Rev 1267 | Rev 1283 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
| Rev 1267 | Rev 1282 | ||
|---|---|---|---|
| Line 44... | Line 44... | ||
| 44 | OIDplus::getActiveCaptchaPlugin()->captchaVerify($params, 'captcha'); |
44 | OIDplus::getActiveCaptchaPlugin()->captchaVerify($params, 'captcha'); |
| 45 | 45 | ||
| 46 | OIDplus::logger()->log("V2:[WARN]RA(%1)", "A new password for '%1' was requested (forgot password)", $email); |
46 | OIDplus::logger()->log("V2:[WARN]RA(%1)", "A new password for '%1' was requested (forgot password)", $email); |
| 47 | 47 | ||
| 48 | $timestamp = time(); |
48 | $timestamp = time(); |
| 49 | $activate_url = OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE_CANONICAL) . '?goto='.urlencode('oidplus:reset_password$'.$email.'$'.$timestamp.'$'.OIDplus::authUtils()->makeAuthKey('reset_password;'.$email.';'.$timestamp)); |
49 | $activate_url = OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE_CANONICAL) . '?goto='.urlencode('oidplus:reset_password$'.$email.'$'.$timestamp.'$'.OIDplus::authUtils()->makeAuthKey('93a16dbe-f4fb-11ed-b67e-3c4a92df8582:'.$email.'/'.$timestamp)); |
| 50 | 50 | ||
| 51 | $message = $this->getForgotPasswordText($params['email']); |
51 | $message = $this->getForgotPasswordText($params['email']); |
| 52 | $message = str_replace('{{ACTIVATE_URL}}', $activate_url, $message); |
52 | $message = str_replace('{{ACTIVATE_URL}}', $activate_url, $message); |
| 53 | 53 | ||
| 54 | OIDplus::mailUtils()->sendMail($email, OIDplus::config()->getValue('system_title').' - Password reset request', $message); |
54 | OIDplus::mailUtils()->sendMail($email, OIDplus::config()->getValue('system_title').' - Password reset request', $message); |
| Line 67... | Line 67... | ||
| 67 | $password2 = $params['password2']; |
67 | $password2 = $params['password2']; |
| 68 | $email = $params['email']; |
68 | $email = $params['email']; |
| 69 | $auth = $params['auth']; |
69 | $auth = $params['auth']; |
| 70 | $timestamp = $params['timestamp']; |
70 | $timestamp = $params['timestamp']; |
| 71 | 71 | ||
| 72 | if (!OIDplus::authUtils()->validateAuthKey('reset_password;'.$email.';'.$timestamp, $auth)) { |
72 | if (!OIDplus::authUtils()->validateAuthKey('93a16dbe-f4fb-11ed-b67e-3c4a92df8582:'.$email.'/'.$timestamp, $auth)) { |
| 73 | throw new OIDplusException(_L('Invalid auth key')); |
73 | throw new OIDplusException(_L('Invalid auth key')); |
| 74 | } |
74 | } |
| 75 | 75 | ||
| 76 | if ((OIDplus::config()->getValue('max_ra_pwd_reset_time') > 0) && (time()-$timestamp > OIDplus::config()->getValue('max_ra_pwd_reset_time'))) { |
76 | if ((OIDplus::config()->getValue('max_ra_pwd_reset_time') > 0) && (time()-$timestamp > OIDplus::config()->getValue('max_ra_pwd_reset_time'))) { |
| 77 | throw new OIDplusException(_L('Invitation expired!')); |
77 | throw new OIDplusException(_L('Invitation expired!')); |