0)|| (isset($OJ_ON_SITE_CONTEST_ID)&&$OJ_ON_SITE_CONTEST_ID>0) ){ $view_errors= $MSG_MODIFY_NOT_ALLOWED_FOR_EXAM; require("template/".$OJ_TEMPLATE."/error.php"); exit (); } $err_str=""; $err_cnt=0; $len; if (!$_SESSION[$OJ_NAME.'_'.'user_id']) { die(); } $user_id=$_SESSION[$OJ_NAME.'_'.'user_id']; $password=$_POST['old-password']; $sql="SELECT `user_id`,`password` FROM `users` WHERE `user_id`=?"; $result=pdo_query($sql,$user_id); $row=$result[0]; if ($row && pwCheck($password,$row['password'])) $rows_cnt = 1; else $rows_cnt = 0; if ($rows_cnt==0){ $err_str=$err_str."旧密码不正确!"; $err_cnt++; } $len=strlen($_POST['new1-password']); if ($len<6 && $len>0){ $err_cnt++; $err_str=$err_str."密码长度至少6位\\n"; }else if (strcmp($_POST['new1-password'],$_POST['new2-password'])!=0){ $err_str=$err_str."密码不一致!"; $err_cnt++; } if ($err_cnt>0){ print ""; exit(0); } if (strlen($_POST['new1-password'])==0) $password=pwGen($_POST['old-password']); else $password=pwGen($_POST['new1-password']); $sql="UPDATE `users` SET" ."`password`=?"; $sql.="WHERE `user_id`=?"; //echo $sql; //exit(0); pdo_query($sql,$password,$user_id); ?>