Use a better variable salt (to replace append_password)
parent
4ac03f766c
commit
03d9c20cf7
|
@ -279,12 +279,12 @@ if (!empty($_POST["frm_createlecturrer"])) {
|
|||
$_SESSION["info_Admin_Users"]="Email address : ".$email." is already in use.";
|
||||
header("Location: Admin.php");
|
||||
}
|
||||
$password_hash = password_hash("$password-$append_password", PASSWORD_DEFAULT);
|
||||
$password_hash = password_hash("$password-$salt", PASSWORD_DEFAULT);
|
||||
$sql= "INSERT INTO `users_table`(`Email`, `Password`, `Full_Name`, `UserType`) VALUES "
|
||||
. "('$email','$password_hash','$fullname','$type')";
|
||||
|
||||
if ($con->query($sql) === TRUE) {
|
||||
$_SESSION["info_Admin_Users"] = $type . " user created successfully. Use email " . $email . " as account name and $password-$append_password as password.";
|
||||
$_SESSION["info_Admin_Users"] = $type . " user created successfully. Use email " . $email . " as account name and $password-$salt as password.";
|
||||
header("Location: Admin.php");
|
||||
} else {
|
||||
echo "Error: " . $sql . "<br>" . $con->error;
|
||||
|
|
|
@ -3,5 +3,5 @@ $csv = array_map('str_getcsv', file('./../../lrr_submission/KeepItSafe.txt'));
|
|||
$mysql_username = $csv[0][0];
|
||||
$mysql_password = $csv[0][1];
|
||||
//append password for Lecturer and TA
|
||||
$append_password = "Lrr@2022" ;
|
||||
$salt = "Lrr@2022" ;
|
||||
?>
|
||||
|
|
Loading…
Reference in New Issue