From 03dd7809f8e3539b76d404128ae7bcc434a01264 Mon Sep 17 00:00:00 2001
From: Peter Rotich <peter@osticket.com>
Date: Thu, 2 Aug 2012 16:05:36 -0400
Subject: [PATCH] Make sure new password doesn't match current one

---
 include/class.staff.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/include/class.staff.php b/include/class.staff.php
index b607f6eac..1799d178a 100644
--- a/include/class.staff.php
+++ b/include/class.staff.php
@@ -408,6 +408,8 @@ class Staff {
                 $errors['cpasswd']='Current password required';
             elseif(!$this->check_passwd($vars['cpasswd']))
                 $errors['cpasswd']='Invalid current password!';
+            elseif(!strcasecmp($vars['passwd1'], $vars['cpasswd']))
+                $errors['passwd1']='New password MUST be different from the current password!';
         }
 
         if(!$vars['timezone_id'])
-- 
GitLab