<?php
require '../config.php';
dol_include_once('/twiiitor/class/twiiitor.class.php');
dol_include_once('/projet/class/project.class.php');
dol_include_once('/product/class/product.class.php');
$get = GETPOST('get');
$put = GETPOST('put');
switch ($get) {
case 'search-user':
__out(_search_user(GETPOST('q')), 'json');
break;
case 'search-tag':
__out(_search_tag(GETPOST('q')), 'json');
break;
case 'search-element':
__out(_search_element(GETPOST('q')), 'json');
break;
case 'comments':
print _comments(GETPOST('id'), GETPOST('ref'), GETPOST('element'));
break;
case 'graph':
__out(_graph(GETPOST('id'), GETPOST('ref'), GETPOST('element')), 'json');
break;
}
switch ($put) {
case 'comment':
print _comment(GETPOST('id'), GETPOST('ref'), GETPOST('element'), GETPOST('comment'));
break;
}
function _graph($fk_object, $ref, $element)
}
function _search_user($str)
{
global $db, $CONF;
$sql = "select * from " . $CONF['userdb']['users_table'] . " where username='******' or user_civlid='{$str}' or user_email='{$str}' ";
$res = $db->sql_query($sql);
$nr = $db->sql_numrows($res);
if ($nr > 1) {
return false;
}
return $res;
}
if (isset($_POST['uce'])) {
$str = addslashes($_POST['uce']);
//var_dump(_search_user($str));
if ($res = mysql_fetch_assoc(_search_user($str))) {
$ltime = time();
$emailtime = $res['user_emailtime'];
// gen a new password with 6 char long;
//$emailtime=0;
if ($emailtime + $CONF['userdb']['edit']['password_change_expire_time'] < $ltime) {
// print "$emailtime | $ltime";
$actkey = md5(uniqid(rand(), true));
$newpass = generatePassword($CONF['userdb']['edit']['password_minlength']);
if (function_exists('leonardo_hash')) {
$newPassword = leonardo_hash($newpass);
} else {
$newPassword = md5($newpass);
}
$sql = "UPDATE " . $CONF['userdb']['users_table'] . " set user_emailtime='" . time() . "', user_newpasswd='" . $newPassword . "',user_actkey='{$actkey}' where " . $CONF['userdb']['user_id_field'] . "=" . $res['user_id'];
if ($db->sql_query($sql)) {
