class='formText'>Colour Code :</label>
- <input name='colour' class='input3' type='text' disabled='disabled' value='$r[5]' />
- </h6>
- <h6>
- <input name='submit' value='Submit' type='submit' class='formsubmit' />
- </h6>
- </form>
- </div>
- </div>
- </div>
- </div>";
- ?>