de/dc7/lostpass_8php_source.html

 <?php

 /*

  You may not change or alter any portion of this comment or credits

  of supporting developers from this source code or any supporting source code

  which is considered copyrighted (c) material of the original comment or credit authors.


  This program is distributed in the hope that it will be useful,

  but WITHOUT ANY WARRANTY; without even the implied warranty of

  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

 */


 use Xoops\Core\Request;


 include __DIR__ . DIRECTORY_SEPARATOR . 'mainfile.php';

 $xoops = Xoops::getInstance();

 $xoops->preload()->triggerEvent('core.lostpass.start');


 $xoops_url = \XoopsBaseConfig::get('url');


 $xoops->loadLanguage('user');


 $email = Request::getEmail('email', null, 'GET');

 $email = Request::getEmail('email', $email, 'POST');


 if (empty($email)) {

     $xoops->redirect("user.php", 2, XoopsLocale::NO_);

     exit();

 }


 $userHandler = Xoops::getInstance()->getHandlerUser();

 $getuser = $userHandler->getObjects(new Criteria('email', $email));


 if (empty($getuser)) {

     $msg = XoopsLocale::E_NO_USER_FOUND;

     $xoops->redirect("user.php", 2, $msg);

 } else {

     $userObject = $getuser[0]; // what if there was more than one?

     $code = Request::getCmd('code', '', 'GET');

     $areyou = substr(md5($userObject->getVar("pass")), 0, 5);

     if ($code != '' && $areyou == $code) {

         $newpass = $xoops->makePass();

         $xoopsMailer = $xoops->getMailer();

         $xoopsMailer->useMail();

         $xoopsMailer->setTemplate("lostpass2.tpl");

         $xoopsMailer->assign("SITENAME", $xoops->getConfig('sitename'));

         $xoopsMailer->assign("ADMINMAIL", $xoops->getConfig('adminmail'));

         $xoopsMailer->assign("SITEURL", $xoops_url . "/");

         $xoopsMailer->assign("IP", $_SERVER['REMOTE_ADDR']);

         $xoopsMailer->assign("NEWPWD", $newpass);

         $xoopsMailer->setToUsers($userObject);

         $xoopsMailer->setFromEmail($xoops->getConfig('adminmail'));

         $xoopsMailer->setFromName($xoops->getConfig('sitename'));

         $xoopsMailer->setSubject(sprintf(XoopsLocale::F_NEW_PASSWORD_REQUEST_AT, \XoopsBaseConfig::get('url')));

         if (!$xoopsMailer->send()) {

             echo $xoopsMailer->getErrors();

         }

         // Next step: add the new password to the database

         $userObject->setVar("pass", password_hash($newpass, PASSWORD_DEFAULT));

         if (false === $userHandler->insert($userObject)) {

             $xoops->header();

             echo XoopsLocale::E_USER_NOT_UPDATED;

             $xoops->footer();

         }

         $xoops->redirect("user.php", 3, sprintf(XoopsLocale::SF_PASSWORD_SENT_TO, $userObject->getVar("uname")), false);

         // If no Code, send it

     } else {

         $xoopsMailer = $xoops->getMailer();

         $xoopsMailer->useMail();

         $xoopsMailer->setTemplate("lostpass1.tpl");

         $xoopsMailer->assign("SITENAME", $xoops->getConfig('sitename'));

         $xoopsMailer->assign("ADMINMAIL", $xoops->getConfig('adminmail'));

         $xoopsMailer->assign("SITEURL", $xoops_url . "/");

         $xoopsMailer->assign("IP", $_SERVER['REMOTE_ADDR']);

         $xoopsMailer->assign("NEWPWD_LINK", $xoops_url . "/lostpass.php?email=" . $email . "&code=" . $areyou);

         $xoopsMailer->setToUsers($userObject);

         $xoopsMailer->setFromEmail($xoops->getConfig('adminmail'));

         $xoopsMailer->setFromName($xoops->getConfig('sitename'));

         $xoopsMailer->setSubject(sprintf(XoopsLocale::F_NEW_PASSWORD_REQUEST_AT, $xoops->getConfig('sitename')));

         $xoops->header();

         if (!$xoopsMailer->send()) {

             echo $xoopsMailer->getErrors();

         }

         echo "<h4>";

         printf(XoopsLocale::F_CONFIRMATION_EMAIL_SENT, $userObject->getVar("uname"));

         echo "</h4>";

         $xoops->footer();

     }

 }

$userHandler
if(empty($email)) $userHandler
Definition: lostpass.php:40

XoopsLocaleEn_US\F_NEW_PASSWORD_REQUEST_AT
const F_NEW_PASSWORD_REQUEST_AT
Definition: en_US.php:430

Xoops\getInstance
static getInstance()
Definition: Xoops.php:160

XoopsLocaleEn_US\E_USER_NOT_UPDATED
const E_USER_NOT_UPDATED
Definition: en_US.php:378

$_SERVER
$_SERVER['REQUEST_URI']
Definition: comment_delete.php:23

$xoops
$xoops
Definition: lostpass.php:25

exit
exit
Definition: browse.php:104

DIRECTORY_SEPARATOR
defined('DS') or define('DS' DIRECTORY_SEPARATOR
Definition: common.php:41

Request

$getuser
$getuser
Definition: lostpass.php:41

XoopsLocaleEn_US\SF_PASSWORD_SENT_TO
const SF_PASSWORD_SENT_TO
Definition: en_US.php:991

$xoops_url
$xoops_url
Definition: lostpass.php:28

XoopsBaseConfig\get
static get($name)
Definition: XoopsBaseConfig.php:117

include

$areyou
$areyou
Definition: lostpass.php:49

$msg
if(!is_object($module)||!$module->getVar('isactive')) $msg
Definition: groupperm.php:38

XoopsLocaleEn_US\F_CONFIRMATION_EMAIL_SENT
const F_CONFIRMATION_EMAIL_SENT
Definition: en_US.php:403

XoopsLocaleEn_US\E_NO_USER_FOUND
const E_NO_USER_FOUND
Definition: en_US.php:356

Criteria
Definition: criteria.php:29

$email
$email
Definition: lostpass.php:32

$code
$code
Definition: lostpass.php:48