Esempio n. 1
0
                 $rowtemp = queryRow($sql);
                 if ($rowtemp) {
                     if ($lowrightnum == 0) {
                         $_SESSION['loginuser'] = $user;
                     }
                     setcookie("loginname", $user, time() + 30 * 24 * 60 * 60, "/");
                     setcookie("loginid", $cookievalue, time() + 30 * 24 * 60 * 60, "/");
                     $registersuccesslogin = 1;
                     $registercheck = 1;
                     $user_id = $rowtemp['user_id'];
                     $sql = "INSERT INTO `cookiedata`(`user_id`, `user_name`, `user_cookie`, `login_time`,`user_login_ip`) VALUES ('{$user_id}','{$user}','{$cookievalue}','{$date}','{$userip}')";
                     insert($sql);
                     /*                         * *********发送邮件部分*********** */
                     //发送邮件的某个函数自己后面再处理下吧,格式如下,../mailcheck.php?userid=num&checkcode=dsaswewasdwewqs,查库的确认格式即可
                     $mailtxtcheckurl = SITEHOST . "mailcheck.php?userid={$user_id}&checkcode={$user_email_checkid}";
                     $mailtxt = "本邮件为系统自动发送,您的战网在线安全令账号已经创建<br><br>" . "您的用户名为:{$user}<br><br>" . "您的用户ID为:{$user_id}<br><br>" . "您的密码为:" . emailpass($unmd5password) . " (只显示前三位)<br><br>" . "您的安全问题为:" . $questionid[$question1] . "<br><br>" . "您的安全问题答案:(已隐藏)<br><br>" . "您的邮箱地址为:{$emailadd}<br><br>" . "您的账号已经创建,为了今后能顺利管理账号,请点击以下链接确认您的邮箱地址<br><br>" . "<a href='{$mailtxtcheckurl}' target='_blank'>{$mailtxtcheckurl}</a><br><br>" . "如果这不是您操作的,请忽略本邮件,绝对不要点击以上链接。<br><br>" . "本邮件为自动发送,请不要回复,因为没人会看的。<br><br>" . "竹井詩織里<br><br>" . date('Y-m-d');
                     send_mail('战网安全令在线版注册邮箱验证邮件', $mailtxt, $emailadd, 0, 1);
                 } else {
                     $registererrid = 6;
                 }
             } else {
                 $registererrid = 3;
             }
         } else {
             $registererrid = 2;
         }
     }
 } else {
     if (checkzhongwenzimushuzixiahuaxian($_POST["username"]) == false) {
         $registererrid = 5;
     } else {
Esempio n. 2
0
//If there are input validations, redirect back to the registration form
if ($errflag) {
    $_SESSION['ERRMSG_ARR'] = $errmsg_arr;
    session_write_close();
    header("location: forgot-form.php");
    exit;
} else {
    //create query
    $qry = "UPDATE tt_users SET u_timestamp='{$ts}', u_temppass=MD5('{$p}') WHERE u_email='{$email}' ";
    $result = @mysql_query($qry);
    // Run the query.
    if (mysql_affected_rows() == 1) {
        // If it ran OK.
        $resetToken = "?MT=" . MD5($p);
        $resetURL = BASE_URL . RESET_FILE . $resetToken;
        emailpass($firstname, $email, $resetURL);
    } else {
        $errmsg_arr[] = 'Reset password query failed';
        $_SESSION['ERRMSG_ARR'] = $errmsg_arr;
        session_write_close();
        header("location: forgot-form.php");
        exit;
    }
}
function emailpass($firstname, $email, $resetURL)
{
    $subject = "Task-Tracker | Password reset";
    $body = "Hi " . $firstname . ",\n";
    $body .= "Someone (hopefully you) has requested to reset your password at Task-Tracker. \n";
    $body .= "If you did not request this reset, please ignore this message.\n";
    $body .= "\nTo reset your password, please visit the following page:\n";
Esempio n. 3
0
    if (check_data("oldPassword") && check_data("newPassword") && check_data("newPasswordVerify")) {
        if ($logincheck == 1) {
            $passwordA = db_iconv('newPassword', 'post', false);
            $passwordB = db_iconv('newPasswordVerify', 'post', false);
            $oldPassword = db_iconv('oldPassword', 'post', false);
            if (check_post_password($oldPassword, $user)) {
                if ($passwordA == $passwordB) {
                    $unmd5newpassword = getunencryptpass($passwordA);
                    $newpassword = md5($unmd5newpassword);
                    $sql = "UPDATE `users` SET `user_pass`='{$newpassword}' WHERE `user_name`='{$user}'";
                    update($sql);
                    $sql = "SELECT * FROM `users` WHERE `user_name`='{$user}'";
                    $row = queryRow($sql);
                    $userid = $row['user_id'];
                    $emailadd = $row['user_email'];
                    $mailtxt = "本邮件为系统自动发送,您已经成功地修改了您的密码。<br><br>" . "您的用户名为:{$user}<br><br>" . "您的用户ID为:{$userid}<br><br>" . "您的邮箱地址为:{$emailadd}<br><br>" . "您设置是新密码为:" . emailpass($unmd5newpassword) . " (只显示前三位)<br><br>" . "如果这不是您操作的,请<a href='" . SITEHOST . "' target='_blank'>前往网站</a>重置您的密码。<br><br>" . "本邮件为自动发送,请不要回复,因为没人会看的。<br><br>" . "竹井詩織里<br><br>" . date('Y-m-d');
                    $changepsderrorid = send_mail('战网安全令在线版密码修改通知邮件', $mailtxt, $emailadd, 0, 0);
                } else {
                    $changepsderrorid = 4;
                }
            } else {
                $changepsderrorid = 5;
            }
        } else {
            $changepsderrorid = 3;
        }
    } else {
        $changepsderrorid = 2;
    }
    $_SESSION['letters_code'] = rand();
} else {