I am a simpleton with less than a cursory knowledge of programming. I have a family web site where we share photos, videos, files and other resources. The site has a simple login feature that begins a session, and I want to be able to provide people with the ability to change their password once logged in.

我是一个没有粗略的编程知识的傻瓜。我有一个家庭网站，我们可以在其中共享照片、视频、文件和其他资源。该站点有一个简单的登录功能，可以开始会话，我希望能够为人们提供登录后更改密码的功能。

The database is in MySQL and is extremely simple with only; ID, username, and, password columns (not encrypted or hashed at all).

数据库在MySQL中，非常简单，只有；ID、用户名和密码列（根本没有加密或散列）。

When it comes to PHP and MySQL I tend to research other people's examples and make them my own, and with the login script I found this very easy to do. However, I have tried and tried and tried to find a PHP snippet that fits with my site and will allow users to change their passwords and have unfortunately failed at every attempt.

当涉及到 PHP 和 MySQL 时，我倾向于研究其他人的示例并将它们制作成我自己的示例，并且使用登录脚本我发现这很容易做到。但是，我一直在尝试并尝试找到适合我的网站的 PHP 代码段，并允许用户更改他们的密码，但不幸的是，每次尝试都失败了。

I am hoping that someone can assist me in developing what I have already to make it work for my site, any help will be hugely appreciated!

我希望有人可以帮助我开发我已经拥有的内容以使其适用于我的网站，任何帮助将不胜感激！

My form simply asks for the logged in user to enter a new password, and then confirm the same password:

我的表单只是要求登录用户输入新密码，然后确认相同的密码：

    <form name="frmChange" role="form" class="form-signin" method="POST" action="changepword_script.php">

  <div class="form-group">

    <label for="InputPassword2">New Password</label>
    <input type="password" class="form-control" id="InputPassword2" placeholder="New Password" name="newPassword">
     <label for="InputPassword3">Confirm New Password</label>
    <input type="password" class="form-control" id="InputPassword3" placeholder="Confirm Password" name="confirmPassword">  </div>
   <button class="btn btn-lrg btn-default btn-block" type="submit" value="send">Change it</button>


      </div>


      </form>

And my php script (also very simple) just needs to check that the passwords match and then update the database if they do (I have removed the IP address of the database and replaced with zeros):

我的 php 脚本（也很简单）只需要检查密码是否匹配，然后更新数据库（我已经删除了数据库的 IP 地址并用零替换）：

<?php
session_start();

if (!(isset($_SESSION['username']) && $_SESSION['username'] != ''))
{
    header("location:login.php");
}

$dbcon = mysql_connect ('000.000.000.00', 'my_db_username', 'my_db_password')

$password1 = $_POST['newPassword'];
$password2 = $_POST['confirmPassword'];

$password1 = mysql_real_escape_string($password1);
$password2 = mysql_real_escape_string($password2);

if ($password1 <> $password2){ echo "Your passwords do not match.";}
{
    echo "your passwords do not match";
}
if (mysql_query(UPDATE ebsmembers SET password='$password1' WHERE username='$session[username]'))
{
    echo "You have successfully changed your password.";
}

mysql_close($dbcon);
header("location:login.php");

?>

Again, any help would be massively appreciated as I have really struggled with making this work!

再次，任何帮助将不胜感激，因为我真的在努力完成这项工作！

Many thanks, Paul

非常感谢，保罗