Domů Procházet Nápověda
Přihlásit se
aj
/
chamilo-lms2
Sledovat 1
Oblíbit 0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: 8cd85a7c69
Větve Značky
chamilo-lms2
/
main
/
auth
/
reset.php

reset.php 2.2 KB
Historie Surový

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. <?php
    2. 

  2. /* For license terms, see /license.txt */
    3. 

  3. 

  4. require_once __DIR__.'/../inc/global.inc.php';
    5. 

  5. 

  6. $token = isset($_GET['token']) ? $_GET['token'] : '';
    7. 

  7. 

  8. if (!ctype_alnum($token)) {
    9. 

  9.     $token = '';
    10. 

  10. }
    11. 

  11. 

  12. // Build the form
    13. 

  13. $form = new FormValidator('reset', 'POST', api_get_self().'?token='.$token);
    14. 

  14. $form->addElement('header', get_lang('Reset password'));
    15. 

  15. $form->addHidden('token', $token);
    16. 

  16. $form->addElement('password', 'pass1', get_lang('Password'));
    17. 

  17. $form->addElement(
    18. 

  18.     'password',
    19. 

  19.     'pass2',
    20. 

  20.     get_lang('Confirm password'),
    21. 

  21.     ['id' => 'pass2', 'size' => 20, 'autocomplete' => 'off']
    22. 

  22. );
    23. 

  23. $form->addRule('pass1', get_lang('Required field'), 'required');
    24. 

  24. $form->addRule('pass2', get_lang('Required field'), 'required');
    25. 

  25. $form->addRule(['pass1', 'pass2'], get_lang('You have typed two different passwords'), 'compare');
    26. 

  26. $form->addButtonSave(get_lang('Update'));
    27. 

  27. 

  28. $ttl = api_get_setting('user_reset_password_token_limit');
    29. 

  29. if (empty($ttl)) {
    30. 

  30.     $ttl = 3600;
    31. 

  31. }
    32. 

  32. 

  33. if ($form->validate()) {
    34. 

  34.     $values = $form->exportValues();
    35. 

  35.     $password = $values['pass1'];
    36. 

  36.     $token = $values['token'];
    37. 

  37. 

  38.     /** @var \Chamilo\UserBundle\Entity\User $user */
    39. 

  39.     $user = UserManager::getManager()->findUserByConfirmationToken($token);
    40. 

  40.     if ($user) {
    41. 

  41.         if (!$user->isPasswordRequestNonExpired($ttl)) {
    42. 

  42.             Display::addFlash(Display::return_message(get_lang('Link expired, please try again.')), 'warning');
    43. 

  43.             header('Location: '.api_get_path(WEB_CODE_PATH).'auth/lostPassword.php');
    44. 

  44.             exit;
    45. 

  45.         }
    46. 

  46. 

  47.         $user->setPlainPassword($password);
    48. 

  48.         $userManager = UserManager::getManager();
    49. 

  49.         $userManager->updateUser($user, true);
    50. 

  50. 

  51.         $user->setConfirmationToken(null);
    52. 

  52.         $user->setPasswordRequestedAt(null);
    53. 

  53. 

  54.         Database::getManager()->persist($user);
    55. 

  55.         Database::getManager()->flush();
    56. 

  56. 

  57.         Display::addFlash(Display::return_message(get_lang('Update successful')));
    58. 

  58.         header('Location: '.api_get_path(WEB_PATH));
    59. 

  59.         exit;
    60. 

  60.     } else {
    61. 

  61.         Display::addFlash(
    62. 

  62.             Display::return_message(get_lang('Link expired, please try again.'))
    63. 

  63.         );
    64. 

  64.     }
    65. 

  65. }
    66. 

  66. 

  67. $tpl = new Template(null);
    68. 

  68. $tpl->assign('content', $form->toHtml());
    69. 

  69. $tpl->display_one_col_template();
    70. 

  70.