Home Explore Help
Sign In
other
/
pma
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 1da8bfe8dd
Branches Tags
pma
/
user_password.php

user_password.php 1.9 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273 
  1. <?php
    2. 

  2. /* vim: set expandtab sw=4 ts=4 sts=4: */
    3. 

  3. /**
    4. 

  4.  * displays and handles the form where the user can change his password
    5. 

  5.  * linked from index.php
    6. 

  6.  *
    7. 

  7.  * @package PhpMyAdmin
    8. 

  8.  */
    9. 

  9. 

  10. use PhpMyAdmin\Display\ChangePassword;
    11. 

  11. use PhpMyAdmin\Message;
    12. 

  12. use PhpMyAdmin\Response;
    13. 

  13. use PhpMyAdmin\UserPassword;
    14. 

  14. 

  15. /**
    16. 

  16.  * Gets some core libraries
    17. 

  17.  */
    18. 

  18. require_once './libraries/common.inc.php';
    19. 

  19. 

  20. $response = Response::getInstance();
    21. 

  21. $header   = $response->getHeader();
    22. 

  22. $scripts  = $header->getScripts();
    23. 

  23. $scripts->addFile('server_privileges.js');
    24. 

  24. $scripts->addFile('vendor/zxcvbn.js');
    25. 

  25. 

  26. $userPassword = new UserPassword();
    27. 

  27. 

  28. /**
    29. 

  29.  * Displays an error message and exits if the user isn't allowed to use this
    30. 

  30.  * script
    31. 

  31.  */
    32. 

  32. if (! $GLOBALS['cfg']['ShowChgPassword']) {
    33. 

  33.     $GLOBALS['cfg']['ShowChgPassword'] = $GLOBALS['dbi']->selectDb('mysql');
    34. 

  34. }
    35. 

  35. if ($cfg['Server']['auth_type'] == 'config' || ! $cfg['ShowChgPassword']) {
    36. 

  36.     Message::error(
    37. 

  37.         __('You don\'t have sufficient privileges to be here right now!')
    38. 

  38.     )->display();
    39. 

  39.     exit;
    40. 

  40. } // end if
    41. 

  41. 

  42. /**
    43. 

  43.  * If the "change password" form has been submitted, checks for valid values
    44. 

  44.  * and submit the query or logout
    45. 

  45.  */
    46. 

  46. if (isset($_POST['nopass'])) {
    47. 

  47.     if ($_POST['nopass'] == '1') {
    48. 

  48.         $password = '';
    49. 

  49.     } else {
    50. 

  50.         $password = $_POST['pma_pw'];
    51. 

  51.     }
    52. 

  52.     $change_password_message = $userPassword->setChangePasswordMsg();
    53. 

  53.     $msg = $change_password_message['msg'];
    54. 

  54.     if (! $change_password_message['error']) {
    55. 

  55.         $userPassword->changePassword($password, $msg, $change_password_message);
    56. 

  56.     } else {
    57. 

  57.         $userPassword->getChangePassMessage($change_password_message);
    58. 

  58.     }
    59. 

  59. }
    60. 

  60. 

  61. /**
    62. 

  62.  * If the "change password" form hasn't been submitted or the values submitted
    63. 

  63.  * aren't valid -> displays the form
    64. 

  64.  */
    65. 

  65. 

  66. // Displays an error message if required
    67. 

  67. if (isset($msg)) {
    68. 

  68.     $msg->display();
    69. 

  69.     unset($msg);
    70. 

  70. }
    71. 

  71. 

  72. echo ChangePassword::getHtml('change_pw', $username, $hostname);
    73. 

  73. exit;
    74.