$sql .= "CMS_USER_NAME, ";
$sql .= "CMS_USER_EMAIL ";
$sql .= "FROM CMS_USER ";
$sql .= "WHERE ";
$sql .= "CMS_USER_LOGIN='******' AND ";
$sql .= "CMS_USER_EMAIL='" . $db->real_eacape_string($email) . "' AND ";
$sql .= "CMS_USER_STATUS='1' AND ";
$sql .= "CMS_USER_ACTIVEDATE <= NOW() AND ";
$sql .= "(CMS_USER_EXPIRYDATE IS NULL OR CMS_USER_EXPIRYDATE >= NOW()) ";
$db = connectDB();
$sql = sprintf("SELECT ID, CMS_USER_NAME, CMS_USER_EMAIL FROM CMS_USER WHERE CMS_USER_LOGIN='******' AND CMS_USER_EMAIL='%s' AND CMS_USER_STATUS = 1 AND CMS_USER_ACTIVEDATE <= NOW() AND (CMS_USER_EXPIRYDATE IS NULL OR CMS_USER_EXPIRYDATE >= NOW())", $db->real_escape_string($name), $db->real_escape_string($email));
$result = $db->query($sql) or die($sql);
// Check user existed
if ($result->num_rows > 0) {
$row = $result->fetch_array();
// Reset password
$newPassword = GeneratePassword();
// Send new password to the email
SendForgotPasswordEmail($row["CMS_USER_EMAIL"], $row["CMS_USER_NAME"], $newPassword);
// Update table
$sql = "UPDATE CMS_USER SET CMS_USER_PASS = MD5('" . $newPassword . "') WHERE ID = " . $row["ID"];
$db->query($sql);
// Return sucess notification
$responseStatus = 1;
} else {
$responseStatus = -1;
$responseMsg = CONST_ERROR_MESSAGE_NONEXISTED_USERNAME_OR_EMAIL;
}
}
// Echo result
echo json_encode(array("status" => $responseStatus, "responseMsg" => $responseMsg));
echo Login($params['email'], $params['password']);
} else {
if ($request == 'logout') {
Logout();
} else {
if ($request == 'signUp') {
echo SignUp($params['userName'], $params['emailAddress'], $params['password']);
} else {
if ($request == 'updateName') {
SaveUserName($_SESSION['UserID'], $params['userName']);
} else {
if ($request == 'updatePassword') {
echo SaveUserPassword($_SESSION['UserID'], $params['newPassword'], $params['oldPassword']);
} else {
if ($request == 'forgotPassword') {
SendForgotPasswordEmail($params['email']);
} else {
if ($_POST['r'] == 'updateForgottenPassword') {
echo UpdateForgottenPassword($_POST['newPassword']);
}
}
}
}
}
}
}
}
}
}
}
}
