<?php
include 'templates/header.php';
include 'user.php';
include 'database/polls_fetch.php';
include "utilities/pollgoogle.php";
include_once 'templates/showPolls.php';
$all_groups = getGroupsByUserId(getUserIDbyUsername($_SESSION['username']));
include 'search_poll.php';
foreach ($all_groups as $group) {
showPollGroupStat($group);
}
include 'templates/footer.php';
<?php
include 'database/polls_fetch.php';
include 'templates/header.php';
include 'user.php';
include_once 'templates/showPolls.php';
$all_groups = getAnsweredGroups(getUserIDbyUsername($_SESSION['username']));
include 'search_poll.php';
foreach ($all_groups as $item1) {
showPollGroupStat($item1);
}
include 'templates/footer.php';
}
}
} else {
if ($_SERVER["REQUEST_METHOD"] == "GET") {
$username = $_GET['username'];
$code = $_GET['codePw'];
$_SESSION['tempUsername'] = $username;
echo 'entrou no get';
$stmt = $db->prepare('SELECT * FROM resetPw WHERE userId = :user ');
$stmt->bindParam(':user', getUserIDbyUsername($username), PDO::PARAM_STR);
// $stmt->bindParam(':pword',$pword, PDO::PARAM_STR);
$stmt->execute();
$result = $stmt->fetch();
if (validate_password($code, $result['tempCode'])) {
$stmt = $db->prepare('DELETE FROM resetPw WHERE userId = :user');
$stmt->bindParam(':user', getUserIDbyUsername($username), PDO::PARAM_STR);
$stmt->execute();
} else {
header("location: polls_index.php");
}
}
}
?>
<center>
<div id="registermodal" >
<h1>New password</h1> <br>
<form id="loginform" name="loginform" method="post" action="">
<label for="New password">New password:</label>
$stmt->execute();
$result = $stmt->fetch();
if ($result[0] == $email) {
// Generating Password
$chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#\$%&*_";
/*$password = substr( str_shuffle( $chars ), 0, 8 );*/
$code = substr(str_shuffle($chars), 0, 8);
$link = "http://" . getUrlWithoutPage() . "/change_password_vialink.php?username="******"&codePw=" . $code;
/*
$stmt = $db->prepare('UPDATE Utilizador SET Pword= :temppw WHERE username = :user');
$stmt->bindParam(':temppw',create_hash($password), PDO::PARAM_STR);
$stmt->bindParam(':user',$username, PDO::PARAM_STR);
$stmt->execute();
*/
$stmt = $db->prepare('INSERT INTO resetPw (userId,tempCode) VALUES (?,?)');
$stmt->execute(array(getUserIDbyUsername($username), create_hash($code)));
echo $message = "Hello!\n\r\n\r\nIf you don't have an account on Polly or didn't ask for a new password please ignore this email. \n\r\n\r\nYour new password: "******"\n You can also click the following link to reset the password right now. Note that this link can only be used once, so if you don't reset your password you'll have to use the one we gave you in this email. \n LINK:" . $link;
mail($email, 'New Password', $message, 'From: polly@forms.com');
/// header('Location: polls_index.php');
}
}
}
?>
<center>
<div id="validatemodal" >
<h1>Recover your account</h1> <br>
<form id="loginform" name="loginform" method="POST" action="">
<label for="username"> Enter your username :</label>
<input type="text" name="username" id="username" class="txtfield" tabindex="1">
<?php
include_once 'database/polls_fetch.php';
include_once 'templates/showPolls.php';
//print_r($_POST);
if (isset($_POST['title']) && isset($_POST['username']) && isset($_POST['group']) && $_POST['title'] != '') {
// Fetching variables of the form which travels in URL
global $db;
$title = htmlspecialchars($_POST['title']);
/*$description = htmlspecialchars($_POST['description']);*/
$userId = getUserIDbyUsername($_POST['username']);
$options = $_POST['option'];
//echo 'user name = '.$_POST['username'].' || user id = '.$userId.'<br>';
//select last created group id
$group = getGroupPoll(htmlspecialchars($_POST['group']));
$groupId = $group['groupId'];
//print_r($db->errorInfo());
//adds the poll
if ($title != '') {
$stmt = $db->prepare('INSERT INTO poll(id,title,userId, titleHash, groupId) VALUES (?,?,?,?,?)');
/*$titleHash = create_hash($title);*/
$titleHash = md5('poll' . $title);
$stmt->execute(array(NULL, $title, $userId, $titleHash, $groupId));
//print_r($db->errorInfo()); echo '<br>';
}
//else echo 'titleVazio<br>';
//verifies if all the options are filled
foreach ($options as $option) {
if ($option == '') {
//echo 'optionVazia<br>';
} else {
<?php
include 'templates/header.php';
include 'database/polls_fetch.php';
if (isset($_POST['create']) && isset($_POST['title']) && isset($_POST['description'])) {
// Fetching variables of the form which travels in URL
global $db;
$title = htmlspecialchars($_POST['title']);
$description = htmlspecialchars($_POST['description']);
$userId = getUserIDbyUsername($_SESSION['username']);
//adds the poll
if ($title != '') {
if ($description == '') {
$description = "No description";
}
$stmt = $db->prepare('INSERT INTO groupPoll(groupId,title,description,userId,visibility, titleHash) VALUES (?,?,?,?,?,?)');
/*$titleHash = create_hash($title);*/
$titleHash = md5('groupPoll' . $title . $description);
$stmt->execute(array(NULL, $title, $description, $userId, "Public", $titleHash));
print_r($db->errorInfo());
header("Location:new_poll2.php?questionnaire={$titleHash}");
} else {
header("Location: new_poll_group.php");
}
}
include 'templates/footer.php';
?>
<?php
include 'templates/header.php';
include 'database/polls_fetch.php';
include_once 'utilities/getPollURL.php';
include_once 'templates/showPolls.php';
$all_polls = getPollByUser(getUserIDbyUsername($_SESSION['username']));
$all_groups = getPollGroupByUser(getUserIDbyUsername($_SESSION['username']));
include 'search_poll.php';
foreach ($all_groups as $group) {
showPollGroupManage($group);
}
include 'templates/footer.php';
