case 'reset_password': if ($jauth->set_password(FALSE, $_POST['username'], $_POST['password'])) { $msg = SUCCESS_PASSWORD; $jauth->clear_session(); } else { die(ERROR_RESET_PASSWORD); } break; default: die(ERROR_NO_VALID_ACTION); } } else { $jauth->clear_session(); if (substr($_SERVER['SCRIPT_NAME'], -17) == 'resetpassword.php') { if (isset($_GET['cookie']) && isset($_GET['id'])) { $r = $jauth->query("SELECT username, remember, remember_expires FROM users WHERE id = " . $_GET['id']); $username = $r->username; if ($r->remember != $_GET['cookie']) { die(ERROR_NO_VALID_COOKIE); } else { if ($r->remember > time()) { die(ERROR_EXPIRED_COOKIE); } } } else { die(ERROR_NO_GET_PARAMETERS); } } } $a = $_SESSION['a']; $b = $_SESSION['b'];