function input_data($gender, $firstname, $name, $pwd, $repeatpwd, $email, $phone, $fax, $prefix)
{
global $currentlang, $db;
$allowed_pages = '*';
$number_of_logons = '0';
$login = '******';
$admin_name = $firstname . ' ' . $name;
$sequence = $prefix . '_sequence_admin';
echo '<font class="owp-title">' . INPUT_DATA . '</font>';
echo "<center>";
// Put basic information in first
include 'newdata.php';
include '../includes/functions/password_funcs.php';
$owp_pwd = owpCryptPassword($pwd);
$today = date("Y-m-d H:i:s");
if (!isset($currentlang)) {
$currentlang = 'deu';
}
if (file_exists($file = "lang/{$currentlang}/newconfigdata.php")) {
include $file;
}
$admin_id = $db->GenID($sequence);
$sql = "INSERT INTO " . $prefix . "_administrators\n (admin_id,\n admin_gender,\n admin_firstname,\n admin_lastname,\n admin_email_address,\n admin_telephone,\n admin_fax,\n admin_password,\n admin_allowed_pages,\n admin_login)\n VALUES (" . $db->qstr($admin_id) . ',' . $db->qstr($gender) . ',' . $db->qstr($firstname) . ',' . $db->qstr($name) . ',' . $db->qstr($email) . ',' . $db->qstr($phone) . ',' . $db->qstr($fax) . ',' . $db->qstr($owp_pwd) . ',' . $db->qstr($allowed_pages) . ',' . $db->qstr($login) . ")";
$result = $db->Execute($sql);
if ($result === false) {
echo '<br /><font class="owp-error">' . $db->ErrorMsg() . NOTMADE . '</font>';
} else {
echo '<br /><font class="owp-title">' . $prefix . '_administrators ' . UPDATED . '</font>';
}
$sql = "INSERT INTO " . $prefix . "_administrators_info\n (admin_info_id,\n admin_info_number_of_logons,\n admin_info_date_account_created)\n VALUES (" . $db->qstr($admin_id) . ',' . $db->qstr($number_of_logons) . ',' . $db->DBTimeStamp($today) . ")";
$result = $db->Execute($sql);
if ($result === false) {
echo '<br /><font class="owp-error">' . $db->ErrorMsg() . NOTMADE . '</font>';
} else {
echo '<br /><font class="owp-title">' . $prefix . '_administrators_info ' . UPDATED . '</font>';
}
}
</tr>
</table>
<!-- body_eof //-->
<!-- footer //-->
<?php
require OWP_INCLUDES_DIR . 'footer.php';
?>
<!-- footer_eof //-->
<br>
</body>
</html>
<?php
} else {
include_once OWP_FUNCTIONS_DIR . $owpFilename['password_crypt'];
$owp_pwd = owpCryptPassword($password);
$login = DEFAULT_ADMIN_LOGIN;
$db->Execute("UPDATE " . $owpDBTable['administrators'] . " \n\t SET admin_gender = " . $db->qstr($gender) . ",\n admin_firstname = " . $db->qstr($firstname) . ",\n admin_lastname = " . $db->qstr($lastname) . ",\n admin_email_address = " . $db->qstr($email_address) . ",\n admin_telephone = " . $db->qstr($telephone) . ",\n admin_fax = " . $db->qstr($fax) . ",\n admin_password = "******",\n admin_login = "******"\n WHERE admin_id = '" . $_SESSION['user_id'] . "'");
$today = date("Y-m-d H:i:s");
$db->Execute("UPDATE " . $owpDBTable['administrators_info'] . " \n\t SET admin_info_date_account_last_modified = " . $db->DBTimeStamp($today) . "\n WHERE admin_info_id = '" . $_SESSION['user_id'] . "'");
// build the message content
$name = $firstname . " " . $lastname;
if ($_POST['gender'] == 'm') {
$email_text = EMAIL_GREET_MR . $_POST['lastname'] . ',' . "\n\n";
} else {
$email_text = EMAIL_GREET_MS . $_POST['lastname'] . ',' . "\n\n";
}
$email_text .= EMAIL_UPDATE . EMAIL_TEXT . EMAIL_CONTACT . EMAIL_FOOT;
owpMail($name, $email_address, EMAIL_SUBJECT, nl2br($email_text), OWP_OWNER, OWP_OWNER_EMAIL_ADDRESS);
$email_owner = OWNER_EMAIL_SUBJECT . "\n" . EMAIL_SEPARATOR . "\n" . OWNER_EMAIL_NUMBER . ' ' . $admin_id . "\n" . OWNER_EMAIL_URL . "\n" . OWP_HTTP_SERVER . '/' . $owpFilename['administrators'] . '?selected_box=administrators&page=1&aID=' . $admin_id . '&action=edit' . "\n" . OWNER_EMAIL_DATE . ' ' . strftime(DATE_FORMAT_LONG) . "\n\n" . EMAIL_SEPARATOR . "\n";
$email_owner .= OWNER_EMAIL_FIRST_NAME . ' ' . $firstname . "\n" . OWNER_EMAIL_LAST_NAME . ' ' . $lastname . "\n\n" . OWNER_EMAIL_CONTACT . "\n" . OWNER_EMAIL_TELEPHONE_NUMBER . ' ' . $telephone . "\n" . OWNER_EMAIL_FAX_NUMBER . ' ' . $fax . "\n" . OWNER_EMAIL_ADDRESS . ' ' . $email_address . "\n" . EMAIL_SEPARATOR . "\n\n" . OWNER_EMAIL_OPTIONS . "\n";
Copyright (c) 2002 osCommerce
----------------------------------------------------------------------
Released under the GNU General Public License
---------------------------------------------------------------------- */
require 'includes/system.php';
require OWP_LANGUAGES_DIR . $language . '/' . $owpFilename['password_forgotten'];
if ($_GET['action'] == 'process') {
$sql = "SELECT admin_id, admin_gender, admin_firstname, admin_lastname, admin_email_address\n FROM " . $owpDBTable['administrators'] . " \n WHERE admin_email_address = '" . owpDBInput($email_address) . "'";
$check_admin_query = $db->Execute($sql);
if ($check_admin_query->RecordCount()) {
$check_admin = $check_admin_query->fields;
// Crypted password mods - create a new password, update the database and mail it to them
include_once OWP_FUNCTIONS_DIR . $owpFilename['password_crypt'];
$newpass = owpCreatePassword(PASSWORD_MIN_LENGTH);
$crpted_password = owpCryptPassword($newpass);
$db->Execute("UPDATE " . $owpDBTable['administrators'] . " \n SET admin_password = "******"\n WHERE admin_id = '" . owpDBInput($check_admin['admin_id']) . "'");
$name = $check_admin['admin_firstname'] . " " . $check_admin['admin_lastname'];
if ($check_admin['admin_gender'] == 'm') {
$email_text = EMAIL_GREET_MR . $check_admin['admin_lastname'] . ',' . "\n\n";
} else {
$email_text = EMAIL_GREET_MS . $check_admin['admin_lastname'] . ',' . "\n\n";
}
$email_text .= EMAIL_PASSWORD_INTRO;
$email_text .= sprintf(EMAIL_PASSWORD_BODY, $newpass);
$email_text .= EMAIL_PASSWORD_FOOT;
owpMail($name, $check_admin['admin_email_address'], EMAIL_PASSWORD_SUBJECT, nl2br($email_text), OWP_NAME, OWP_EMAIL_ADDRESS);
$messageStack->add_session(SUCCESS_PASSWORD_SENT, 'success');
owpRedirect(owpLink($owpFilename['login'], '', 'SSL'));
} else {
$messageStack->add(ERROR_NO_USER, 'error');
