PageRenderTime 48ms CodeModel.GetById 13ms RepoModel.GetById 0ms app.codeStats 1ms

/workflow/engine/methods/login/retrivePassword.php

https://bitbucket.org/ferOnti/processmaker
PHP | 118 lines | 101 code | 13 blank | 4 comment | 13 complexity | ecee5215f3174c4448404ba92ce6a2e3 MD5 | raw file
    

  1. <?php
    2. 

  2. $data = $_POST['form'];
    3. 

  3. global $RBAC;
    4. 

  4. require_once PATH_RBAC."model/RbacUsers.php";
    5. 

  5. G::LoadClass('pmFunctions');
    6. 

  6. require_once 'classes/model/Users.php';
    7. 

  7. G::LoadClass("system");
    8. 

  8. 

  9. $rbacUser = new RbacUsers();
    10. 

  10. $user = new Users();
    11. 

  11. 

  12. $userData = $rbacUser->getByUsername($data['USR_USERNAME']);
    13. 

  13. 

  14. if ($userData['USR_EMAIL'] != '' && $userData['USR_EMAIL'] === $data['USR_EMAIL']) {
    15. 

  15.     $aSetup = getEmailConfiguration();
    16. 

  16.     if (count($aSetup) == 0 || !isset($aSetup['MESS_ENGINE'])) {
    17. 

  17.         G::SendTemporalMessage ('ID_EMAIL_ENGINE_IS_NOT_ENABLED', "warning");
    18. 

  18.         G::header('location: forgotPassword');
    19. 

  19.         die;
    20. 

  20.     }
    21. 

  21. 

  22.     $newPass = G::generate_password();
    23. 

  23. 

  24.     $aData['USR_UID']      = $userData['USR_UID'];
    25. 

  25.     $aData['USR_PASSWORD'] = md5($newPass);
    26. 

  26.     /* **Save after sending the mail
    27. 

  27.       $rbacUser->update($aData);
    28. 

  28.       $user->update($aData);
    29. 

  29.     */
    30. 

  30.     $sFrom    = ($aSetup['MESS_ACCOUNT'] != '' ? $aSetup['MESS_ACCOUNT'] . ' ' : '') . '<' . $aSetup['MESS_ACCOUNT'] . '>';
    31. 

  31.     $sSubject = G::LoadTranslation('ID_RESET_PASSWORD').' - ProcessMaker' ;
    32. 

  32.     $msg = '<h3>ProcessMaker Forgot password Service</h3>';
    33. 

  33.     $msg .='<p>'.G::LoadTranslation('ID_YOUR_USERMANE_IS').' :  <strong>'.$userData['USR_USERNAME'].'</strong></p>';
    34. 

  34.     $msg .='<p>'.G::LoadTranslation('ID_YOUR_PASSWORD_IS').' :  <strong>'.$newPass.'</strong></p>';
    35. 

  35.     switch ($aSetup['MESS_ENGINE']) {
    36. 

  36.         case 'MAIL':
    37. 

  37.             $engine = G::LoadTranslation('ID_MESS_ENGINE_TYPE_1');
    38. 

  38.             break;
    39. 

  39.         case 'PHPMAILER':
    40. 

  40.             $engine = G::LoadTranslation('ID_MESS_ENGINE_TYPE_2');
    41. 

  41.             break;
    42. 

  42.         case 'OPENMAIL':
    43. 

  43.             $engine = G::LoadTranslation('ID_MESS_ENGINE_TYPE_3');
    44. 

  44.             break;
    45. 

  45.     }
    46. 

  46. 

  47.     $sBody = "
    48. 

  48.   <table style=\"background-color: white; font-family: Arial,Helvetica,sans-serif; color: black; font-size: 11px; text-align: left;\" cellpadding='10' cellspacing='0' width='100%'>
    49. 

  49.   <tbody><tr><td><img id='logo' src='http://".$_SERVER['SERVER_NAME']."/images/processmaker.logo.jpg' /></td></tr>
    50. 

  50.   <tr><td style='font-size: 14px;'>$msg</td></tr>
    51. 

  51.   <tr><td style='vertical-align:middel;'>
    52. 

  52.   <br /><hr><b>This Business Process is powered by ProcessMaker ver. ".System::getVersion().".<b><br />
    53. 

  53.   <a href='http://www.processmaker.com' style='color:#c40000;'>www.processmaker.com</a><br /></td>
    54. 

  54.   </tr></tbody></table>";
    55. 

    56. 

  56.     G::LoadClass('spool');
    57. 

  57.     $oSpool = new spoolRun();
    58. 

  58. 

  59.     $oSpool->setConfig( array(
    60. 

  60.         'MESS_ENGINE'   => $aSetup['MESS_ENGINE'],
    61. 

  61.         'MESS_SERVER'   => $aSetup['MESS_SERVER'],
    62. 

  62.         'MESS_PORT'     => $aSetup['MESS_PORT'],
    63. 

  63.         'MESS_ACCOUNT'  => $aSetup['MESS_ACCOUNT'],
    64. 

  64.         'MESS_PASSWORD' => $aSetup['MESS_PASSWORD'],
    65. 

  65.         'SMTPAuth'      => $aSetup['MESS_RAUTH'],
    66. 

  66.         'SMTPSecure'    => $aSetup['SMTPSecure']
    67. 

  67.     ));
    68. 

  68. 

  69.     $passwd = $oSpool->config['MESS_PASSWORD'];
    70. 

  70.     $passwdDec = G::decrypt($passwd,'EMAILENCRYPT');
    71. 

  71.     $auxPass = explode('hash:', $passwdDec);
    72. 

  72.     if (count($auxPass) > 1) {
    73. 

  73.         if (count($auxPass) == 2) {
    74. 

  74.             $passwd = $auxPass[1];
    75. 

  75.         } else {
    76. 

  76.             array_shift($auxPass);
    77. 

  77.             $passwd = implode('', $auxPass);
    78. 

  78.         }
    79. 

  79.     }
    80. 

  80. 

  81.     $oSpool->config['MESS_PASSWORD'] = $passwd;
    82. 

  82. 

  83.     $oSpool->create(array(
    84. 

  84.         'msg_uid'          => '',
    85. 

  85.         'app_uid'          => '',
    86. 

  86.         'del_index'        => 0,
    87. 

  87.         'app_msg_type'     => 'TEST',
    88. 

  88.         'app_msg_subject'  => $sSubject,
    89. 

  89.         'app_msg_from'     => $sFrom,
    90. 

  90.         'app_msg_to'       => $data['USR_EMAIL'],
    91. 

  91.         'app_msg_body'     => $sBody,
    92. 

  92.         'app_msg_cc'       => '',
    93. 

  93.         'app_msg_bcc'      => '',
    94. 

  94.         'app_msg_attach'   => '',
    95. 

  95.         'app_msg_template' => '',
    96. 

  96.         'app_msg_status'   => 'pending',
    97. 

  97.         'app_msg_attach'=>''
    98. 

  98.     ));
    99. 

  99. 

  100.     try {
    101. 

  101.         $oSpool->sendMail();
    102. 

  102.         $rbacUser->update($aData);
    103. 

  103.         $user->update($aData);
    104. 

  104.         G::header  ("location: login.html");
    105. 

  105.         G::SendTemporalMessage ('ID_NEW_PASSWORD_SENT', "info");
    106. 

  106.     } catch (phpmailerException $e) {
    107. 

  107.         G::header  ("location: login.html");
    108. 

  108.         G::SendTemporalMessage (G::LoadTranslation('MISSING_OR_NOT_CONFIGURED_SMTP'), "warning", 'string');
    109. 

  109.     } catch (Exception $e) {
    110. 

  110.         G::header  ("location: login.html");
    111. 

  111.         G::SendTemporalMessage ($e->getMessage(), "warning", 'string');
    112. 

  112.     }
    113. 

  113. } else {
    114. 

  114.     $msg = G::LoadTranslation('ID_USER') . ' ' . $data['USR_USERNAME'] . ' '. G::LoadTranslation('ID_IS_NOT_REGISTERED');
    115. 

  115.     G::SendTemporalMessage ($msg, "warning", 'string');
    116. 

  116.     G::header('location: forgotPassword');
    117. 

  117. }
    118. 

  118. 

  119.