Esempio n. 1
0
}
plog('--- detected ajax modes ' . vars($modes));
global $database;
foreach ($modes as $mode) {
    switch ($mode) {
        default:
            Page::Redirect('dash?nosuchform');
            break;
        case 1:
            if (!Session::logged_in()) {
                Page::Redirect('login');
            }
            global $auth;
            $old = AJAX::Value($ajax, 'changeMyPassword', 'password', 'old');
            $change = AJAX::Value($ajax, 'changeMyPassword', 'password', 'new');
            $repeat = AJAX::Value($ajax, 'changeMyPassword', 'password', 'confirm');
            if (strlen($auth['password']) === 0 || Auth::PasswordMatches(ourcrypt($old), $auth['password'])) {
                if (matches($change, $repeat, TRUE)) {
                    global $auth_model;
                    $auth_model->Update(array('password' => ourcrypt($change), 'password_expiry' => strtotime('+1 year')), array('ID' => $auth['ID']));
                    echo js('Notifier.success("Password changed!");');
                    die;
                } else {
                    echo js('Notifier.error("Passwords did not match.");');
                    die;
                }
            } else {
                echo js('Notifier.error("You got your password wrong.","Logging you out.");
               setTimeout( function() { window.location="logout"; }, 2000 );');
                die;
            }