clean_input($_GET['key']);
// Sending new password
if (sendPassword($_GET['key'])) {
set_page_message(tr('Your new password has been sent. Check your email.'), 'success');
redirectTo('index.php');
} else {
set_page_message(tr('New password has not been sent. Ask your administrator.'), 'error');
}
} elseif (!empty($_POST)) {
// Request for new password
$bruteForce = new iMSCP_Plugin_Bruteforce(iMSCP_Registry::get('pluginManager'), 'captcha');
if ($bruteForce->isWaiting() || $bruteForce->isBlocked()) {
set_page_message($bruteForce->getLastMessage(), 'error');
redirectTo('lostpassword.php');
} else {
$bruteForce->recordAttempt();
}
if (!empty($_POST['uname']) && isset($_SESSION['image']) && isset($_POST['capcode'])) {
clean_input($_POST['uname']);
clean_input($_POST['capcode']);
if ($_SESSION['image'] != $_POST['capcode']) {
set_page_message(tr('Wrong security code'), 'error');
} elseif (!requestPassword($_POST['uname'])) {
set_page_message(tr('Wrong username.'), 'error');
} else {
set_page_message(tr('Your request for new password has been registered. You will receive an email with instructions to complete the process.'), 'success');
}
} else {
set_page_message(tr('All fields are required.'), 'error');
}
}
