$sdk_ses_msg = sdk_sanitize(isset($_GET['msg']) ? $_GET['msg']: ''); // filter category (uses if() statement in sql_select statements on view.php to filter results by xxx_yyy_cat) $sdk_ses_cat = sdk_sanitize(isset($_GET['cat']) ? $_GET['cat']: '0'); // filter group (uses if() statement in sql_select statements on view.php to filter results by xxx_yyy_grp) $sdk_ses_grp = sdk_sanitize(isset($_GET['grp']) ? $_GET['grp']: '0'); // filter to show sql_first() record for specific table index value (xxx_yyy_zzz) $sdk_ses_idx = sdk_sanitize(isset($_GET['idx']) ? $_GET['idx']: ''); // index value of last form post sql_insert(), separate from sdk_ses_idx to avoid conflicts $sdk_ses_ins = sdk_sanitize(isset($_GET['ins']) ? $_GET['ins']: ''); // filter based on custom value (defined in views/xxx_yyy.php) $sdk_ses_cus = sdk_sanitize(isset($_GET['cus']) ? $_GET['cus']: '0'); /** * * User Account Selection based on SESSION Variable * * Use the session variable created during login to lookup * user account information that will be used for creating * a personalized experience in the UI. * */ if(isset($_SESSION['sdk_ses_usr'])) { // define variables from SESSION values
* */ case 'reset': /** * * Form POST Variables & Sanitization * * Validate that form POST submission is from valid * source. A new variable is defined for each POST * form field. * */ // Validate Referrer Page CSRF // // Define Variables from Form POST $frm_sdk_act_usr_login = strtolower(sdk_sanitize($_POST['sdk_act_usr_login'])); /** * * Verify if Email Account Exists * * Perform SQL lookup to determine if account exists * in the database already. The email address is the * unique value used for lookup reference. * */ // SELECT Count of Users with Same Email Address $frm_unique_count = sql_count($model_sdk_act_usr, array("sdk_act_usr_login" => $frm_sdk_act_usr_login)); // failure: if account is not found, or multiple accounts found if ($frm_unique_count != '1') { // sdk_log(); header('Location: login.php?t=reset&msg=3');