ESH/chgpass.php

<?php 
include('top.php');
$TABLENAME='tbl_users';
$this_script='chgpass.php';N
?>

<?php 
	if(isset($hid) && $hid=='1')
	{
		$msg="";
		if($frmacn=="Update")
		{	
			$userid=$_SESSION['user_id'];
			$sql="SELECT user_password FROM $TABLENAME WHERE user_id='".$userid."'";
			$res=@mysqli_query($conn,$sql);
			$row=@mysqli_fetch_array($res);
			@extract($row);
				if($old_pass==$row['user_password'])
				{
					$cont = strlen($new_pass);
					if(($new_pass==$conf_pass) && ($cont>4)) 
					{ 
						$result = mysqli_query($conn,"UPDATE tbl_users SET user_password = '".$new_pass."' WHERE user_id='".$userid."'") or die(mysqli_error($conn));
						$msg="Password Changed Successfully";
						if(!$result)
						{
							$msg='Error';
						}
						echo "<script>alert('Password Changed. Please Login Again.')</script>";
						echo "<script>location.replace('index.php')</script>";
					}
					else {$msg="Password and Confirm Password must be same OR Password length is less than 5.";}
				}else{$msg="Old Password doesn't matched";}
		}
	}
?>

<link href="includes/css-js/admin.css" rel="stylesheet" type="text/css" />

  <tr>
    <td height="350" valign="top" style="padding:10px;"><table width="100%" border="0" cellspacing="0" cellpadding="0">
      <tr>
        <td><fieldset class="bdr1" >

	<legend class="heading1">Password Change Form</legend>	<center>
	
	<form name="f1" method="post" action="<?php  echo $this_script?>">
	<table width="100%" border="0" cellspacing="0" cellpadding="4" class="bdr_table">
		<tr>
			<td colspan="2" align="center" class="bg2">&nbsp;
			<span class="txt">
			<?php 
			if($msg)
			echo $msg;
			?>
			</span></td>
		 </tr>
		<tr>
		   <td width="40%" align="right" class="bg3">Old Password:</td>

		   <td align="left" class="bdr_td"><input type="password" name="old_pass" id="old_pass" class="textbox1" size="45"></td>
		</tr>
		<tr>
		   <td align="right" class="bg3">New Password:</td>

		   <td align="left" class="bdr_td"><input type="password" name="new_pass" id="new_pass" class="textbox1" size="45"onkeypress="return AvoidSpace(event)" ></td>
		</tr>
		<tr>
		   <td align="right" class="bg3">Confirm Password:</td>

		   <td align="left" class="bdr_td"><input type="password" name="conf_pass" id="conf_pass"class="textbox1" size="45" ></td>
		</tr>
		<tr>
		   <td align="right" class="bg3">
			   <input type="hidden" name="hid" value="0">		   
           </td>
		   <td align="left" class="bdr_td">
		<input type="submit" name="frmacn" id="btnUpdate"value="Update"onclick="document.forms[0].hid.value=1">
                <!--<input type="submit" name="frmacn" id="btnUpdate"value="Update" onclick="document.forms[0].hid.value=1">-->
        <input name="Reset" type="reset" value="Reset">			
		<input type="button" value="Back" onclick="window.location.href='top1.php'">			
           	</td>
		</tr>
	</table>

	</form>
	</center>
             </fieldset>
		  </td>
      </tr>
    </table></td>
  </tr>
<?php  include('footer.php'); ?>
<script type="text/javascript">
    $(function () {
        $("#btnUpdate").click(function () {
           var password = $("#new_pass").val();
            if (password.length < 8) {
        alert("Password should contain atleast 8 character");
        alert(password);
        return false;
         } 
         
         var regularExpression  = /^[a-zA-Z0-9]$/;

        if (regularExpression.test(password)) {
        alert("Password should contain atleast one number and one special character");
        return false;
         } 
        
           var confirmPassword = $("#conf_pass").val();
           
        if (password != confirmPassword) {
        alert("Password do not match.");
        return false;
    }
        return true;
        });
    });
   
   function AvoidSpace(event) {
    var k = event ? event.which : window.event.keyCode;
    if (k == 32){
        alert("Space are not allowed")
        return false;
    }
    
   
    return true;
    
    }
</script>