diff --git a/login.html b/forlaterpurposemaybe.html similarity index 100% rename from login.html rename to forlaterpurposemaybe.html diff --git a/login.php b/login.php index 6aca0e9..f1c607a 100644 --- a/login.php +++ b/login.php @@ -19,7 +19,7 @@ if(isset($_GET['login'])) { $_SESSION['lastName'] = $user['lastName']; die('successfull. go to: secure page'); } else { - $errorMessage = "somethings wrong (maybe wrong password or wrong user)
"; + $errorMessage = "
"; } } diff --git a/profile.php b/profile.php index e065917..e2d9796 100644 --- a/profile.php +++ b/profile.php @@ -18,7 +18,7 @@ $useremail = $_SESSION['email']; $usergn = $_SESSION['givenName']; $userln = $_SESSION['lastName']; -echo "Profile of ".$username; +echo ''; echo "
"; echo ''; echo ""; diff --git a/resetpass.php b/resetpass.php index 071e05c..539ea0f 100644 --- a/resetpass.php +++ b/resetpass.php @@ -10,7 +10,7 @@ $pdo = new PDO('mysql:host=localhost;dbname=usertable', 'usertable', 'password'); if(!isset($_GET['userid']) || !isset($_GET['code'])) { - die("No code delivered. nothing to do here."); + die(''); } $userid = $_GET['userid']; @@ -23,17 +23,20 @@ $user = $statement->fetch(); //check if theres a code for the user delivered if($user === null || $user['passwordcode'] === null) { - die("No User matching your request."); + die(''); } if($user['passwordcode_time'] === null || strtotime($user['passwordcode_time']) < (time()-24*3600) ) { - die("Ooops. This code isn't valid anymore."); + die(''); } if(sha1($code) != $user['passwordcode']) { - die("Thats not your code. Naughty user!"); + die(''); }