<?php include "include.php"; //delete user handled by include if (url_action("undelete")) { //undelete user db_query("UPDATE users SET is_active = 1, deleted_user = NULL, deleted_date = NULL, endDate = NULL, updated_user = {$_SESSION['user_id']}, updated_date = GETDATE() WHERE id = " . $_GET['id']); url_query_drop("action"); } elseif (url_action("passwd")) { db_query("UPDATE users SET password = NULL WHERE id = " . $_GET['id']); if ($_GET['id'] == $_SESSION['user_id']) { //if is user, make em reset pw now $_SESSION['password'] = true; } else { //otherwise send email emailPassword($_GET['id']); } url_query_drop("action"); } elseif (url_action("invite")) { emailInvite($_GET['id']); url_query_drop("action"); } url_query_require(); echo drawTop(); $r = db_grab('SELECT u.firstname, u.lastname, u.nickname, u.bio' . langExt() . ' bio, u.email, ' . db_pwdcompare("", "u.password") . ' password,
<?php $pageIsPublic = true; include '../include.php'; if ($posting) { if ($r = db_grab('SELECT id FROM users WHERE email = "' . $_POST['email'] . '" AND is_active = 1')) { emailPassword($r); url_change('password_confirm.php'); } else { url_query_add(array('msg' => 'email-not-found', 'email' => $_POST['email'])); //bad email } } elseif (url_id()) { $_SESSION['user_id'] = false; db_query('UPDATE users SET password = NULL WHERE id = ' . $_GET['id'] . ' AND is_active = 1'); if ($email = db_grab('SELECT email FROM users WHERE id = ' . $_GET['id'] . ' AND is_active = 1')) { login($email, '', true); url_change($_SESSION['homepage']); } else { url_change(false); } } else { cookie('last_login'); $_SESSION['user_id'] = false; } echo drawSimpleTop(getString('password_reset')); if (@$_GET['msg'] == 'email-not-found') { echo drawMessage(getString('login_password_reset_msg_email_not_found')); } else { echo drawMessage(getString('login_password_reset_msg')); }