Root/
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 | <?php /* -*- tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */ /* # ***** BEGIN LICENSE BLOCK ***** # This file is part of InDefero, an open source project management application. # Copyright (C) 2008 Céondo Ltd and contributors. # # InDefero is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # InDefero is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA # # ***** END LICENSE BLOCK ***** */ Pluf::loadFunction( 'Pluf_HTTP_URL_urlForView' ); /** * Reset the password of a user. * */ class IDF_Form_PasswordReset extends Pluf_Form { protected $user = null; public function initFields( $extra = array ()) { $this ->user = $extra [ 'user' ]; $this ->fields[ 'key' ] = new Pluf_Form_Field_Varchar( array ( 'required' => true, 'label' => __( 'Your verification key' ), 'initial' => $extra [ 'key' ], 'widget' => 'Pluf_Form_Widget_HiddenInput' , )); $this ->fields[ 'password' ] = new Pluf_Form_Field_Varchar( array ( 'required' => true, 'label' => __( 'Your password' ), 'initial' => '' , 'widget' => 'Pluf_Form_Widget_PasswordInput' , 'help_text' => __( 'Your password must be hard for other people to find it, but easy for you to remember.' ), 'widget_attrs' => array ( 'maxlength' => 50, 'size' => 15, ), )); $this ->fields[ 'password2' ] = new Pluf_Form_Field_Varchar( array ( 'required' => true, 'label' => __( 'Confirm your password' ), 'initial' => '' , 'widget' => 'Pluf_Form_Widget_PasswordInput' , 'widget_attrs' => array ( 'maxlength' => 50, 'size' => 15, ), )); } /** * Check the passwords. */ public function clean() { if ( $this ->cleaned_data[ 'password' ] != $this ->cleaned_data[ 'password2' ]) { throw new Pluf_Form_Invalid(__( 'The two passwords must be the same.' )); } if (! $this ->user->active) { throw new Pluf_Form_Invalid(__( 'This account is not active. Please contact the forge administrator to activate it.' )); } return $this ->cleaned_data; } /** * Validate the key. */ public function clean_key() { $this ->cleaned_data[ 'key' ] = trim( $this ->cleaned_data[ 'key' ]); $error = __( 'We are sorry but this validation key is not valid. Maybe you should directly copy/paste it from your validation email.' ); if (false === ( $cres =IDF_Form_PasswordInputKey::checkKeyHash( $this ->cleaned_data[ 'key' ]))) { throw new Pluf_Form_Invalid( $error ); } $guser = new Pluf_User(); $sql = new Pluf_SQL( 'email=%s AND id=%s' , array ( $cres [0], $cres [1])); if ( $guser ->getCount( array ( 'filter' => $sql ->gen())) != 1) { throw new Pluf_Form_Invalid( $error ); } if ((time() - $cres [2]) > 86400) { throw new Pluf_Form_Invalid(__( 'Sorry, but this verification key has expired, please restart the password recovery sequence. For security reasons, the verification key is only valid 24h.' )); } return $this ->cleaned_data[ 'key' ]; } function save( $commit =true) { if (! $this ->isValid()) { throw new Exception(__( 'Cannot save an invalid form.' )); } $this ->user->setFromFormData( $this ->cleaned_data); if ( $commit ) { $this ->user->update(); /** * [signal] * * Pluf_User::passwordUpdated * * [sender] * * IDF_Form_PasswordReset * * [description] * * This signal is sent when the user reset his * password from the password recovery page. * * [parameters] * * array('user' => $user) * */ $params = array ( 'user' => $this ->user); Pluf_Signal::send( 'Pluf_User::passwordUpdated' , 'IDF_Form_PasswordReset' , $params ); } return $this ->user; } } |