forked from gplanchat/wootook
-
Notifications
You must be signed in to change notification settings - Fork 0
/
lostpassword.php
115 lines (103 loc) · 3.68 KB
/
lostpassword.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
<?php
/**
* This file is part of Wootook
*
* @license http://www.gnu.org/licenses/gpl-3.0.txt
* @see http://www.wootook.com/
*
* Copyright (c) 2009-Present, Wootook Support Team <http://www.xnova-ng.org>
* All rights reserved.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
* --> NOTICE <--
* This file is part of the core development branch, changing its contents will
* make you unable to use the automatic updates manager. Please refer to the
* documentation for further information about customizing Wootook.
*
*/
define('INSIDE' , true);
define('INSTALL' , false);
define('DISABLE_IDENTITY_CHECK', true);
require_once dirname(__FILE__) . '/application/bootstrap.php';
$mailData = array(
'recipient' => NULL,
'sender' => 'no-reply',
'subject' => 'Wootook:Legacies - Changement de mot de passe'
);
includeLang('lostpassword');
$username = NULL;
if (!empty($_POST)) {
if(isset($_POST['pseudo']) && !empty($_POST['pseudo'])) {
$username = mysql_real_escape_string($_POST['pseudo']);
$sql =<<<EOF
SELECT users.email, users.username
FROM {{table}} AS users
WHERE users.username="{$username}"
LIMIT 1
EOF;
if (!($result = doquery($sql, 'users', true))) {
message("Cet utilisateur n'existe pas", 'Erreur', 'lostpassword.php');
die();
}
list($mailData['recipient'], $username) = $result;
} else if(isset($_POST['email']) && !empty($_POST['email'])) {
$email = mysql_real_escape_string($_POST['email']);
$sql =<<<EOF
SELECT users.email, users.username
FROM {{table}} AS users
WHERE users.email="{$email}"
LIMIT 1
EOF;
if (!($result = doquery($sql, 'users', true))) {
message("Cet email n'est utilisé par aucun joueur", 'Erreur', 'lostpassword.php');
die();
}
list($mailData['recipient'], $username) = $result;
} else {
message('Veuillez entrer votre login ou votre email.', 'Erreur', 'lostpassword.php');
die();
}
if (!is_null($mailData['recipient'])) {
$characters = 'abcdefghijklmnopqrstuvwxyz0123456789';
$randomPass = '';
$size = rand(8, 10);
for ($i = 0; $i < $size; $i++) {
$randomPass .= $characters[rand(0, strlen($characters) - 1)];
}
$message =<<<EOF
Votre mot de passe a été modifié, veuillez trouver ci-dessous vos informations de connexion :
login : $username
mot de passe : $randomPass
A bientôt sur Wootook:Legacies
EOF;
$version = VERSION;
$headers =<<<EOF
From: {$mailData['sender']}
X-Sender: Legacies/{$version}
EOF;
mail($mailData['recipient'], $mailData['subject'], $message, $headers);
$sql =<<<EOF
UPDATE {{table}} AS users
SET users.password="{$randomPass}"
WHERE users.username="$username"
EOF;
doquery($sql, 'users');
message('Mot de passe envoyé ! Veuillez regarder votre boite e-mail ou dans vos spam.', 'Nouveau mot de passe', 'index.php');
die();
}
}
$parse = $lang;
$page = parsetemplate(gettemplate('lostpassword'), $parse);
display($page, $lang['registry']);