1
0
mirror of https://github.com/cydrobolt/polr.git synced 2024-11-13 21:52:29 +01:00
polr/fpasslib.php
2014-12-28 14:52:06 -05:00

41 lines
1.6 KiB
PHP

<?php
// includes for forgotpassword functions
require_once 'helper-mailsend.php';
require_once 'lib-auth.php';
require_once 'lib-core.php';
$polrauth = new polrauth();
$sgmail = new sgmail();
class fpass {
public function sendfmail($to, $username, $rkey) {
global $ip;
global $sgmail;
global $wsa;
global $wsn;
$subject = $wsn.' Password Recovery';
$message = 'Hello,<br /><br />'
. "Someone has requested a password reset email (IP: $ip)<br />"
. "To recover your password, click here: <a href='http://{$wsa}/forgotpass.php?key=$rkey&username=$username'>http://{$wsa}/forgotpass.php?key=$rkey&username=$username</a><br />"
. "If this was not you, no further action is needed. If you are constantly receiving these emails, but did not request<br />"
. "a new password, please contact us with the IP printed above. <br />"
. "<br />"
. "Cheers,<br />"
. "The {$wsn} Team<br />";
$sgmail->sendmail($to, $subject, $message); //actually send the email
}
public function hash($pass) {
$opts = [
'cost' => 10,
];
$hashed = password_hash($pass, PASSWORD_BCRYPT, $opts);
return $hashed;
}
public function changepass($newpass, $username) {
global $mysqli;
$username = $mysqli->real_escape_string($username);
$hashpass = $this->hash($newpass);
$qr = "UPDATE auth SET password='{$hashpass}' WHERE username='{$username}';";
$e = $mysqli->query($qr) or showerror();
return true;
}
}