Fixed appsessions not being updated durring a password change

2001-04-17 17:49:13 +00:00 · 2001-04-17 17:49:13 +00:00 · a7c66aa628
commit a7c66aa628
parent f777cf6c87
2 changed files with 12 additions and 7 deletions
--- a/phpgwapi/inc/class.auth_ldap.inc.php
+++ b/phpgwapi/inc/class.auth_ldap.inc.php
@ -78,6 +78,7 @@
 			{
 				return false;
 			}
 			$phpgw->session->appsession('password','phpgwapi',$new_passwd);
 			return $encrypted_passwd;
 		}
--- a/phpgwapi/inc/class.auth_sql.inc.php
+++ b/phpgwapi/inc/class.auth_sql.inc.php
@ -42,17 +42,21 @@
 			}
 		}
-		function change_password($old_passwd, $new_passwd, $_accountid="")
+		function change_password($old_passwd, $new_passwd, $account_id = '')
 		{
 			global $phpgw_info, $phpgw;
-			$encrypted_passwd = md5($new_passwd);
+			if (! $account_id)
-			$_account_id = get_account_id($_accountid);
+			{
 				$account_id = $phpgw_info['user']['account_id'];
 			}
-			$phpgw->db->query("update phpgw_accounts set account_pwd='" . md5($new_passwd) . "' "
+			$encrypted_passwd = md5($new_passwd);
-				. "where account_id='" . $_account_id . "'",__LINE__,__FILE__);
+
-			$phpgw->db->query("update phpgw_accounts set account_lastpwd_change='" . time() . "' where account_id='"
+			$phpgw->db->query("update phpgw_accounts set account_pwd='" . md5($new_passwd) . "',"
-				. $_account_id . "'",__LINE__,__FILE__);
+				. "account_lastpwd_change='" . time() . "' where account_id='" . $account_id . "'",__LINE__,__FILE__);
 			$phpgw->session->appsession('password','phpgwapi',$new_passwd);
 			return $encrypted_passwd;
 		}