PageRenderTime 53ms CodeModel.GetById 26ms RepoModel.GetById 0ms app.codeStats 0ms

/admin/controller/common/reset.php

https://github.com/glcolin/travel
PHP | 102 lines | 63 code | 24 blank | 15 comment | 16 complexity | 5fa93e879c0983a202aa7e9588e02388 MD5 | raw file
Possible License(s): LGPL-2.1, MPL-2.0-no-copyleft-exception 
    

  1. <?php   
    2. 

  2. class ControllerCommonReset extends Controller {  
    3. 

  3.  
    4. 

  4. 	public function index() {
    5. 

  5. 	 
    6. 

  6. 		$this->document->setTitle('Forgot and Reset Password');
    7. 

  7. 		
    8. 

  8. 		//Load Model
    9. 

  9. 		$this->load->model('common/forgotten');
    10. 

  10. 		
    11. 

  11. 		//Alert and Warning
    12. 

  12. 		if (isset($this->session->data['error_warning'])) {
    13. 

  13. 			$this->data['error_warning'] = $this->session->data['error_warning'];
    14. 

  14. 			unset($this->session->data['error_warning']);
    15. 

  15. 		} else {
    16. 

  16. 			$this->data['error_warning'] = '';
    17. 

  17. 		}
    18. 

  18. 

  19. 		if (isset($this->session->data['success'])) {
    20. 

  20.     		$this->data['success'] = $this->session->data['success'];
    21. 

  21. 			unset($this->session->data['success']);
    22. 

  22. 		} else {
    23. 

  23. 			$this->data['success'] = '';
    24. 

  24. 		}
    25. 

  25. 		
    26. 

  26. 		//check if GET isset
    27. 

  27. 		if(!isset($this->request->get['u']) || !isset($this->request->get['p'])){
    28. 

  28. 			die('<h2>ACCESS DENIED!</h2>');
    29. 

  29. 		}
    30. 

  30. 		
    31. 

  31. 		//set variables
    32. 

  32. 		$id = $this->request->get['u'];
    33. 

  33. 		$password = $this->request->get['p'];
    34. 

  34. 		
    35. 

  35. 		//Check if there is an account associated with the id and password
    36. 

  36. 		if($this->model_common_forgotten->getTotalUserInfoByIDandPassword($id,$password) != 1){
    37. 

  37. 			die('<h2>ACCESS DENIED OR YOUR RESET URL HAS EXPIRED!</h2>');
    38. 

  38. 		}
    39. 

  39. 		
    40. 

  40. 		//Set Data
    41. 

  41. 		$this->data['id'] = $id;
    42. 

  42. 		$this->data['password'] = $password;
    43. 

  43. 		
    44. 

  44. 		//render
    45. 

  45. 		$this->template = 'common/resetpassword.tpl';
    46. 

  46. 		$this->children = array(
    47. 

  47. 			'common/header',
    48. 

  48. 			'common/footer'
    49. 

  49. 		);
    50. 

  50. 				
    51. 

  51. 		$this->response->setOutput($this->render());
    52. 

  52.   	}
    53. 

  53. 	
    54. 

  54. 	public function reset() {
    55. 

  55. 	
    56. 

  56. 		//Load Model
    57. 

  57. 		$this->load->model('common/forgotten');
    58. 

  58. 	
    59. 

  59. 		if ($this->request->server['REQUEST_METHOD'] == 'POST'){
    60. 

  60. 		
    61. 

  61. 			//retrieve POST vars
    62. 

  62. 			$id = $this->request->post['userID'];
    63. 

  63. 			$oldpassword = $this->request->post['oldpassword'];
    64. 

  64. 			$newpassword = $this->request->post['newpassword'];
    65. 

  65. 			$newpassword2 = $this->request->post['newpassword2'];
    66. 

  66. 			
    67. 

  67. 			//Check if there is an account associated with the id and password
    68. 

  68. 			if($this->model_common_forgotten->getTotalUserInfoByIDandPassword($id,$oldpassword) != 1){
    69. 

  69. 				die('<h2>ACCESS DENIED OR YOUR RESET URL HAS EXPIRED!</h2>');
    70. 

  70. 			}
    71. 

  71. 				
    72. 

  72. 			//Check if passwords match
    73. 

  73. 			if( $newpassword != $newpassword2 ){
    74. 

  74. 				$this->session->data['error_warning'] = 'Passwords are not matched!';
    75. 

  75. 				$this->redirect($this->url->link('common/reset','u='.$id.'&p='.$oldpassword));
    76. 

  76. 			}
    77. 

  77. 			
    78. 

  78. 			//Check if only alphbet and digits in password
    79. 

  79. 			if(!ctype_alnum($newpassword)){
    80. 

  80. 				$this->session->data['error_warning'] = 'Password can only contain letters and digits!';
    81. 

  81. 				$this->redirect($this->url->link('common/reset','u='.$id.'&p='.$oldpassword));
    82. 

  82. 			}
    83. 

  83. 			
    84. 

  84. 			//Check if password's length greater or equal to  6
    85. 

  85. 			if(!(strlen($newpassword) >= 6)){
    86. 

  86. 				$this->session->data['error_warning'] = 'Password\'s length must be at least 6!';
    87. 

  87. 				$this->redirect($this->url->link('common/reset','u='.$id.'&p='.$oldpassword));
    88. 

  88. 			}
    89. 

  89. 		
    90. 

  90. 			//Update Password
    91. 

  91. 			$this->model_common_forgotten->updatePassword($id,$oldpassword,$newpassword);
    92. 

  92. 			$this->session->data['success'] = 'Password has been successfully changed!';
    93. 

  93. 			
    94. 

  94. 		}
    95. 

  95. 		
    96. 

  96. 		//return page
    97. 

  97. 		$this->redirect($this->url->link('common/login'));
    98. 

  98. 		
    99. 

  99. 	}
    100. 

  100. 	
    101. 

  101. }
    102. 

  102. ?>
    103.