Update password with Sha1 encryption problem

I cannot change the password of a registered user.

I used data assist update single record.

Page has a simple text field , label and submit button.

Page redirects to correct page after update.

I can see password is encrypted in database. Used encryption for update.

Any suggestions?

How have you configured the update server behavior? You will need to ensure that you are updating the currently logged in user, if you created the pages with Security Assist the user's id should be in a session variable that is used to identify the user. To update the users password you will need to apply the sha1 formatting to the posted password value that is specified in the update server behavior. Please describe how you have it setup currently and include a copy of the page in question in a zip archive.

These are the steps I took. zip file included.

(1 of 2 update wizard)

Event trigger: Button update pressed

Connection: (established)

Table: Users selected

Key column: UserID

Value:<?php echo $_SESSION['UserID'];?>

Date type: Text

After go to:index.php

(2 of 2 update wizard)

data type:text

Sha1 Encryption selected for Userpassword: <?php echo WA_SHA1Encryption($_SESSION['UserPassword']); ?>

Thanks for the page, it clears things up. The problem is that you are formatting and storing the session variable UserPassword in your update. I could not see anywhere on the page where you were setting this value. Normally you would have a password type of input that would hold the user's new password, then use the encrypted format of this password to store in the db.

If the password should be in the session variable and it is not then you may need to start the session above the update. You can do a check and start the session like this:

if(!session_id()) session_start();

Please post back and let us know if you have any further problems with it. If you do also include some more details about the UserPassword session variable or whatever value you are using for the new password.