/** * password change */ public function actionPasschange($code) { $model = User::findByRecoveryCode($code); if ($model === null) { $model = new User('passrecovery'); $model->addError('passrecovery_code', Yii::t('app', 'correct code required.')); } else { if (isset($_POST['User'])) { $password = $_POST['User']['password']; $model->password = $model->hashPassword($password); if ($model->save()) { Yii::app()->user->setFlash('info', Yii::t('app', "You successfully changed password.")); $this->redirect(Yii::app()->user->loginUrl); } } $model->password = null; } // display the passrecovery form $this->render('passchange', array('model' => $model)); }