change password code error

Posted by ejah85 on Stack Overflow See other posts from Stack Overflow or by ejah85
Published on 2010-03-18T10:18:46Z Indexed on 2010/03/18 10:21 UTC
Read the original article Hit count: 245

Filed under:
|

I've created a code to change a password. Now it seem contain an error. When I fill in the form to change password, and click save the error message:

Warning: mysql_real_escape_string() expects parameter 2 to be resource, null given in C:\Program Files\xampp\htdocs\e-Complaint(FYP)\userChangePass.php on line 103

Warning: mysql_real_escape_string() expects parameter 2 to be resource, null given in C:\Program Files\xampp\htdocs\e-Complaint(FYP)\userChangePass.php on line 103

I really don’t know what the error message means. Please guys. Help me fix it.

Here's is the code:

<?php session_start(); ?>
<?php # change password.php

//set the page title and include the html header.
$page_title = 'Change Your Password';
//include('templates/header.inc');

if(isset($_POST['submit'])){//handle the form
    require_once('connectioncomplaint.php');//connect to the db.
    //include "connectioncomplaint.php";

    //create a function for escaping the data.
    function escape_data($data){
        global $dbc;//need the connection.
        if(ini_get('magic_quotes_gpc')){
            $data=stripslashes($data);
        }
        return mysql_real_escape_string($data, $dbc);
    }//end function

    $message=NULL;//create the empty new variable.

    //check for a username
    if(empty($_POST['userid'])){
        $u=FALSE;
        $message .='<p> You forgot enter your userid!</p>';
    }else{
        $u=escape_data($_POST['userid']);
    }

    //check for existing password
    if(empty($_POST['password'])){
        $p=FALSE;
        $message .='<p>You forgot to enter your existing password!</p>';
    }else{
        $p=escape_data($_POST['password']);
    }

    //check for a password and match againts the comfirmed password.
    if(empty($_POST['password1'])) {
        $np=FALSE;
        $message .='<p> you forgot to enter your new password!</p>';
    }else{
        if($_POST['password1'] == $_POST['password2']){
        $np=escape_data($_POST['password1']);
    }else{
        $np=FALSE;
        $message .='<p> your new password did not match the confirmed new password!</p>';
    }
}

if($u && $p && $np){//if everything's ok.

    $query="SELECT userid FROM access WHERE (userid='$u' AND password=PASSWORD('$p'))";
    $result=@mysql_query($query);
    $num=mysql_num_rows($result);
    if($num == 1){
        $row=mysql_fetch_array($result, MYSQL_NUM);

        //make the query
        $query="UPDATE access SET password=PASSWORD('$np') WHERE userid=$row[0]";
        $result=@mysql_query($query);//run the query.
        if(mysql_affected_rows() == 1) {//if it run ok.

            //send an email,if desired.
            echo '<p><b>your password has been changed.</b></p>';
            include('templates/footer.inc');//include the HTML footer.
            exit();//quit the script.

        }else{//if it did not run OK.
            $message= '<p>Your password could not be change due to a system error.We apolpgize for any inconvenience.</p><p>' .mysql_error() .'</p>';
            }
        }else{
            $message= '<p> Your username and password do not match our records.</p>';
        }
        mysql_close();//close the database connection.

    }else{
        $message .='<p>Please try again.</p>';
    }
}//end oh=f the submit conditional.

//print the error message if there is one.
if(isset($message)){
    echo'<font color="red">' , $message, '</font>';
}
?>

<form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">





<body>
<script language="JavaScript1.2">mmLoadMenus();</script>
<table width="604" height="599" border="0" align="center" cellpadding="0" cellspacing="0">
  <tr>
    <td height="130" colspan="7"><img src="images/banner(E-Complaint)-.jpg" width="759" height="130" /></td>
  </tr>
  <tr>
    <td width="100" height="30" bgcolor="#ABD519"></td>
    <td width="100" bgcolor="#ABD519"></td>
    <td width="100" bgcolor="#ABD519"></td>
    <td width="100" bgcolor="#ABD519"></td>
    <td width="100" bgcolor="#ABD519"></td>
    <td width="160" bgcolor="#ABD519">
    <?php include "header.php"; ?>&nbsp;</td>
  </tr>
  <tr>
    <td colspan="7" bgcolor="#FFFFFF">

<fieldset><legend> Enter your information in the form below:</legend>

<p><b>User ID:</b> <input type="text" name="username" size="10" maxlength="20" value="<?php if(isset($_POST['userid'])) echo $_POST['userid']; ?>" /></p>

<p><b>Current Password:</b> <input type="password" name="password" size="20" maxlength="20" /></p>

<p><b>New Password:</b> <input type="password" name="password1" size="20" maxlength="20" /></p>

<p><b>Confirm New Password:</b> <input type="password" name="password2" size="20" maxlength="20" /></p>
</fieldset>

<div align="center"> <input type="submit" name="submit" value="Change My Password" /></div>

</form><!--End Form-->

    </td>

  </tr>
</table>
</body>
</html>

© Stack Overflow or respective owner

change password code error.....

Posted by shimaTun on Stack Overflow See other posts from Stack Overflow or by shimaTun
Published on 2010-03-18T13:53:34Z Indexed on 2010/03/18 14:01 UTC
Read the original article Hit count: 245

Filed under:
|

I've created a code to change a password. Now it seem contain an error.before i fill the form. the page display the error message:

Parse error: parse error, unexpected $end in C:\Program Files\xampp\htdocs\e-Complaint(FYP)\userChangePass.php on line 222

this the code:

<?php # userChangePass.php
//this page allows logged in user to change their password.

$page_title='Change Your Password';

//if no first_name variable exists, redirect the user
if(!isset($_SESSION['nameuser'])){

    header("Location: http://" .$_SERVER['HTTP_HOST']. dirname($_SERVER['PHP_SELF'])."/index.php");
    ob_end_clean();
    exit();

}else{

    if(isset($_POST['submit'])) {//handle form.
        require_once('connectioncomplaint.php'); //connec to the database

        //check for a new password and match againts the confirmed password.
        if(eregi ("^[[:alnum:]]{4,20}$", stripslashes(trim($_POST['password1'])))){
            if($_POST['password1'] == $_POST['password2']){
                $p =escape_data($_POST['password1']);
            }else{
                $p=FALSE;
                echo'<p><font color="red" size="+1"> Your password did not match the confirmed password!</font></p>';
            }
        }else{
            $p=FALSE;
            echo'<p><font color="red" size="+1"> Please Enter a valid password!</font></p>';
        }

        if($p){ //if everything OK.

            //make the query
            $query="UPDATE access SET password=PASSWORD('$p') WHERE userid={$_SESSION['userid']}";
            $result=@mysql_query($query);//run the query.
            if(mysql_affected_rows() == 1) {//if it run ok.

                //send an email,if desired.
                echo '<p><b>your password has been changed.</b></p>';
                //include('templates/footer.inc');//include the HTML footer.
                exit();

            }else{//if it did not run ok

            $message= '<p>Your password could not be change due to a system error.We apolpgize for any inconvenience.</p><p>' .mysql_error() .'</p>';

            }
            mysql_close();//close the database connection.

            }else{//failed the validation test.
                echo '<p><font color="red" size="+1"> Please try again.</font></p>';
            }
        }//end of the main Submit conditional.
    ?>

And code for form:

<h1>Change Your Password</h1>
      <form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
      <fieldset>
      <p><b>New Password:</b><input type="password" name="password1" size="20" maxlength="20" />
      <small>Use only letters and numbers.Must be between 4 and 20 characters long.</small></p>
      <p><b>Confirm New Password:</b><input type="password" name="password2" size="20" maxlength="20" /></p>
      </fieldset>
      <div align="center"> <input type="submit" name="submit" value="Change My Password" /></div>

</form><!--End Form-->

© Stack Overflow or respective owner

Related posts about php

Related posts about mysql