forked from intfocus/iLearn_iSearch_API
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathchangeContactEmail.php
executable file
·113 lines (103 loc) · 2.5 KB
/
changeContactEmail.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
<?php
/********************************************
*changeContactEmail.php
*1. Check session
*2. Get guid by session
*3 Get contact
*4 check contact
* 2012/11/21 Phantom
********************************************/
?>
<?php
//----- Define -----
define(FILE_NAME, "/usr/local/www/apache22/DB.conf"); //account file name
define(DELAY_SEC, 3); //delay reply
//----- Read account and password from DB.conf -----
if(file_exists(FILE_NAME))
{
include(FILE_NAME);
}
else
{
sleep(DELAY_SEC);
echo FAILED;
return;
}
define(DB_HOST, $db_host);
define(ADMIN_ACCOUNT, $admin_account);
define(ADMIN_PASSWORD, $admin_password);
define(CONNECT_DB, $connect_db);
//----- Return value -----
define(SUCCESS, 0);
define(FAILED, -1);
//----- Check number -----
?>
<?php
//----- Variable definition -----
//get from client
$guid;
$contact_email;
$str_query;
$str_update;
$entry_update;
$result;
$row;
//-----------------------------------------
//----- 1. Check session and reportID -----
//-----------------------------------------
//----- session check -----
session_start();
if(!session_is_registered("GUID")) //check session
{
sleep(DELAY_SEC);
header("Location:main.php");
exit();
}
if($_SESSION["GUID"] == "")
{
sleep(DELAY_SEC);
header("Location:main.php");
exit();
}
$guid = $_SESSION["GUID"];
session_write_close();
//----- get cmd oldpass newpass1 newpass2 -----
$contact_email = $_GET["contact"];
//-----------------------------------------
//----- 2. Check contact_email -----
//-----------------------------------------
//----- Connect to MySql -----
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if(!$link) //connect to server failure
{
sleep(DELAY_SEC);
echo FAILED;
return;
}
//////////////////////////////
//value check ok => update DB
/////////////////////////////
$str_update =
"update customer
set contact_email = '$contact_email'
where GUID = '$guid'
";
if(!mysqli_query($link, $str_update))
{
if($link)
{
mysqli_close($link);
$link = 0;
}
sleep(DELAY_SEC);
echo FAILED;
return;
}
if($link)
{
mysqli_close($link);
$link = 0;
}
echo SUCCESS;
return;
?>