Example #1
0
<?php

include "include.php";
//delete user handled by include
if (url_action("undelete")) {
    //undelete user
    db_query("UPDATE users SET is_active = 1, deleted_user = NULL, deleted_date = NULL, endDate = NULL, updated_user = {$_SESSION['user_id']}, updated_date = GETDATE() WHERE id = " . $_GET['id']);
    url_query_drop("action");
} elseif (url_action("passwd")) {
    db_query("UPDATE users SET password = NULL WHERE id = " . $_GET['id']);
    if ($_GET['id'] == $_SESSION['user_id']) {
        //if is user, make em reset pw now
        $_SESSION['password'] = true;
    } else {
        //otherwise send email
        emailPassword($_GET['id']);
    }
    url_query_drop("action");
} elseif (url_action("invite")) {
    emailInvite($_GET['id']);
    url_query_drop("action");
}
url_query_require();
echo drawTop();
$r = db_grab('SELECT 
		u.firstname,
		u.lastname,
		u.nickname, 
		u.bio' . langExt() . ' bio, 
		u.email,
		' . db_pwdcompare("", "u.password") . ' password,
Example #2
0
<?php

$pageIsPublic = true;
include '../include.php';
if ($posting) {
    if ($r = db_grab('SELECT id FROM users WHERE email = "' . $_POST['email'] . '" AND is_active = 1')) {
        emailPassword($r);
        url_change('password_confirm.php');
    } else {
        url_query_add(array('msg' => 'email-not-found', 'email' => $_POST['email']));
        //bad email
    }
} elseif (url_id()) {
    $_SESSION['user_id'] = false;
    db_query('UPDATE users SET password = NULL WHERE id = ' . $_GET['id'] . ' AND is_active = 1');
    if ($email = db_grab('SELECT email FROM users WHERE id = ' . $_GET['id'] . ' AND is_active = 1')) {
        login($email, '', true);
        url_change($_SESSION['homepage']);
    } else {
        url_change(false);
    }
} else {
    cookie('last_login');
    $_SESSION['user_id'] = false;
}
echo drawSimpleTop(getString('password_reset'));
if (@$_GET['msg'] == 'email-not-found') {
    echo drawMessage(getString('login_password_reset_msg_email_not_found'));
} else {
    echo drawMessage(getString('login_password_reset_msg'));
}