mon-compte.php

<?php
require_once('includes/autoload.php');

if(!isConnected()) {
  header("Location: login.php");
  exit();
}


if(!isset($_POST['old-password'])){
  $_POST['old-password']=NULL;
}

if(!isset($_POST['new-password'])){
  $_POST['new-password']=NULL;
}

if(!isset($_POST['verif-password'])){
  $_POST['verif-password']=NULL;
}
$alert=NULL;
$dbh = DBmanager::getInstance();
$place=NULL;
$empty=true;
$mdp=NULL;

$prep_fetch = $dbh->prepare("SELECT * FROM CLIENTS");
$prep_fetch->execute();
$fetched = $prep_fetch->fetchAll();
$nb = $prep_fetch->rowCount();



for($i=0;$i<$nb;$i++){
  if($_SESSION['id_client']==$fetched[$i][0] ){
    $place=$i;
    $empty=false;

  }
}

if(!$empty){



    if(!password_verify ( $_POST['old-password'] , $fetched[$place][4]) && !preg_match("#^$#", $_POST['old-password'])) {

    $alert ="<div class='alert alert-danger' role='alert'>L'ancien mot de passe est erroné.</div>";

  }


  else if (  ($_POST['new-password']!=$_POST['verif-password']  || strlen($_POST['new-password'])<=5 || strlen($_POST['new-password'])>=100) && $_POST['new-password']!=NULL) {

                 $alert ="<div class='alert alert-danger' role='alert'>Le mot de passe n'est pas identique lors de la réécriture ou comporte trop peu de caractères, il doit avoir au moins 6 caractères</div>";

         }

  else if(password_verify ( $_POST['old-password'] , $fetched[$place][4]) && $_POST['new-password']==$_POST['verif-password'] && !preg_match("#^$#", $_POST['new-password']) && !preg_match("#^$#", $_POST['old-password'])){



    $alert = "<div class='alert alert-success' role='alert'>Le mot de passe a bien été modifié</div>";
    $mdp=password_hash($_POST['new-password'],PASSWORD_DEFAULT);
    $update = $dbh->prepare("UPDATE CLIENTS SET  password=? , token_aleatoire=NULL WHERE id_client=?");
    $update->execute(array($mdp,$_SESSION['id_client']));

  }

}
$dbh=NULL;

?>
<!DOCTYPE html>
<html lang="en">

<head>
  <meta charset="utf-8">
  <meta http-equiv="X-UA-Compatible" content="IE=edge">
  <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
  <meta name="description" content="">
  <meta name="author" content="">
  <title>Mon compte - Espace Client - cHost.fr</title>
  <link rel="icon" type="image/png" href="../images/icone.png" />
  <!-- Bootstrap core CSS-->
  <link href="vendor/bootstrap/css/bootstrap.min.css" rel="stylesheet">
  <!-- Custom fonts for this template-->
  <link href="vendor/font-awesome/css/font-awesome.min.css" rel="stylesheet" type="text/css">
  <!-- Custom styles for this template-->
  <link href="css/sb-admin.css" rel="stylesheet">
</head>

<body class="fixed-nav sticky-footer bg-dark" id="page-top">
  <!-- Navigation-->
  <?php require_once("includes/nav.template.php"); ?>
  <div class="content-wrapper">
    <div class="container-fluid">
      <!-- Breadcrumbs-->
      <ol class="breadcrumb">
        <li class="breadcrumb-item">
          <a href="index.php">Accueil</a>
        </li>
        <li class="breadcrumb-item active">Mon compte</li>
      </ol>
      <div class="row">
        <div class="col-12">
          <h1>Mon compte</h1>
          <form>
            <div class="form-group row">
              <label for="example-text-input" class="col-2 col-form-label">Nom</label>
              <div class="col-10">
                <input class="form-control" disabled type="text" value="<?php echo $clientObj->getNom(); ?>" id="example-text-input">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-search-input" class="col-2 col-form-label">Prenom</label>
              <div class="col-10">
                <input class="form-control" disabled type="search" value="<?php echo $clientObj->getPrenom(); ?>" id="example-search-input">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-email-input" class="col-2 col-form-label">Email</label>
              <div class="col-10">
                <input class="form-control" disabled type="email" value="<?php echo $clientObj->getEmail(); ?>" id="example-email-input">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-search-input" class="col-2 col-form-label">Adresse</label>
              <div class="col-10">
                <input class="form-control" disabled type="search" value="<?php echo $clientObj->getAdresse(); ?>" id="example-search-input">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-search-input" class="col-2 col-form-label">Code postale</label>
              <div class="col-10">
                <input class="form-control" disabled type="search" value="<?php echo $clientObj->getCode(); ?>" id="example-search-input">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-search-input" class="col-2 col-form-label">Ville</label>
              <div class="col-10">
                <input class="form-control" disabled type="search" value="<?php echo $clientObj->getVille(); ?>" id="example-search-input">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-tel-input" class="col-2 col-form-label">Telephone</label>
              <div class="col-10">
                <input class="form-control" disabled type="tel" value="<?php echo $clientObj->getTel(); ?>" id="example-tel-input">
              </div>
            </div>
          </form>
          <h1 id="chgmdp">Changer mot de passe</h1>
          <form action="" method="post">
            <?php echo ($alert);?>
            <div class="form-group row">
              <label for="example-text-input" class="col-2 col-form-label" >Mot de passe actuel</label>
              <div class="col-10">
                <input class="form-control" type="password"  id="example-text-input" name="old-password">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-search-input" class="col-2 col-form-label" >Nouveau mot de passe</label>
              <div class="col-10">
                <input class="form-control" type="password"  id="example-search-input" name="new-password">
              </div>
            </div>
            <div class="form-group row">
              <label for="example-email-input" class="col-2 col-form-label" >Confirmation du mot de passe</label>
              <div class="col-10">
                <input class="form-control" type="password"  id="example-email-input" name="verif-password">
              </div>
            </div>
            <div class="form-group row">
      <div class="offset-sm-2 col-sm-10">
        <button type="submit" class="btn btn-primary">Soumettre</button>
      </div>
    </div>
          </form>
        </div>
      </div>
    </div>

    <div>

      <a href='supprimer.php' class='btn  btn-danger mr-3 pull-right' role='button'>Supprimer mon compte</a>
    </div>
    </br>
    </br>
    <!-- /.container-fluid-->
    <!-- /.content-wrapper-->
    <?php require_once('includes/footer.template.php'); ?>
    <!-- Scroll to Top Button-->
    <a class="scroll-to-top rounded" href="#page-top">
      <i class="fa fa-angle-up"></i>
    </a>
    <!-- Logout Modal-->
    <?php require_once('includes/modale-deconnexion.template.php'); ?>
    <!-- Bootstrap core JavaScript-->
    <script src="vendor/jquery/jquery.min.js"></script>
    <script src="vendor/bootstrap/js/bootstrap.bundle.min.js"></script>
    <!-- Core plugin JavaScript-->
    <script src="vendor/jquery-easing/jquery.easing.min.js"></script>
    <!-- Custom scripts for all pages-->
    <script src="js/sb-admin.min.js"></script>
  </div>
</body>

</html>