aboutsummaryrefslogtreecommitdiff
path: root/www/password.php
blob: ba7be8d0a2e64a658f45b97b94ecdf01c21269af (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
<?php
/***************************************************************************
 Copyright (C) 2005 Scuttle project
 https://sourceforge.net/projects/scuttle/

 This program is free software; you can redistribute it and/or modify
 it under the terms of the GNU General Public License as published by
 the Free Software Foundation; either version 2 of the License, or
 (at your option) any later version.

 This program is distributed in the hope that it will be useful,
 but WITHOUT ANY WARRANTY; without even the implied warranty of
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 GNU General Public License for more details.

 You should have received a copy of the GNU General Public License
 along with this program; if not, write to the Free Software
 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 ***************************************************************************/

require_once('header.inc.php');

/* Service creation: only useful services are created */
// No specific services

/* Managing all possible inputs */
isset($_POST['submitted']) ? define('POST_SUBMITTED', $_POST['submitted']): define('POST_SUBMITTED', '');
isset($_POST['username']) ? define('POST_USERNAME', $_POST['username']): define('POST_USERNAME', '');
isset($_POST['email']) ? define('POST_EMAIL', $_POST['email']): define('POST_EMAIL', '');

// IF SUBMITTED
if (POST_SUBMITTED != '') {

	// NO USERNAME
	if (!POST_USERNAME) {
		$tplVars['error'] = T_('You must enter your username.');

		// NO E-MAIL
	} elseif (!POST_EMAIL) {
		$tplVars['error'] = T_('You must enter your <abbr title="electronic mail">e-mail</abbr> address.');

		// USERNAME AND E-MAIL
	} else {

		// NO MATCH
		$userinfo = $userservice->getObjectUserByUsername(POST_USERNAME);
		if ($userinfo == NULL) {
			$tplVars['error'] = T_('No matches found for that username.');

		} elseif (POST_EMAIL != $userinfo->getEmail()) {
			$tplVars['error'] = T_('No matches found for that combination of username and <abbr title="electronic mail">e-mail</abbr> address.');

			// MATCH
		} else {

			// GENERATE AND STORE PASSWORD
			$password = $userservice->generatePassword($userinfo->getId());
			if (!($password = $userservice->generatePassword($userinfo->getId()))) {
				$tplVars['error'] = T_('There was an error while generating your new password. Please try again.');

			} else {
				// SEND E-MAIL
				$message = T_('Your new password is:') ."\n". $password ."\n\n". T_('To keep your bookmarks secure, you should change this password in your profile the next time you log in.');
				$message = wordwrap($message, 70);
				$headers = 'From: '. $adminemail;
				$mail = mail(POST_EMAIL, sprintf(T_('%s Account Information'), $sitename), $message);

				$tplVars['msg'] = sprintf(T_('New password generated and sent to %s'), POST_EMAIL);
			}
		}
	}
}

$templatename = 'password.tpl';
$tplVars['subtitle'] = T_('Forgotten Password');
$tplVars['formaction']  = createURL('password');
$templateservice->loadTemplate($templatename, $tplVars);
?>