<?php
require('funciones.php');
session_start();
conectarBD();
if(isset($_SESSION['Usuario']) && time() < $_SESSION['Limite'] && $_SESSION['Permisos'] >= "1") {
$usuario = $_SESSION['Usuario'];
$email_check = $_POST['editar_email'];
$password_check = $_POST['editar_password'];
if($email_check == "on") {
$email_1 = $_POST['email_1'];
$email_2 = $_POST['email_2'];
if($email_1 == $email_2) {
$query_email = mysqli_query($conexion, 'UPDATE usuarios SET email = "'.$email_1.'" WHERE usuario = "'.$usuario.'"') or die ('Error: '.mysqli_error($conexion));
} else {
header('Location: cpanel.php?opc=editarPerfil&go=eFailed');
}
}
if($password_check == "on") {
$password_1 = $_POST['password_1'];
$password_2 = $_POST['password_2'];
if($password_1 == $password_2) {
$pswd_final = password_hash($password_1, PASSWORD_DEFAULT);
$query_password = mysqli_query($conexion, 'UPDATE usuarios SET password = "'.$pswd_final.'" WHERE usuario = "'.$usuario.'"') or die ('Error: '.mysqli_error());
} else {
header('Location: cpanel.php?opc=editarPerfil&go=pFailed');
}
}
header('Location: cpanel.php?opc=editarPerfil&go=success');
} else {
header('Location: index.php');
}
?>