email didnt update in database after made changes
Posted: Thu Dec 15, 2011 2:09 am
Anyone can help me check out whats wrong with my code.. its only update my password but didnt update my email
Below is my code
Below is my code
Code: Select all
<div id="main">
<div class="h3">Account Settings</div>
<div class="mainbox">
<?php
if(isset($_SESSION['usernamejob'])) {
if(!isset($_POST['modify'])){
$query = mysql_query("SELECT * FROM `employee_user` WHERE `usernamejob`='".$_SESSION['usernamejob']."'") or die(mysql_error());
$row = mysql_fetch_array($query);
?>
<center>
<table cellspacing=1 cellpadding=5>
<tr><td class=listtitle colspan=2><center><span class='title2'></span></center></td></tr>
<?php
echo "
<form method=\"POST\">
<tr><td class=list align=left>Username</td><td class=list> ".$row['name']."<br></td></tr>
<tr><td class=list align=left>Current Password</td><td class=list> <input type=\"password\" name=\"current\" maxlength=\"12\"><br></td></tr>
<tr><td class=list align=left>New Password</td><td class=list> <input type=\"password\" name=\"password\" maxlength=\"12\"><br></td></tr>
<tr><td class=list align=left>Confirm Password</td><td class=list> <input type=\"password\" name=\"cpassword\" maxlength=\"12\"><br></td></tr>
<tr><td class=list align=left>E-mail</td><td class=list> <input type=\"text\" name=\"email\" value=\"".$row['email']."\"><br></td></tr>
<tr><td class=listtitle align=left colspan=2><center><input type=\"submit\" name=\"modify\" value=\"Modify\"></form></td></tr></center>";
} else {
$usernamejob = mysql_query("SELECT * FROM `employee_user` WHERE `usernamejob`='".$_SESSION['usernamejob']."'") or die(mysql_error());
$user = mysql_fetch_array($usernamejob);
$current = mysql_real_escape_string($_POST['current']);
$pass = mysql_real_escape_string($_POST['password']);
$cpass = mysql_real_escape_string($_POST['cpassword']);
$email = mysql_real_escape_string($_POST['email']);
if($current) {
if($current == $user['password']) {
if($pass != $cpass) {
echo "Passwords do not match!";
} else {
if(strlen($pass) < 6) {
echo "Your password must be between 6 and 12 characters!";
} elseif(strlen($pass) > 12) {
echo "Your password must be between 6 and 12 characters!";
} else {
$usernamejob = mysql_query("UPDATE `employee_user` SET `password`='".$pass."' WHERE `usernamejob`='".$_SESSION['usernamejob']."'") or die(mysql_error());
session_destroy();
echo "Your changes have been saved.";
}
}
} else {
echo "Your current password is wrong!";
}
} elseif($email == "") {
echo "Please supply an e-mail!";
} else {
$usernamejob = mysql_query("UPDATE `employee_user` SET `email`='".$email."' WHERE `usernamejob`='".$_SESSION['usernamejob']."'") or die(mysql_error());
echo "Your changes have succesfully been saved to the database!";
}
}
echo "</fieldset>";
} else {
echo "You are not logged in!";
}
echo "</td></tr></table>";
?>
</div>
</div>