$sql .= "CMS_USER_NAME, "; $sql .= "CMS_USER_EMAIL "; $sql .= "FROM CMS_USER "; $sql .= "WHERE "; $sql .= "CMS_USER_LOGIN='******' AND "; $sql .= "CMS_USER_EMAIL='" . $db->real_eacape_string($email) . "' AND "; $sql .= "CMS_USER_STATUS='1' AND "; $sql .= "CMS_USER_ACTIVEDATE <= NOW() AND "; $sql .= "(CMS_USER_EXPIRYDATE IS NULL OR CMS_USER_EXPIRYDATE >= NOW()) "; $db = connectDB(); $sql = sprintf("SELECT ID, CMS_USER_NAME, CMS_USER_EMAIL FROM CMS_USER WHERE CMS_USER_LOGIN='******' AND CMS_USER_EMAIL='%s' AND CMS_USER_STATUS = 1 AND CMS_USER_ACTIVEDATE <= NOW() AND (CMS_USER_EXPIRYDATE IS NULL OR CMS_USER_EXPIRYDATE >= NOW())", $db->real_escape_string($name), $db->real_escape_string($email)); $result = $db->query($sql) or die($sql); // Check user existed if ($result->num_rows > 0) { $row = $result->fetch_array(); // Reset password $newPassword = GeneratePassword(); // Send new password to the email SendForgotPasswordEmail($row["CMS_USER_EMAIL"], $row["CMS_USER_NAME"], $newPassword); // Update table $sql = "UPDATE CMS_USER SET CMS_USER_PASS = MD5('" . $newPassword . "') WHERE ID = " . $row["ID"]; $db->query($sql); // Return sucess notification $responseStatus = 1; } else { $responseStatus = -1; $responseMsg = CONST_ERROR_MESSAGE_NONEXISTED_USERNAME_OR_EMAIL; } } // Echo result echo json_encode(array("status" => $responseStatus, "responseMsg" => $responseMsg));
echo Login($params['email'], $params['password']); } else { if ($request == 'logout') { Logout(); } else { if ($request == 'signUp') { echo SignUp($params['userName'], $params['emailAddress'], $params['password']); } else { if ($request == 'updateName') { SaveUserName($_SESSION['UserID'], $params['userName']); } else { if ($request == 'updatePassword') { echo SaveUserPassword($_SESSION['UserID'], $params['newPassword'], $params['oldPassword']); } else { if ($request == 'forgotPassword') { SendForgotPasswordEmail($params['email']); } else { if ($_POST['r'] == 'updateForgottenPassword') { echo UpdateForgottenPassword($_POST['newPassword']); } } } } } } } } } } } }