  |
77 | 77 | | $Qadmin = $osC_Database->query('update :table_administrators set user_name = :user_name where id = :id'); |
| |
78 | 78 | | $Qadmin->bindInt(':id', $_GET['aID']); |
| |
79 | 79 | | } else { |
 |
80 | | - | $Qadmin = $osC_Database->query('insert into :table_administrators (user_name) values (:user_name)'); |
| |
| 80 | + | $Qadmin = $osC_Database->query('insert into :table_administrators (user_name, user_password) values (:user_name, :user_password)'); |
| |
| 81 | + | $Qadmin->bindValue(':user_password', osc_encrypt_string(trim($_POST['user_password']))); |
|
81 | 82 | | } |
| |
82 | 83 | | $Qadmin->bindTable(':table_administrators', TABLE_ADMINISTRATORS); |
| |
83 | 84 | | $Qadmin->bindValue(':user_name', $_POST['user_name']); |
| |
|
|
 |
… |
|
86 | 87 | | if ( !$osC_Database->isError() ) { |
| |
87 | 88 | | $id = (isset($_GET['aID']) && is_numeric($_GET['aID']) ? $_GET['aID'] : $osC_Database->nextID()); |
| |
88 | 89 | | |
|
89 | | - | if ( !empty($_POST['user_password']) ) { |
| |
| 90 | + | if ( isset($_GET['aID']) && is_numeric($_GET['aID']) && !empty($_POST['user_password']) ) { |
|
90 | 91 | | $Qadmin = $osC_Database->query('update :table_administrators set user_password = :user_password where id = :id'); |
| |
91 | 92 | | $Qadmin->bindTable(':table_administrators', TABLE_ADMINISTRATORS); |
| |
92 | 93 | | $Qadmin->bindValue(':user_password', osc_encrypt_string(trim($_POST['user_password']))); |