MermsEMR/gate-mermsemr
1
0
Fork 0
Code Issues Pull Requests Releases Activity

User pass reset updates

Browse Source
This commit is contained in:
Jenkins Automation
2023-03-04 18:01:13 -05:00
parent 02e9eee332
commit 69706f3c83
1 changed files with 35 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app/Models/myfitUserProfile.php
+35 -29
View File
@@ -5,13 +5,13 @@ use CodeIgniter\Model;
class myfitUserProfile extends baseModel
{
protected $db;
public $con_name = 'mermsemr';
// protected $db;
// public $con_name = 'mermsemr';
public function __construct()
{
parent::__construct();
$this->db = \Config\Database::connect($this->con_name);
// $this->db = \Config\Database::connect($this->con_name);
}
public function accountResetPassword($in)
@@ -31,38 +31,44 @@ class myfitUserProfile extends baseModel
$prev_pass= trim($in['prev_pass']);
$new_pass= trim($in['new_pass']);
/*
mermsemr_dev=> SELECT * FROM members_session WHERE session ='50534367713329088500408985849250550352404565459882532533221349071826496812546205397231940227378';
id | member_id | session | loc | created | updated | uuid
------+-----------+-------------------------------------------------------------------------------------------------+----------------+----------------------------+----------------------------+--------------------------------------
1317 | 48 | 50534367713329088500408985849250550352404565459882532533221349071826496812546205397231940227378 | 197.210.79.221 | 2023-03-02 08:29:48.075624 | 2023-03-02 08:29:48.075624 | 01d55db5-baff-4f7f-b9e1-266f655facb1
$prev_pass='mermsemr';
$err_msg='';
$status = 0;
$sqUP='';
$msg='';
mermsemr_dev=> SELECT id, uuid FROM members limit 2;
id | uuid
----+--------------------------------------
16 | d274dcd9-7f5d-4919-b284-2a0cf137302e
5 | d59e61db-cc3f-4e80-9f0a-dff324f1a1a0
(2 rows)
mermsemr_dev=> SELECT id, uuid,password FROM members limit 2;
id | uuid | password
----+--------------------------------------+----------------------------------
16 | d274dcd9-7f5d-4919-b284-2a0cf137302e | 1adf598f793670bc7d1d83cbcbb70342
5 | d59e61db-cc3f-4e80-9f0a-dff324f1a1a0 | 1adf598f793670bc7d1d83cbcbb70342
(2 rows)
mermsemr_dev=>
*/
$sqlQ = "SELECT s.*,m.id AS member_id,m.uuid AS member_uuid
FROM members_session s
LEFT JOIN members m ON m.id=s.member_id
WHERE session='$session_token'
AND m.uuid='$member_uuid'
AND m.password=md5('$prev_pass')";
log_message('critical', "RST-PASS->". $sqlQ );
$query = $this->db->query($sqlQ);
$row = $query->getRow();
if (isset($row) && $new_pass !='') {
$sqUP= "UPDATE members SET password=md5('$new_pass') WHERE id = ".$row->member_id." AND uuid='".$row->member_uuid."' AND password=md5('$prev_pass') ";
if( $this->db->query($sqUP)) {
$status = 1;
$msg = "Update Completed";
}
else{
$status = -2;
$err_msg = "Unable to compplete password reset";
}
}
else{
$err_msg = "Invalid Request";
$status = -1;
}
return [
'status' => '-1',
'error_msg' => 'Not implemented yet',
'raw_data' => $in,
'status' => $status,
'msg' => $msg,
'error_msg' => $err_msg,
];
}