Skip to content
Snippets Groups Projects
Normal view History Permalink
forgotPassword.php 2.51 KiB
Newer Older
Prasad's avatar
Add 6.4.0 source files.
Prasad committed
1 2 3 4 5 6 7 8 9 
<?php
/* +**********************************************************************************
 * The contents of this file are subject to the vtiger CRM Public License Version 1.1
 * ("License"); You may not use this file except in compliance with the License
 * The Original Code is:  vtiger CRM Open Source
 * The Initial Developer of the Original Code is vtiger.
 * Portions created by vtiger are Copyright (C) vtiger.
 * All Rights Reserved.
 * ********************************************************************************** */
Satish's avatar
Login Page updated for Vtiger7  
Satish committed
10 11 

require_once 'includes/main/WebUI.php';
Prasad's avatar
Add 6.4.0 source files.
Prasad committed
12 13 14 
require_once 'include/utils/utils.php';
require_once 'include/utils/VtlibUtils.php';
require_once 'modules/Vtiger/helpers/ShortURL.php';
Prasad's avatar
Fixes #299: Routing password request through outging server  
Prasad committed
15 
require_once 'vtlib/Vtiger/Mailer.php';
Satish's avatar
Login Page updated for Vtiger7  
Satish committed
16
Prasad's avatar
Add 6.4.0 source files.
Prasad committed
17 18 19 
global $adb;
$adb = PearDatabase::getInstance();
Satish's avatar
Login Page updated for Vtiger7  
Satish committed
20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 
if (isset($_REQUEST['username']) && isset($_REQUEST['emailId'])) {
	$username = vtlib_purify($_REQUEST['username']);
	$result = $adb->pquery('select email1 from vtiger_users where user_name= ? ', array($username));
	if ($adb->num_rows($result) > 0) {
		$email = $adb->query_result($result, 0, 'email1');
	}

	if (vtlib_purify($_REQUEST['emailId']) == $email) {
		$time = time();
		$options = array(
			'handler_path' => 'modules/Users/handlers/ForgotPassword.php',
			'handler_class' => 'Users_ForgotPassword_Handler',
			'handler_function' => 'changePassword',
			'handler_data' => array(
				'username' => $username,
				'email' => $email,
				'time' => $time,
amit r's avatar
#152721420::amit::update md5 hash to sha256 for forgot password  
amit r committed
37 
				'hash' => hash('sha256',$username.$time)
Satish's avatar
Login Page updated for Vtiger7  
Satish committed
38 39 40 41 42 43 44 
			)
		);
		$trackURL = Vtiger_ShortURL_Helper::generateURL($options);
		$content = 'Dear Customer,<br><br> 
						You recently requested a password reset for your VtigerCRM Open source Account.<br> 
						To create a new password, click on the link <a target="_blank" href='.$trackURL.'>here</a>. 
						<br><br>
amit r's avatar
#152722583::Amit::Reduce forgot password expire time link from 24hrs to 1 hr  
amit r committed
45 
						This request was made on '.date("Y-m-d H:i:s").' and will expire in next 1 hour.<br><br>
Satish's avatar
Login Page updated for Vtiger7  
Satish committed
46 47 
						Regards,<br> 
						VtigerCRM Open source Support Team.<br>';
Prasad's avatar
Add 6.4.0 source files.
Prasad committed
48
Prasad's avatar
Fixes #299: Routing password request through outging server  
Prasad committed
49 50 51 52 53 54 55 56 57 58 
		$subject = 'Vtiger CRM: Password Reset';

		$mail = new Vtiger_Mailer();
		$mail->IsHTML();
		$mail->Body = $content;
		$mail->Subject = $subject;
		$mail->AddAddress($email);

		$status = $mail->Send(true);
		if ($status === 1 || $status === true) {
Satish's avatar
Login Page updated for Vtiger7  
Satish committed
59 60 61 62 63 64 65 
			header('Location:  index.php?modules=Users&view=Login&mailStatus=success');
		} else {
			header('Location:  index.php?modules=Users&view=Login&error=statusError');
		}
	} else {
		header('Location:  index.php?modules=Users&view=Login&error=fpError');
	}
Prasad's avatar
Fixes #299: Routing password request through outging server  
Prasad committed
66 
}

Copyright 2023 Vtiger. All rights reserved.