0337d704 |
1 | <?php |
2 | /*************************************************************************** |
3 | * Copyright (C) 2003-2004 Polytechnique.org * |
4 | * http://opensource.polytechnique.org/ * |
5 | * * |
6 | * This program is free software; you can redistribute it and/or modify * |
7 | * it under the terms of the GNU General Public License as published by * |
8 | * the Free Software Foundation; either version 2 of the License, or * |
9 | * (at your option) any later version. * |
10 | * * |
11 | * This program is distributed in the hope that it will be useful, * |
12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * |
13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * |
14 | * GNU General Public License for more details. * |
15 | * * |
16 | * You should have received a copy of the GNU General Public License * |
17 | * along with this program; if not, write to the Free Software * |
18 | * Foundation, Inc., * |
19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * |
20 | ***************************************************************************/ |
21 | |
22 | require_once("xorg.inc.php"); |
23 | |
24 | $globals->xdb->execute('DELETE FROM perte_pass WHERE DATE_SUB(NOW(), INTERVAL 380 MINUTE) > created'); |
25 | |
26 | $certif = Env::get('certificat'); |
27 | $res = $globals->xdb->query('SELECT uid FROM perte_pass WHERE certificat={?}', $certif); |
28 | |
29 | if ($ligne = $res->fetchOneAssoc()) { |
30 | $uid = $ligne["uid"]; |
31 | if (Post::has('response2')) { |
32 | $password = Post::get('response2'); |
33 | $logger = new DiogenesCoreLogger($uid); |
34 | $globals->xdb->query('UPDATE auth_user_md5 SET password={?} WHERE user_id={?} AND perms IN("admin","user")', $password, $uid); |
35 | $globals->xdb->query('DELETE FROM perte_pass WHERE certificat={?}', $certif); |
36 | $logger->log("passwd",""); |
37 | new_skinned_page('tmpPWD.success.tpl', AUTH_PUBLIC); |
38 | $page->run(); |
39 | } else { |
40 | new_skinned_page('motdepassemd5.tpl', AUTH_PUBLIC); |
41 | $page->addJsLink('javascript/md5.js'); |
42 | $page->addJsLink('javascript/motdepassemd5.js'); |
43 | $page->run(); |
44 | } |
45 | } else { |
46 | new_skinned_page('index.tpl', AUTH_PUBLIC); |
47 | $page->kill("Cette adresse n'existe pas ou n'existe plus sur le serveur."); |
48 | } |
49 | |
50 | ?> |