Move lostpassword code to own app

This commit is contained in:
Bart Visscher 2011-09-25 23:33:22 +02:00
parent aae6881494
commit 950d4e1da4
6 changed files with 56 additions and 36 deletions

View File

@ -1,7 +1,7 @@
<form action="index.php" method="post">
<fieldset>
<?php if($_['error']): ?>
<a href="index.php?lostpassword"><?php echo $l->t('Lost your password?'); ?></a>
<a href="lostpassword/index.php"><?php echo $l->t('Lost your password?'); ?></a>
<?php endif; ?>
<?php if(empty($_["username"])): ?>
<input type="text" name="user" id="user" placeholder="Username" value="" autocomplete="off" required autofocus />

View File

@ -87,38 +87,6 @@ elseif(isset($_POST["user"]) && isset($_POST['password'])) {
}
}
// Someone lost their password:
elseif(isset($_GET['lostpassword'])) {
OC_App::loadApps();
if (isset($_POST['user'])) {
if (OC_User::userExists($_POST['user'])) {
$token = sha1($_POST['user']+uniqId());
OC_Preferences::setValue($_POST['user'], "owncloud", "lostpassword", $token);
// TODO send email with link+token
OC_Template::printGuestPage("", "lostpassword", array("error" => false, "requested" => true));
} else {
OC_Template::printGuestPage("", "lostpassword", array("error" => true, "requested" => false));
}
} else {
OC_Template::printGuestPage("", "lostpassword", array("error" => false, "requested" => false));
}
}
// Someone wants to reset their password:
elseif(isset($_GET['resetpassword']) && isset($_GET['token']) && isset($_GET['user']) && OC_Preferences::getValue($_GET['user'], "owncloud", "lostpassword") === $_GET['token']) {
OC_App::loadApps();
if (isset($_POST['password'])) {
if (OC_User::setPassword($_GET['user'], $_POST['password'])) {
OC_Preferences::deleteKey($_GET['user'], "owncloud", "lostpassword");
OC_Template::printGuestPage("", "resetpassword", array("success" => true));
} else {
OC_Template::printGuestPage("", "resetpassword", array("success" => false));
}
} else {
OC_Template::printGuestPage("", "resetpassword", array("success" => false));
}
}
// For all others cases, we display the guest page :
else {
OC_App::loadApps();

25
lostpassword/index.php Normal file
View File

@ -0,0 +1,25 @@
<?php
/**
* Copyright (c) 2010 Frank Karlitschek karlitschek@kde.org
* This file is licensed under the Affero General Public License version 3 or
* later.
* See the COPYING-README file.
*/
$RUNTIME_NOAPPS = TRUE; //no apps
require_once('../lib/base.php');
// Someone lost their password:
if (isset($_POST['user'])) {
if (OC_User::userExists($_POST['user'])) {
$token = sha1($_POST['user']+uniqId());
OC_Preferences::setValue($_POST['user'], 'owncloud', 'lostpassword', $token);
// TODO send email with link+token
$link = OC_Helper::linkTo('lostpassword', 'resetpassword.php', null, true).'?user='.$_POST['user'].'&token='.$token;
OC_Template::printGuestPage('lostpassword', 'lostpassword', array('error' => false, 'requested' => true));
} else {
OC_Template::printGuestPage('lostpassword', 'lostpassword', array('error' => true, 'requested' => false));
}
} else {
OC_Template::printGuestPage('lostpassword', 'lostpassword', array('error' => false, 'requested' => false));
}

View File

@ -0,0 +1,27 @@
<?php
/**
* Copyright (c) 2010 Frank Karlitschek karlitschek@kde.org
* This file is licensed under the Affero General Public License version 3 or
* later.
* See the COPYING-README file.
*/
$RUNTIME_NOAPPS = TRUE; //no apps
require_once('../lib/base.php');
// Someone wants to reset their password:
if(isset($_GET['token']) && isset($_GET['user']) && OC_Preferences::getValue($_GET['user'], 'owncloud', 'lostpassword') === $_GET['token']) {
if (isset($_POST['password'])) {
if (OC_User::setPassword($_GET['user'], $_POST['password'])) {
OC_Preferences::deleteKey($_GET['user'], 'owncloud', 'lostpassword');
OC_Template::printGuestPage('lostpassword', 'resetpassword', array('success' => true));
} else {
OC_Template::printGuestPage('lostpassword', 'resetpassword', array('success' => false));
}
} else {
OC_Template::printGuestPage('lostpassword', 'resetpassword', array('success' => false));
}
} else {
// Someone lost their password
OC_Template::printGuestPage('lostpassword', 'lostpassword', array('error' => false, 'requested' => false));
}

View File

@ -1,4 +1,4 @@
<form action="index.php?lostpassword" method="post">
<form action="index.php" method="post">
<fieldset>
<?php echo $l->t('You will receive a link to reset your password via Email.'); ?>
<?php if ($_['requested']): ?>
@ -11,4 +11,4 @@
<input type="submit" id="submit" value="<?php echo $l->t('Request reset'); ?>" />
<?php endif; ?>
</fieldset>
</form>
</form>

View File

@ -1,4 +1,4 @@
<form action="<?php echo 'index.php?'.$_SERVER['QUERY_STRING']; ?>" method="post">
<form action="<?php echo 'resetpassword.php?'.$_SERVER['QUERY_STRING']; ?>" method="post">
<fieldset>
<?php if($_['success']): ?>
<?php echo $l->t('Your password was reset'); ?>