javascript - AJAX to PHP to mySQL debugging -


i having trouble change password script website. using ajax connection php. database connection solid, , sending correct variables (according firebug), lost in translation guess. having trouble printing out error reports because theme covering them up. realize code isn't secure, , intend on changing that. right now, need getting code work. have been working on past 2 days now, , can't seem find niche.

here login page code included.

    <?php      include_once("php_includes/check_login_status.php");     ob_start();     error_reporting(e_all);     ini_set('display_error', 'on');     $isowner = "no";     if($user_ok == true){         $isowner = "yes";         $u = $_session['username'];     } else {         header("location: http://www.ibnwmo.com");     } ?> <?php // ajax calls code execute if(isset($_post['u'])) {     include_once("php_includes/db_conx.php");     $username = '';     $oldpasshash = '';     $newpasshash = '';     $username = preg_replace('#[^a-z0-9]#i', '', $_post['u']);     var_dump($username);     $oldpasshash = md5($_post["cp"]);     $newpasshash = md5($_post["cnp"]);     $sql = "select id, username, password users username='$username' limit 1";     $query = mysqli_query($db_conx, $sql);     $row = mysqli_fetch_row($query);     $db_id = $row["0"];     $db_username = $row["1"];     $db_password = $row["2"];     $dump = var_dump($cnp);     $dump2 = var_dump($cp);     if($db_password != $oldpasshash){         echo "no_exist";         exit();     } else {         $sql = "update users set password='$newpasshash', username='$db_username' limit 1";         $query = mysqli_query($db_conx, $sql);     }     $sql = "select id, username, password users username='$db_username' limit 1";     $query = mysqli_query($db_conx, $sql);     $row = mysqli_fetch_row($query);     $db_newpass = $row[3];     if($db_newpass == $newpasshash) {     echo "success";     exit();     } else {         echo "pass_failed";         exit();     } } ?> <!doctype html> <html> <head> <meta charset="utf-8"> <title>forgot password</title> <link rel="icon" href="images/favicon.ico" type="image/x-icon"> <link rel="stylesheet" href="css/mainstyle.css"> <script src="js/main.js"></script> <script src="js/ajax.js"></script> <script> function changepass() { var u = _("username").value;  var cp = _("currentpass").value;  var np = _("newpass").value;  var cnp = _("confirmnewpass").value;  if(np != cnp) {     _("status").innerhtml = "the passwords given not match!";     } else if (cp === "" || np === "" || cnp === "") {         _("status").innerhtml = "please fill out of fields.";     } else {         _("changepassbtn").style.display = "none";         _("status").innerhtml = 'please wait ...';         var ajax = ajaxobj("post", "change_password.php");         ajax.onreadystatechange = function() {         if(ajaxreturn(ajax) === true) {         var response = ajax.responsetext;        if(response == "success") {           _("status").innerhtml = '<h3>your password has been changed!</p>';         } else if (response == "no_exist") {           _("status").innerhtml = "sorry, current password entered incorrectly.";           _("changepassbtn").style.display = "initial";         } else if (response == "pass_failed") {             _("status").innerhtml = "sorry, password change failed.";             _("changepassbtn").style.display = "initial";         } else {             _("status").innerhtml = "an unknown error occurred";             _("changepassbtn").style.display = "initial";         }       }     };     ajax.send("u="+u+"&cp="+cp+"&np="+np+"&cnp"+cnp);     } } </script>

if front end submitting values expect, can continue debugging php code logging statements, i.e. in change_password.php:

error_log(date('ymdhis').": ".print_r($_request,true)."\n", 3, '/tmp/change_password.log');


Comments

Post a Comment

Popular posts from this blog

javascript - RequestAnimationFrame not working when exiting fullscreen switching space on Safari -

request animation frame stops working when exiting fullscreen clicking on original space's safari window. fine if fullscreen mode canceled escape key or calling cancelfullscreen(). steps reproduce: open https://dl.dropboxusercontent.com/u/769042/prezi/safari-fullscreen.html click "draw raf", kittie appears click "fullscreen", go fullscreen click "draw raf", kittie appears go space original safari was, showing "click exit fullscreen mode", click anywhere, out fullscreen click "draw raf", nothing happens what handling click calling: window.requestanimationframe(draw); which draws on canvas context: function draw() { ctx.drawimage(img, math.random()*500|0, math.random()*400|0, 100, 100); } i checked .hidden , .visibilitystate, updated correctly. tested on osx 10.9.3, safari 7.0.4 (9537.76.4). has workaround/solution other switching old settimeout? this sounds webkit bug 88940 : using reque
Read more

Python ctypes access violation with const pointer arguments -

i have api i'm trying wrap in python (2.7.6 on win7) code using ctypes. here's api: client_dllfunc bool clientapi search_exporttoclipcopy(clienthsearch handle, int channel, lpctstr filename, const time_t& from, const time_t& to, const bool* cameras, int length, bool usepassword, lpctstr password, bool includetextin = false, bool excludeplayer = false); the issue i'm having cameras argument; , i've had issue other const pointer arguments well. here's how i'm wrapping api: def search_exporttoclipcopy(self, hsearch, csearch, filename, tfrom, tto, cameras, length, usepassword, password, includetextin=true, excludeplayer=false): exporttoclipcopy = self.sdkdll.search_exporttoclipcopy exporttoclipcopy.argtypes = [c_int, c_int, c_wchar_p, c_long, c_long, pointer(c_bool), c_int, c_bool, c_wchar_p, c_bool, c_bool] exporttoclipcopy.restype = c_bool exporttoclipcopy(hsearch, csearch, filename, tfrom, tto, cameras, length, usepassword, pass
Read more