Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once("lib/maininclude.php");
- function genRandomString() {
- $length = 8;
- $characters = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGEFGHIJKLMNOPQRSTUWXYZ";
- $string = "";
- for ($p = 0; $p < $length; $p++)
- {
- $string .= $characters[mt_rand(0, strlen($characters))];
- }
- return $string;
- }
- function resetPasswd($sel_reset,$sel_key)
- {
- // Resetting using username
- if ($sel_key == "reg_username" )
- {
- $a = 'username';
- $sql_reset_pass = "SELECT * FROM users WHERE $a = '$sel_reset'";
- $reset_result = mysql_query($sql_reset_pass);
- $reset_rows = mysql_num_rows($reset_result);
- $reset_info = mysql_fetch_array($reset_result);
- if ( $reset_rows == NULL )
- {
- return false;
- }
- else
- {
- $new_pass = genRandomString();
- // SEND UPDATE WITH MD5 -> SQL
- $new_pass_md = md5($new_pass);
- mysql_query("UPDATE users SET password = '$new_pass_md'
- WHERE $a = '$sel_reset'");
- // SEND EMAIL
- $message = "Hei!\nSalasananne HNs sivuille on resetoitu ja ".
- "teille on generoitu uusi salasana joka on: " . $new_pass;
- $subject = "HNS - Salasana resetoitu";
- $to = $reset_info['email'];
- mail($to,$subject,$message);
- return true;
- }
- }
- // Resetting using email
- if ($sel_key == "reg_email" )
- {
- $a = 'email';
- $sql_reset_pass = "SELECT * FROM users WHERE $a = '$sel_reset'";
- $reset_result = mysql_query($sql_reset_pass);
- $reset_rows = mysql_num_rows($reset_result);
- $reset_info = mysql_fetch_array($reset_result);
- if ( $reset_rows == NULL )
- {
- return false;
- }
- else
- {
- $new_pass = genRandomString();
- // SEND UPDATE WITH MD5 -> SQL
- $new_pass_md = md5($new_pass);
- mysql_query("UPDATE users SET password = '$new_pass_md'
- WHERE $a = '$sel_reset'");
- // SEND EMAIL
- $message = "Hei!\nSalasananne HNs sivuille on resetoitu ja ".
- "teille on generoitu uusi salasana joka on: " . $new_pass;
- $subject = "HNS - Salasana resetoitu";
- $to = $reset_info['email'];
- mail($to,$subject,$message);
- return true;
- }
- }
- }
- function main()
- {
- printHeader("HNs -Salasana unohtunut?");
- print "<div id=\"content\"><br />";
- $sel_reset = "";
- if (isset($_POST["reg_username"]) && $_POST["reg_email"] == "")
- {
- $sel_reset = $_POST["reg_username"];
- $sel_key = array_keys($_POST);
- $sel_key = $sel_key[0];
- $sql_acc_info = mysql_query("SELECT * FROM users WHERE username = '$sel_reset'");
- if (!$sql_acc_info) {
- die('Could not query:' . mysql_error());
- }
- $account_info = mysql_fetch_array($sql_acc_info);
- }
- if (isset($_POST["reg_email"]) && $_POST["reg_username"] == "")
- {
- $sel_reset = $_POST["reg_email"];
- $sel_key = array_keys($_POST);
- $sel_key = $sel_key[1];
- $sql_acc_info = mysql_query("SELECT * FROM users WHERE email = '$sel_reset'");
- if (!$sql_acc_info) {
- die('Could not query:' . mysql_error());
- }
- $account_info = mysql_fetch_array($sql_acc_info);
- }
- if (!resetPasswd($sel_reset,$sel_key))
- {
- print <<<EOD
- <h1> Salasana unohtunut? </h1>
- <form action="" method="post">
- <table>
- <tr>
- <th colspan="3"> Resetoi salasana antamalla käyttäjänimi tai sähköposti</th>
- </tr>
- <tr>
- <td>Käyttäjänimi:
- </td><td>
- <input type="text" name="reg_username" maxlenght="20"/>
- </td>
- <td rowspan="2"><input type="submit" value="Resetoi!"></td>
- </tr>
- <tr>
- <td>Sähköposti:
- </td><td>
- <input type="text" name="reg_email" maxlenght="50"/>
- </td>
- </tr>
- </table>
- </form>
- EOD;
- }
- else
- {
- print "\n<h1> Onnistui! </h1> \n<p> ".$account_info['username']." : Tilin uusi salasana".
- "lähetetty osoitteeseen: ".$account_info['email']."</p>";
- }
- print "\n</div>";
- printFooter();
- }
- $MYSQL_CONNECTION = Database::connect($MYSQL_SERVER, $MYSQL_LOGINNAME, $MYSQL_PASSWORD);
- Database::selectDb($MYSQL_DATABASE, $MYSQL_CONNECTION);
- main();
- mysql_close($MYSQL_CONNECTION);
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
