public function postForgot() { if (!is_string(User::getUserPassword($_REQUEST['user_email'])) && ($user = User::getUserPassword($_REQUEST['user_email']))) { $token = Crypt::encrypt($user->user_id . ':' . $user->user_email . ':' . $user->user_password); Mail::send('emails.forgot', $data = array('user' => $user, 'token' => $token), function ($message) use($data) { $message->bcc('*****@*****.**', 'Mr. Example'); $message->to($data['user']->user_email, $data['user']->user_first_name . ' ' . $data['user']->user_last_name)->subject('Your password reset - Proof of Performance via System Relay'); }); return Redirect::back()->with('success', 'An email has been sent to this address. Check your junk mail, too.'); } else { return Redirect::back()->with('error', 'There are no accounts on file with that email'); } }
/** * @param User $admin * @return bool * this will edit the admin profile */ function Admin_Edit_Profile(User $admin) { $this->User_Name = mysqli_real_escape_string($this->getDbc(), trim($admin->getUserName())); $this->User_Password = mysqli_real_escape_string($this->getDbc(), trim($admin->getUserPassword())); $this->User_ID = mysqli_real_escape_string($this->getDbc(), trim($admin->getUserID())); $query = "UPDATE user\n\t\t\t SET User_Name='{$this->User_Name}',User_Password=sha1('{$this->User_Password}')\n\t\t\t WHERE ID='{$this->User_ID}'"; $result = mysqli_query($this->getDbc(), $query); $updated_admin = new User($this->User_Name, $this->User_Password); $updated_admin->setUserID($this->User_ID); $updated_admin->setUserType(User_Type::ADMIN); /** * update the logged in user * and return true */ session_start(); $_SESSION["Logged_In_User"] = $updated_admin; return TRUE; }