$rq_opass = base64_decode($_POST["op"]); $rq_npass = base64_decode($_POST["np"]); $rq_cpass = base64_decode($_POST["cp"]); if ($rq_npass != $rq_cpass) { echo "<div class='err'>La confirmacion no coincide</div>"; exit(2); } if (strlen($rq_opass) < MIN_PASS_LENGTH || strlen($rq_npass) < MIN_PASS_LENGTH || strlen($rq_cpass) < MIN_PASS_LENGTH) { echo "<div class='err'>No cumple las longitudes mínimas</div>"; exit(2); } $pgclient = new PgClient($db_config); $opass = hash("sha512", $salt . $rq_opass); $npass = hash("sha512", $salt . $rq_npass); $cpass = hash("sha512", $salt . $rq_cpass); $pgclient->connect() or die("<div class='err'>Woooops, culpa nuestra, contacte con el administrador</div>"); $q = "Select * from usuarios where lower(mail)=lower('" . $_SESSION["email"] . "') and pass='******';"; $r = pg_fetch_object($pgclient->exeq($q)); if ($pgclient->lq_nresults() == 0) { // USER NON EXISTENT OR PASSWORD ERROR echo "<div class='err'>Los datos introducidos no son correctos</div>"; exit(3); } $q = "Update usuarios set pass='******' where lower(mail)=lower('" . $_SESSION["email"] . "');"; $pgclient->exeq($q); $pgclient->disconnect(); session_write_close(); echo "<div class='ok'>Contraseña actualizada con éxito</div>"; ?>
<?php require_once "include/config.php"; require_once "lib/pgclient.php"; defined("LENGTH_HOST_MIN") or define("LENGTH_HOST_MIN", 1); defined("LENGTH_HOST_MAX") or define("LENGTH_HOST_MAX", 200); // devuelve la disponibilidad o no de una etiqueta host para un subdominio dado if (!isset($_POST["h"])) { header("Location: /"); exit(1); } $pgclient = new PgClient($db_config); $pgclient->connect() or die("ERR"); $host = $pgclient->prepare($_POST["h"], "letters"); if (strlen($host) < LENGTH_HOST_MIN || strlen($host) > LENGTH_HOST_MAX || !preg_match('/^[a-zA-Z]+([0-9]*[a-zA-Z]*)*$/', $_POST["h"])) { die("<div class='r err'>No cumple los requisitos</div>"); } $q = "select * from hosts where lower(tag)=lower('" . $host . "." . $config["domainname"] . "');"; $pgclient->exeq($q); if ($pgclient->lq_nresults() > 0) { echo "<div class='r err'>No disponible</div>"; } else { echo "<div class='r ok'>Disponible</div>"; } $pgclient->disconnect(); ?>