123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157 |
- <?php
- /* For licensing terms, see /license.txt */
- /**
- * SCRIPT PURPOSE :
- *
- * This script allows users to retrieve the password of their profile(s)
- * on the basis of their e-mail address. The password is send via email
- * to the user.
- *
- * Special case : If the password are encrypted in the database, we have
- * to generate a new one.
- *
- * @todo refactor, move relevant functions to code libraries
- *
- * @package chamilo.auth
- */
- //require_once '../inc/global.inc.php';
- // Custom pages
- // Had to move the form handling in here, because otherwise there would
- // already be some display output.
- // Forbidden to retrieve the lost password
- if (api_get_setting('allow_lostpassword') == 'false') {
- api_not_allowed(true);
- }
- $reset = Request::get('reset');
- $userId = Request::get('id');
- $this_section = SECTION_CAMPUS;
- $tool_name = get_lang('LostPassword');
- if ($reset && $userId) {
- $messageText = Login::reset_password($reset, $userId, true);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'info', false)
- );
- header('Location: ' . api_get_path(WEB_PATH));
- exit;
- }
- $form = new FormValidator('lost_password');
- $form->addHeader($tool_name);
- $form->addText('user', [get_lang('LoginOrEmailAddress'), get_lang('EnterEmailUserAndWellSendYouPassword')], true);
- $form->addButtonSend(get_lang('Send'));
- if ($form->validate()) {
- $values = $form->exportValues();
- $user = Login::get_user_accounts_by_username($values['user']);
- if (!$user) {
- $messageText = get_lang('NoUserAccountWithThisEmailAddress');
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::LOST_PASSWORD)) {
- CustomPages::display(
- CustomPages::LOST_PASSWORD,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'error', false)
- );
- header('Location: ' . api_get_self());
- exit;
- }
- $passwordEncryption = api_get_configuration_value('password_encryption');
- if ($passwordEncryption === 'none') {
- $messageText = Login::send_password_to_user($user, true);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'info', false)
- );
- header('Location: ' . api_get_path(WEB_PATH));
- exit;
- }
- if ($user['auth_source'] == 'extldap') {
- Display::addFlash(
- Display::return_message(get_lang('CouldNotResetPasswordBecauseLDAP'), 'info', false)
- );
- header('Location: ' . api_get_path(WEB_PATH));
- exit;
- }
- $userResetPasswordSetting = api_get_setting('user_reset_password');
- if ($userResetPasswordSetting === 'true') {
- $userObj = Database::getManager()->getRepository('ChamiloUserBundle:User')->find($user['uid']);
- Login::sendResetEmail($userObj, true);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => get_lang('CheckYourEmailAndFollowInstructions')]
- );
- exit;
- }
- header('Location: ' . api_get_path(WEB_PATH));
- exit;
- }
- $messageText = Login::handle_encrypted_password($user, true);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'info', false)
- );
- header('Location: ' . api_get_path(WEB_PATH));
- exit;
- }
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::LOST_PASSWORD)) {
- CustomPages::display(
- CustomPages::LOST_PASSWORD,
- ['form' => $form->returnForm()]
- );
- exit;
- }
- $controller = new IndexManager($tool_name);
- $controller->set_login_form();
- $controller->tpl->assign('form', $form->returnForm());
- $template = $controller->tpl->get_template('auth/lost_password.tpl');
- $controller->tpl->display($template);
|