function forgottenPassword()
{
global $error;
global $obj_smarty;
$use_captcha = true;
$bln_success = false;
$arr_submit = array(array('email', 'string', true, ''));
$frm_submitted = validate_var($arr_submit);
if (!$error) {
global $obj_db;
$arr_user = null;
if (isset($frm_submitted['email'])) {
// check if email does exist
$str_query = 'SELECT * FROM `users` ' . ' WHERE `email` = "' . $frm_submitted['email'] . '"';
$res1 = mysqli_query($obj_db, $str_query);
if ($res1 !== false) {
$arr_user = mysqli_fetch_array($res1, MYSQLI_ASSOC);
}
if (is_null($arr_user) || empty($res1)) {
$obj_smarty->assign('msg', 'Unknown emailaddress');
$obj_smarty->assign('form', $frm_submitted);
} else {
$bln_success = User::forgottenPassword($frm_submitted);
}
} else {
$obj_smarty->assign('msg', 'Email is empty');
$obj_smarty->assign('form', $frm_submitted);
}
} else {
$obj_smarty->assign('msg', $error);
$obj_smarty->assign('form', $frm_submitted);
}
if ($bln_success) {
$obj_smarty->assign('msg', 'You received an email with a link to reset your password');
$obj_smarty->assign('success', true);
}
$obj_smarty->display(FULLCAL_DIR . '/forgotten-password/index.tpl');
exit;
}
