public function password()
{
$user = MUser::getUserByUserId(MUser::getCurrent()->uid);
if ($_POST['nowpwd'] != null && $_POST['pwd'] != null) {
$result = array('error' => 1, 'message' => '密码修改失败.');
$nowpwd = $_POST['nowpwd'];
$pwd = $_POST['pwd'];
if (!$user->verifyPassword($nowpwd)) {
// 密码不正确
$result['message'] = "旧密码错误!";
return $result;
}
if ($pwd == $nowpwd) {
$result['message'] = "新密码不能和旧密码相同!";
return $result;
}
if (strlen($pwd) < 6) {
$result['message'] = "新密码不能少于6位!";
return $result;
}
$user->setPassword(htmlspecialchars($pwd));
$user->save();
$_SESSION['currentUser'] = null;
$result['error'] = 0;
$result['message'] = "修改密码成功, 请重新登录";
return $result;
} else {
Template::putContext('user', $user);
Template::setView("panel/change_password");
}
}
