include_once CLASS_PATH . 'usr.class.php';
$actScript = 'chgPassForm.php';
globalizeGet();
globalizePost();
$obj = new usr();
$title = 'Change Password';
$id = $_SESSION['us_id'];
if (!$in2Action) {
$in2Action = 'editRecord';
}
// Update number values
// Remove the thousands seperator
$_REQUEST['us_id'] = str_replace(",", "", $_REQUEST['us_id']);
switch ($in2Action) {
case 'edit':
$obj->Select(array('us_password', 'us_username'), '', 'WHERE us_id = ' . $id, 1, null, false);
$cntObj = $obj->RowCount();
if ($cntObj) {
while (!$obj->EOF()) {
$rowObj = $obj->Row();
$oldPass = $rowObj->us_password;
$us_username = $rowObj->us_username;
}
}
if (md5($_REQUEST['us_oldpassword']) != $oldPass) {
$in2Action = 'editRecord';
$frmAction = 'nomatch';
} else {
$_REQUEST['us_mduser'] = $_SESSION['us_id'];
$_REQUEST['us_mddate'] = date('Y-m-d');
$_REQUEST['us_isactive'] = 1;
$oLog->execute($stmt, $isDebug);
goToURL("index.php");
break;
case 'AlreadyLoggedIn':
session_destroy();
goToURL("index.php?AlreadyLoggedIn=1");
break;
case 'InvalidCreds':
session_destroy();
goToURL("index.php?InvalidCreds=1");
break;
case 'RememberMe':
break;
case 'forgotpassword':
if ($_REQUEST['us_username'] && !$_REQUEST['us_password']) {
$obj->Select(array('us_id', 'us_fname', 'us_lname', 'us_email'), '', 'WHERE us_email = \'' . $_REQUEST['us_username'] . '\' Or us_username = \'' . $_REQUEST['us_username'] . '\'', 1, null, false);
$cntObj = $obj->RowCount();
if ($cntObj) {
while (!$obj->EOF()) {
$rowObj = $obj->Row();
$us_id = $rowObj->us_id;
$firstName = $rowObj->us_fname;
$lastName = $rowObj->us_lname;
$email = $rowObj->us_email;
}
$newpass = RESET_PASSWORD_TO . rand(11111, 99999);
$_REQUEST['us_isactive'] = 1;
$_REQUEST['us_password'] = md5($newpass);
$_REQUEST['us_id'] = $us_id;
$obj->UpdateRequest(false);
/**
<?php
include_once 'conf/config.php';
include_once 'lang/usr.lang.inc';
include_once CLASS_PATH . 'usr.class.php';
globalizePost();
$obj = new usr();
/**
* Get query data
*/
$obj->Select(array('us_lname', 'us_fname', 'us_dob', 'us_img', 'us_address', 'us_phone', 'us_mobile', 'us_email', 'us_username', 'us_password', 'IF(us_isactive = 1, "' . $yesNo[$_SESSION['lang']][1] . '", "' . $yesNo[$_SESSION['lang']][0] . '") us_isactive', '(SELECT gr_title FROM grp parent WHERE usr.us_gr_id = parent.gr_id) us_gr_id', 'us_id'), '', $whereClause . ' ORDER BY ' . ($_POST['sort'] - 2) . ' ' . $_POST['dir'], $_POST['page'], $rows, false);
while (!$obj->EOF()) {
$row = $obj->Row();
print ' <td><input type="checkbox" name="chkRecord" id="chkRecord_' . $row->us_id . '" value="' . $row->us_id . '"/></td>';
print ' <td><img src="' . PROJECT_UPLOAD_BO_URL . $row->us_img . '" class="img-responsive img-circle"/></td>';
print ' <td>' . $row->us_lname . '</td>';
print ' <td>' . $row->us_fname . '</td>';
print ' <td>' . $row->us_email . '</td>';
print ' <td>' . $row->us_username . '</td>';
print ' <td>' . $row->us_isactive . '</td>';
print ' <td>' . $row->us_gr_id . '</td>';
print ' <td>
<div class="action-group btn-group pull-right mtm mbm">
<button type="button" class="btn btn-default" onclick="javascript:window.location.assign(\'usr.form.php?recordId=' . $row->us_id . '&in2Action=editRecord\');"><i class="fa fa-edit"></i></button>
<button type="button" class="btn btn-default" onclick="javascript:deleteRecord(\'us_id\', ' . $row->us_id . ');"><i class="fa fa-trash-o"></i></button>
</div>
</td>';
print '</tr>';
}
