yetangitu/Oinktube
1
0
Fork 0
mirror of https://github.com/DanielnetoDotCom/YouPHPTube synced 2025-10-06 03:50:04 +02:00
Code Issues Releases Wiki Activity
Oinktube/objects/userRecoverPass.php
Daniel Neto a615073570 Edit reset password email
2024-09-08 21:58:10 -03:00

160 lines
7.1 KiB
PHP
Raw Blame History

<?php
require_once __DIR__ . DIRECTORY_SEPARATOR . 'autoload.php';
global $global, $config;
$global['ignoreAllCache'] = 1;
if (!isset($global['systemRootPath'])) {
require_once '../videos/configuration.php';
}
require_once $global['systemRootPath'] . 'objects/user.php';
$user = new User(0, $_REQUEST['user'], false);
if (!(!empty($_REQUEST['user']) && !empty($_REQUEST['recoverpass']))) {
_error_log("RecoverPass start user={$_POST['user']} " .' IP='.getRealIpAddr().' '. ' Line='.__LINE__.' '.$_SERVER['HTTP_USER_AGENT'] . json_encode(debug_backtrace(DEBUG_BACKTRACE_IGNORE_ARGS)));
$obj = new stdClass();
$obj->user = $_REQUEST['user'];
$obj->captcha = $_REQUEST['captcha'];
$obj->reloadCaptcha = false;
$obj->session_id = session_id();
/*
$obj->post = $_POST;
$obj->get = $_GET;
$obj->input = file_get_contents("php://input");
$obj->request = $_REQUEST;
*/
header('Content-Type: application/json');
if (empty($user->getStatus())) {
$obj->error = __("User not found");
die(json_encode($obj));
}
if ($user->getStatus() !== 'a') {
$obj->error = __("The user is not active");
die(json_encode($obj));
}
if (!empty($user->getEmail())) {
$recoverPass = $user->setRecoverPass();
if (empty($_REQUEST['captcha'])) {
$obj->error = __("Captcha is empty");
} else {
require_once 'captcha.php';
$valid = Captcha::validation($_REQUEST['captcha']);
if ($valid) {
if ($user->save()) {
if (empty($advancedCustomUser)) {
$advancedCustomUser = AVideoPlugin::getObjectData("CustomizeUser");
}
$url = "{$global['webSiteRootURL']}recoverPass";
$url = addQueryStringParameter($url, 'user', $_REQUEST['user']);
$url = addQueryStringParameter($url, 'recoverpass', $recoverPass);
$to = $user->getEmail();
$subject = __($advancedCustomUser->recoverPassSubject) . ' ' . $config->getWebSiteTitle();
$message = __($advancedCustomUser->recoverPassText) . "<br><a href='{$url}' class='button blue-button'>" . __("Reset password") . "</a><br>IP: " . getRealIpAddr();
$fromEmail = $config->getContactEmail();
$resp = sendSiteEmail($to, $subject, $message, $fromEmail);
//send the message, check for errors
if (!$resp) {
$obj->error = __("Message could not be sent") . " " . $mail->ErrorInfo;
} else {
$obj->success = __("Message sent");
}
} else {
$obj->error = __("Recover password could not be saved!");
}
} else {
$obj->error = __("Your code is not valid");
$obj->reloadCaptcha = true;
}
}
} else {
$obj->error = __("You do not have an e-mail");
}
die(json_encode($obj));
} else {
_error_log("RecoverPass start user={$_POST['user']} " .' IP='.getRealIpAddr().' '. ' Line='.__LINE__.' '.$_SERVER['HTTP_USER_AGENT'] . json_encode(debug_backtrace(DEBUG_BACKTRACE_IGNORE_ARGS)));
$readonly = '';
if ($user->getRecoverPass() !== $_REQUEST['recoverpass']) {
//forbiddenPage('The recover pass does not match!');
$recoverPass = '';
} else {
$readonly = 'readonly';
$recoverPass = $user->getRecoverPass();
}
$_page = new Page(array('Recover Password'));
?>
<div class="container">
<form action="" method="post" id="recoverPassForm">
<div class="panel panel-default">
<div class="panel-heading">
<h2><?php echo __("Recover password!"); ?></h2>
</div>
<div class="panel-body">
<div class="row">
<label class="col-md-4 control-label"><?php echo __("User"); ?></label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"><i class="fa-solid fa-user"></i></span>
<input name="user" class="form-control" type="text" value="<?php echo $user->getUser(); ?>" readonly>
</div>
</div>
<label class="col-md-4 control-label"><?php echo __("Recover Password"); ?></label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"><i class="glyphicon glyphicon-lock"></i></span>
<input name="recoverPassword" class="form-control" type="text" value="<?php echo $recoverPass; ?>" <?php echo $readonly; ?>>
</div>
</div>
<label class="col-md-4 control-label"><?php echo __("New Password"); ?></label>
<div class="col-md-8 inputGroupContainer">
<?php getInputPassword("newPassword", 'class="form-control" required="required" autocomplete="off"', __("New Password")); ?>
</div>
<label class="col-md-4 control-label"><?php echo __("Confirm New Password"); ?></label>
<div class="col-md-8 inputGroupContainer">
<?php getInputPassword("newPasswordConfirm", 'class="form-control" required="required" autocomplete="off"', __("Confirm New Password")); ?>
</div>
</div>
</div>
<div class="panel-footer">
<button type="submit" class="btn btn-primary btn-block">
<i class="fa-regular fa-floppy-disk"></i>
<?php echo __("Save Password"); ?>
</button>
</div>
</div>
</form>
</div>
<script>
$(document).ready(function() {
$('#recoverPassForm').submit(function(evt) {
evt.preventDefault();
modal.showPleaseWait();
$.ajax({
url: webSiteRootURL + 'objects/userRecoverPassSave.json.php',
data: $('#recoverPassForm').serializeArray(),
type: 'post',
success: function(response) {
modal.hidePleaseWait();
if (!response.error) {
avideoAlert("<?php echo __("Congratulations!"); ?>", "<?php echo __("Your new password has been set!"); ?>", "success");
} else {
avideoAlert("<?php echo __("Your new password could not be set!"); ?>", response.error, "error");
}
}
});
return false;
});
});
</script>
<?php
$_page->print();
exit;
}
Reference in a new issue View git blame Copy permalink