Пример #1
0
function User_Validate_New_Email($account_id, $email, $bd)
{
    if (User_Validate_Email($email)) {
        $query = "SELECT * FROM accounts wHERE (email = '{$email}') AND (account_id <> '{$account_id}')\n\t\t\tAND (role = 'User')";
        $result = $bd->Query($query);
        if ($result) {
            if ($bd->NumberOfRows($result)) {
                return 0;
            } else {
                return 1;
            }
        } else {
            return 0;
        }
    } else {
        return 0;
    }
}
Пример #2
0
     } else {
         $image_enable .= "0";
     }
 }
 if (!User_Authenticate_Password($account_id, $cur_password, $bd)) {
     $error[$num_errors++] = "The Current Password is Wrong";
 }
 switch (User_Validate_Simple_Field($name, 50)) {
     case 0:
         $error[$num_errors++] = "The name is blank";
         break;
     case -1:
         $error[$num_errors++] = "The name length is more than 50 characters";
         break;
 }
 switch (User_Validate_Email($email, 70)) {
     case 0:
         $error[$num_errors++] = "The e-mail is invalid";
         break;
     case -1:
         $error[$num_errors++] = "The e-mail length is more than 70 characters";
         break;
     case 1:
         $person = List_People('', '', $email, '', '', $bd);
         if ($person) {
             if ($person[0][0] != $account_id) {
                 $error[$num_errors++] = "This E-mail is already in use";
             }
         }
         break;
 }
Пример #3
0
        $ip_address = $_SERVER['REMOTE_ADDR'];
        $sess_id = Create_Session($_REQUEST['id'], 'default', $ip_address, 0, $bd);
        $crypt_sess_id = md5($sess_id);
        $complete_sess_id = $crypt_sess_id . $sess_id;
        if ($is_admin) {
            header("location: adm_main.php?sess_id={$complete_sess_id}");
            exit;
        } else {
            header("location: main.php?sess_id={$complete_sess_id}");
            exit;
        }
    }
}
// If the user asked to be mailed his password
if (isset($_REQUEST['send']) && $_REQUEST['send'] == "Sogin") {
    $email = User_Validate_Email($_REQUEST['email']);
    $email_sql = $bd->GetTextFieldValue($email);
    $query = "SELECT accounts.account_id, accounts.name, people.email, people.password\n\t\tFROM accounts, people WHERE people.email={$email_sql} and (accounts.account_id = people.account_id)";
    $result = $bd->Query($query);
    if ($result != 0 && $bd->NumberOfRows($result) != 0) {
        $user = $bd->FetchResult($result, 0, 'account_id');
        $curr_passwd = $bd->FetchResult($result, 0, 'password');
        $conf = 0;
        $limit = strlen($curr_passwd);
        for ($i = 0; $i < $limit; $i++) {
            $conf += ord($curr_passwd[$i]);
        }
        $addr = $cfg['url'] . "passwd_recovery.php?user="******"&conf=" . $conf;
        $mail_admin = $cfg['admin_email'];
        $institution = $cfg['institution_acronym'];
        $mail_content = "There is a solicitation of password recovering on your account at No Risk Planning. \nIf you really asked for it, click on the following link {$addr} to get your login and password. \n\n";