<?php require_once 'core.php'; if($_POST) { $valid['success'] = array('success' => false, 'messages' => array()); $currentPassword = md5($_POST['password']); //echo $_POST['password']; $newPassword = md5($_POST['npassword']); //echo $_POST['npassword']; $conformPassword = md5($_POST['cpassword']); //echo $_POST['cpassword']; $userId = $_POST['user_id']; //echo $userId; $sql ="SELECT * FROM users WHERE user_id = {$userId}"; $query = $connect->query($sql); $result = $query->fetch_assoc(); //echo $sql; //echo $result['password']; //echo $currentPassword;exit; if($currentPassword == $result['password']) { if($newPassword == $conformPassword) { $updateSql = "UPDATE users SET password = '$newPassword' WHERE user_id = {$userId}"; //echo $updateSql;exit; if($connect->query($updateSql) === TRUE) { $valid['success'] = true; $valid['messages'] = "Successfully Updated"; header('location:../setting.php'); } else { $valid['success'] = false; $valid['messages'] = "Error while updating the password"; } } else { $valid['success'] = false; $valid['messages'] = "New password does not match with Conform password"; } } else { $valid['success'] = false; $valid['messages'] = "Current password is incorrect"; } $connect->close(); echo json_encode($valid); } ?>