4 // by Mischa Peters <mischa at high5 dot nl>
5 // Copyright (c) 2002 - 2005, 2021 High5!
6 // License Info: http://www.postfixadmin.com/?file=LICENSE.TXT
10 // Template File: password.tpl
12 // Template Variables:
16 // Form POST \ GET Variables:
22 require ("./variables.inc.php");
23 require ("./config.inc.php");
24 require ("./functions.inc.php");
25 include ("./languages/" . check_language () . ".lang");
27 $SESSID_USERNAME = check_session ();
29 if ($_SERVER['REQUEST_METHOD'] == "GET")
31 include ("./templates/header.tpl");
32 include ("./templates/menu.tpl");
33 include ("./templates/password.tpl");
34 include ("./templates/footer.tpl");
37 if ($_SERVER['REQUEST_METHOD'] == "POST")
39 $fPassword_current = escape_string ($_POST['fPassword_current']);
40 $fPassword = escape_string ($_POST['fPassword']);
41 $fPassword2 = escape_string ($_POST['fPassword2']);
43 $username = $SESSID_USERNAME;
45 $result = db_query ("SELECT * FROM admin WHERE username='$username'");
46 if ($result['rows'] == 1)
48 $row = db_array ($result['result']);
49 if (!password_verify($fPassword_current, $row['password']))
52 $pPassword_password_current_text = $PALANG['pPassword_password_current_text_error'];
58 $pPassword_email_text = $PALANG['pPassword_email_text_error'];
61 if (empty ($fPassword) or ($fPassword != $fPassword2))
64 $pPassword_password_text = $PALANG['pPassword_password_text_error'];
69 $password = pacrypt ($fPassword);
70 $result = db_query ("UPDATE admin SET password='$password',modified=NOW() WHERE username='$username'");
71 if ($result['rows'] == 1)
73 $tMessage = $PALANG['pPassword_result_succes'];
77 $tMessage = $PALANG['pPassword_result_error'];
81 include ("./templates/header.tpl");
82 include ("./templates/menu.tpl");
83 include ("./templates/password.tpl");
84 include ("./templates/footer.tpl");
