123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198 |
- <?php
- /* For licensing terms, see /license.txt */
- /**
- * SCRIPT PURPOSE :.
- *
- * This script allows users to retrieve the password of their profile(s)
- * on the basis of their e-mail address. The password is send via email
- * to the user.
- *
- * Special case : If the password are encrypted in the database, we have
- * to generate a new one.
- *
- * @todo refactor, move relevant functions to code libraries
- *
- * @package chamilo.auth
- */
- require_once __DIR__.'/../inc/global.inc.php';
- // Custom pages
- // Had to move the form handling in here, because otherwise there would
- // already be some display output.
- // Forbidden to retrieve the lost password
- if (api_get_setting('allow_lostpassword') == 'false') {
- api_not_allowed(true);
- }
- $reset = Request::get('reset');
- $userId = Request::get('id');
- $this_section = SECTION_CAMPUS;
- $tool_name = get_lang('LostPassword');
- if ($reset && $userId) {
- $messageText = Login::reset_password($reset, $userId, true);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'info', false)
- );
- header('Location: '.api_get_path(WEB_PATH));
- exit;
- }
- $form = new FormValidator('lost_password');
- $form->addHeader($tool_name);
- $form->addText(
- 'user',
- [
- get_lang('LoginOrEmailAddress'),
- get_lang('EnterEmailUserAndWellSendYouPassword'),
- ],
- true
- );
- $captcha = api_get_setting('allow_captcha');
- $allowCaptcha = $captcha === 'true';
- if ($allowCaptcha) {
- $ajax = api_get_path(WEB_AJAX_PATH).'form.ajax.php?a=get_captcha';
- $options = [
- 'width' => 220,
- 'height' => 90,
- 'callback' => $ajax.'&var='.basename(__FILE__, '.php'),
- 'sessionVar' => basename(__FILE__, '.php'),
- 'imageOptions' => [
- 'font_size' => 20,
- 'font_path' => api_get_path(SYS_FONTS_PATH).'opensans/',
- 'font_file' => 'OpenSans-Regular.ttf',
- //'output' => 'gif'
- ],
- ];
- $captcha_question = $form->addElement(
- 'CAPTCHA_Image',
- 'captcha_question',
- '',
- $options
- );
- $form->addElement('static', null, null, get_lang('ClickOnTheImageForANewOne'));
- $form->addElement('text', 'captcha', get_lang('EnterTheLettersYouSee'), ['size' => 40]);
- $form->addRule('captcha', get_lang('EnterTheCharactersYouReadInTheImage'), 'required', null, 'client');
- $form->addRule('captcha', get_lang('TheTextYouEnteredDoesNotMatchThePicture'), 'CAPTCHA', $captcha_question);
- }
- $form->addButtonSend(get_lang('Send'));
- if ($form->validate()) {
- $values = $form->exportValues();
- $user = Login::get_user_accounts_by_username($values['user']);
- if (!$user) {
- $messageText = get_lang('NoUserAccountWithThisEmailAddress');
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::LOST_PASSWORD)) {
- CustomPages::display(
- CustomPages::LOST_PASSWORD,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'error', false)
- );
- header('Location: '.api_get_self());
- exit;
- }
- if ('true' === api_get_plugin_setting('whispeakauth', WhispeakAuthPlugin::SETTING_ENABLE)) {
- WhispeakAuthPlugin::deleteEnrollment($user['uid']);
- }
- $passwordEncryption = api_get_configuration_value('password_encryption');
- if ($passwordEncryption === 'none') {
- $messageText = Login::send_password_to_user($user, true);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'info', false)
- );
- header('Location: '.api_get_path(WEB_PATH));
- exit;
- }
- if ($user['auth_source'] == 'extldap') {
- Display::addFlash(
- Display::return_message(get_lang('CouldNotResetPasswordBecauseLDAP'), 'info', false)
- );
- header('Location: '.api_get_path(WEB_PATH));
- exit;
- }
- $userResetPasswordSetting = api_get_setting('user_reset_password');
- if ($userResetPasswordSetting === 'true') {
- $userObj = api_get_user_entity($user['uid']);
- Login::sendResetEmail($userObj);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => get_lang('CheckYourEmailAndFollowInstructions')]
- );
- exit;
- }
- header('Location: '.api_get_path(WEB_PATH));
- exit;
- }
- $messageText = Login::handle_encrypted_password($user, true);
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::INDEX_UNLOGGED)) {
- CustomPages::display(
- CustomPages::INDEX_UNLOGGED,
- ['info' => $messageText]
- );
- exit;
- }
- Display::addFlash(
- Display::return_message($messageText, 'info', false)
- );
- header('Location: '.api_get_path(WEB_PATH));
- exit;
- }
- if (CustomPages::enabled() && CustomPages::exists(CustomPages::LOST_PASSWORD)) {
- CustomPages::display(
- CustomPages::LOST_PASSWORD,
- ['form' => $form->returnForm()]
- );
- exit;
- }
- $tpl = new Template(null);
- $tpl->assign('content', $form->toHtml());
- $tpl->display_one_col_template();
|