[platal.git] / htdocs / tmpPWD.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2006 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

require_once("xorg.inc.php");

$globals->xdb->execute('DELETE FROM perte_pass WHERE DATE_SUB(NOW(), INTERVAL 380 MINUTE) > created');

$certif = Env::get('certificat');
$res    = $globals->xdb->query('SELECT uid FROM perte_pass WHERE certificat={?}', $certif);

if ($ligne = $res->fetchOneAssoc())  {
    $uid = $ligne["uid"];
    if (Post::has('response2')) {
        $password = Post::get('response2');
        $logger   = new DiogenesCoreLogger($uid);
        $globals->xdb->query('UPDATE auth_user_md5 SET password={?} WHERE user_id={?} AND perms IN("admin","user")', $password, $uid);
        $globals->xdb->query('DELETE FROM perte_pass WHERE certificat={?}', $certif);
        $logger->log("passwd","");
        new_skinned_page('tmpPWD.success.tpl', AUTH_PUBLIC);
        $page->run();
    } else {
        new_skinned_page('motdepasse.tpl', AUTH_PUBLIC);
        $page->addJsLink('javascript/motdepasse.js');
        $page->run();
    }
} else {
    new_skinned_page('index.tpl', AUTH_PUBLIC);
    $page->kill("Cette adresse n'existe pas ou n'existe plus sur le serveur.");
}

?>
Commit	Line	Data
0337d704	1	<?php
0337d704	2	/***************************************************************************
50a40a33	3	* Copyright (C) 2003-2006 Polytechnique.org *
0337d704	4	* http://opensource.polytechnique.org/ *
	5	* *
	6	* This program is free software; you can redistribute it and/or modify *
	7	* it under the terms of the GNU General Public License as published by *
	8	* the Free Software Foundation; either version 2 of the License, or *
	9	* (at your option) any later version. *
	10	* *
	11	* This program is distributed in the hope that it will be useful, *
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	14	* GNU General Public License for more details. *
	15	* *
	16	* You should have received a copy of the GNU General Public License *
	17	* along with this program; if not, write to the Free Software *
	18	* Foundation, Inc., *
	19	* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
	20	***************************************************************************/
	21
	22	require_once("xorg.inc.php");
	23
	24	$globals->xdb->execute('DELETE FROM perte_pass WHERE DATE_SUB(NOW(), INTERVAL 380 MINUTE) > created');
	25
	26	$certif = Env::get('certificat');
	27	$res = $globals->xdb->query('SELECT uid FROM perte_pass WHERE certificat={?}', $certif);
	28
	29	if ($ligne = $res->fetchOneAssoc()) {
	30	$uid = $ligne["uid"];
	31	if (Post::has('response2')) {
	32	$password = Post::get('response2');
	33	$logger = new DiogenesCoreLogger($uid);
	34	$globals->xdb->query('UPDATE auth_user_md5 SET password={?} WHERE user_id={?} AND perms IN("admin","user")', $password, $uid);
	35	$globals->xdb->query('DELETE FROM perte_pass WHERE certificat={?}', $certif);
	36	$logger->log("passwd","");
	37	new_skinned_page('tmpPWD.success.tpl', AUTH_PUBLIC);
	38	$page->run();
	39	} else {
46bde4d1	40	new_skinned_page('motdepasse.tpl', AUTH_PUBLIC);
46bde4d1	41	$page->addJsLink('javascript/motdepasse.js');
0337d704	42	$page->run();
	43	}
	44	} else {
	45	new_skinned_page('index.tpl', AUTH_PUBLIC);
	46	$page->kill("Cette adresse n'existe pas ou n'existe plus sur le serveur.");
	47	}
	48
	49	?>