public function reset_password($email) { $email = sanitize_email($email); if (!is_email($email)) { $message = '<div class="swpm-reset-pw-error">' . BUtils::_("Email address not valid.") . '</div>'; $message = array('succeeded' => false, 'message' => $message); BTransfer::get_instance()->set('status', $message); return; } global $wpdb; $query = 'SELECT member_id,user_name,first_name, last_name FROM ' . $wpdb->prefix . 'swpm_members_tbl ' . ' WHERE email = %s'; $user = $wpdb->get_row($wpdb->prepare($query, $email)); if (empty($user)) { $message = '<div class="swpm-reset-pw-error">' . BUtils::_("No user not found with that email address.") . '</div>'; $message .= '<div class="swpm-reset-pw-error-email">' . BUtils::_("Email Address: ") . $email . '</div>'; $message = array('succeeded' => false, 'message' => $message); BTransfer::get_instance()->set('status', $message); return; } $settings = BSettings::get_instance(); $password = wp_generate_password(); $password_hash = BUtils::encrypt_password(trim($password)); //should use $saned??; $wpdb->update($wpdb->prefix . "swpm_members_tbl", array('password' => $password_hash), array('member_id' => $user->member_id)); // update wp user pass. BUtils::update_wp_user($user->user_name, array('plain_password' => $password)); $body = $settings->get_value('reset-mail-body'); $subject = $settings->get_value('reset-mail-subject'); $search = array('{user_name}', '{first_name}', '{last_name}', '{password}'); $replace = array($user->user_name, $user->first_name, $user->last_name, $password); $body = str_replace($search, $replace, $body); $from = $settings->get_value('email-from'); $headers = "From: " . $from . "\r\n"; wp_mail($email, $subject, $body, $headers); $message = '<div class="swpm-reset-pw-success">' . BUtils::_("New password has been sent to your email address.") . '</div>'; $message .= '<div class="swpm-reset-pw-success-email">' . BUtils::_("Email Address: ") . $email . '</div>'; $message = array('succeeded' => false, 'message' => $message); BTransfer::get_instance()->set('status', $message); }
protected function password() { $password = filter_input(INPUT_POST, 'password', FILTER_UNSAFE_RAW); $password_re = filter_input(INPUT_POST, 'password_re', FILTER_UNSAFE_RAW); if (empty($this->fields['password']) && empty($password)) { $this->errors['password'] = BUtils::_('Password is required'); return; } if (!empty($password)) { $saned = sanitize_text_field($password); $saned_re = sanitize_text_field($password_re); if ($saned != $saned_re) { $this->errors['password'] = BUtils::_('Password mismatch'); } $this->sanitized['plain_password'] = $password; $this->sanitized['password'] = BUtils::encrypt_password(trim($password)); //should use $saned??; } }