FloatSystems/float-gate
1
0
Fork 0
Code Issues Pull Requests Releases Activity

User pass reset updates

Browse Source
This commit is contained in:
Jenkins Automation
2023-03-04 18:01:13 -05:00
parent 02e9eee332
commit 69706f3c83
1 changed files with 35 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app/Models/myfitUserProfile.php
+35 -29
View File
@@ -5,13 +5,13 @@ use CodeIgniter\Model;
class myfitUserProfile extends baseModel class myfitUserProfile extends baseModel
{ {
protected $db; // protected $db;
public $con_name = 'mermsemr'; // public $con_name = 'mermsemr';
public function __construct() public function __construct()
{ {
parent::__construct(); parent::__construct();
$this->db = \Config\Database::connect($this->con_name); // $this->db = \Config\Database::connect($this->con_name);
} }
public function accountResetPassword($in) public function accountResetPassword($in)
@@ -31,38 +31,44 @@ class myfitUserProfile extends baseModel
$prev_pass= trim($in['prev_pass']); $prev_pass= trim($in['prev_pass']);
$new_pass= trim($in['new_pass']); $new_pass= trim($in['new_pass']);
/* $prev_pass='mermsemr';
mermsemr_dev=> SELECT * FROM members_session WHERE session ='50534367713329088500408985849250550352404565459882532533221349071826496812546205397231940227378'; $err_msg='';
id | member_id | session | loc | created | updated | uuid $status = 0;
------+-----------+-------------------------------------------------------------------------------------------------+----------------+----------------------------+----------------------------+-------------------------------------- $sqUP='';
1317 | 48 | 50534367713329088500408985849250550352404565459882532533221349071826496812546205397231940227378 | 197.210.79.221 | 2023-03-02 08:29:48.075624 | 2023-03-02 08:29:48.075624 | 01d55db5-baff-4f7f-b9e1-266f655facb1 $msg='';
$sqlQ = "SELECT s.*,m.id AS member_id,m.uuid AS member_uuid
mermsemr_dev=> SELECT id, uuid FROM members limit 2; FROM members_session s
id | uuid LEFT JOIN members m ON m.id=s.member_id
----+-------------------------------------- WHERE session='$session_token'
16 | d274dcd9-7f5d-4919-b284-2a0cf137302e AND m.uuid='$member_uuid'
5 | d59e61db-cc3f-4e80-9f0a-dff324f1a1a0 AND m.password=md5('$prev_pass')";
(2 rows) log_message('critical', "RST-PASS->". $sqlQ );
mermsemr_dev=> SELECT id, uuid,password FROM members limit 2;
id | uuid | password
----+--------------------------------------+----------------------------------
16 | d274dcd9-7f5d-4919-b284-2a0cf137302e | 1adf598f793670bc7d1d83cbcbb70342
5 | d59e61db-cc3f-4e80-9f0a-dff324f1a1a0 | 1adf598f793670bc7d1d83cbcbb70342
(2 rows)
mermsemr_dev=>
*/
$query = $this->db->query($sqlQ);
$row = $query->getRow();
if (isset($row) && $new_pass !='') {
$sqUP= "UPDATE members SET password=md5('$new_pass') WHERE id = ".$row->member_id." AND uuid='".$row->member_uuid."' AND password=md5('$prev_pass') ";
if( $this->db->query($sqUP)) {
$status = 1;
$msg = "Update Completed";
}
else{
$status = -2;
$err_msg = "Unable to compplete password reset";
}
}
else{
$err_msg = "Invalid Request";
$status = -1;
}
return [ return [
'status' => '-1', 'status' => $status,
'error_msg' => 'Not implemented yet', 'msg' => $msg,
'raw_data' => $in, 'error_msg' => $err_msg,
]; ];
} }