Merge remote-tracking branch 'origin/ticket/r16455-exclude_bot'
This commit is contained in:
Michael RICOIS
commit
37b955667f
@ -1,6 +1,6 @@
|
|||||||
<?php
|
<?php
|
||||||
/*
|
/*
|
||||||
* 2007-2011 PrestaShop
|
* 2007-2011 PrestaShop
|
||||||
*
|
*
|
||||||
* NOTICE OF LICENSE
|
* NOTICE OF LICENSE
|
||||||
*
|
*
|
||||||
@ -35,71 +35,78 @@ class PasswordControllerCore extends FrontController
|
|||||||
{
|
{
|
||||||
parent::process();
|
parent::process();
|
||||||
|
|
||||||
if (Tools::isSubmit('email'))
|
// Check User Agent - no bot
|
||||||
{
|
$userAgent = $_SERVER['HTTP_USER_AGENT'];
|
||||||
if (!($email = Tools::getValue('email')) OR !Validate::isEmail($email))
|
if (strstr(strtolower($userAgent), 'bot')) {
|
||||||
$this->errors[] = Tools::displayError('Invalid e-mail address');
|
$this->errors[] = Tools::displayError("Who are you ?");
|
||||||
else
|
|
||||||
{
|
|
||||||
$customer = new Customer();
|
|
||||||
$customer->getByemail($email);
|
|
||||||
if (!Validate::isLoadedObject($customer))
|
|
||||||
$this->errors[] = Tools::displayError('There is no account registered to this e-mail address.');
|
|
||||||
else
|
|
||||||
{
|
|
||||||
if ((strtotime($customer->last_passwd_gen.'+'.(int)($min_time = Configuration::get('PS_PASSWD_TIME_FRONT')).' minutes') - time()) > 0)
|
|
||||||
$this->errors[] = Tools::displayError('You can regenerate your password only every').' '.(int)($min_time).' '.Tools::displayError('minute(s)');
|
|
||||||
else
|
|
||||||
{
|
|
||||||
if (Mail::Send((int)(self::$cookie->id_lang), 'password_query', Mail::l('Password query confirmation'),
|
|
||||||
array('{email}' => $customer->email,
|
|
||||||
'{lastname}' => $customer->lastname,
|
|
||||||
'{firstname}' => $customer->firstname,
|
|
||||||
'{url}' => self::$link->getPageLink('password.php', true).'?token='.$customer->secure_key.'&id_customer='.(int)$customer->id),
|
|
||||||
$customer->email,
|
|
||||||
$customer->firstname.' '.$customer->lastname))
|
|
||||||
self::$smarty->assign(array('confirmation' => 2, 'email' => $customer->email));
|
|
||||||
else
|
|
||||||
$this->errors[] = Tools::displayError('Error occurred when sending the e-mail.');
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
elseif (($token = Tools::getValue('token')) && ($id_customer = (int)(Tools::getValue('id_customer'))))
|
|
||||||
{
|
if (empty($this->errors)) {
|
||||||
$email = Db::getInstance()->getValue('SELECT `email` FROM '._DB_PREFIX_.'customer c WHERE c.`secure_key` = \''.pSQL($token).'\' AND c.id_customer = '.(int)$id_customer);
|
if (Tools::isSubmit('email')) {
|
||||||
if ($email)
|
if (!($email = Tools::getValue('email')) OR !Validate::isEmail($email)) {
|
||||||
{
|
$this->errors[] = Tools::displayError('Invalid e-mail address');
|
||||||
$customer = new Customer();
|
}
|
||||||
$customer->getByemail($email);
|
else {
|
||||||
if ((strtotime($customer->last_passwd_gen.'+'.(int)($min_time = Configuration::get('PS_PASSWD_TIME_FRONT')).' minutes') - time()) > 0)
|
$customer = new Customer();
|
||||||
Tools::redirect('authentication.php?error_regen_pwd');
|
$customer->getByemail($email);
|
||||||
else
|
if (!Validate::isLoadedObject($customer)) {
|
||||||
{
|
$this->errors[] = Tools::displayError('There is no account registered to this e-mail address.');
|
||||||
$customer->passwd = Tools::encrypt($password = Tools::passwdGen((int)MIN_PASSWD_LENGTH,'RANDOM'));
|
}
|
||||||
$customer->last_passwd_gen = date('Y-m-d H:i:s', time());
|
else {
|
||||||
if ($customer->update())
|
if ((strtotime($customer->last_passwd_gen.'+'.(int)($min_time = Configuration::get('PS_PASSWD_TIME_FRONT')).' minutes') - time()) > 0) {
|
||||||
{
|
$this->errors[] = Tools::displayError('You can regenerate your password only every').' '.(int)($min_time).' '.Tools::displayError('minute(s)');
|
||||||
if (Mail::Send((int)(self::$cookie->id_lang), 'password', Mail::l('Your password'),
|
}
|
||||||
array('{email}' => $customer->email,
|
else {
|
||||||
'{lastname}' => $customer->lastname,
|
if (Mail::Send((int)(self::$cookie->id_lang), 'password_query', Mail::l('Password query confirmation'),
|
||||||
'{firstname}' => $customer->firstname,
|
array('{email}' => $customer->email,
|
||||||
'{passwd}' => $password),
|
'{lastname}' => $customer->lastname,
|
||||||
$customer->email,
|
'{firstname}' => $customer->firstname,
|
||||||
$customer->firstname.' '.$customer->lastname))
|
'{url}' => self::$link->getPageLink('password.php', true).'?token='.$customer->secure_key.'&id_customer='.(int)$customer->id),
|
||||||
self::$smarty->assign(array('confirmation' => 1, 'email' => $customer->email));
|
$customer->email,
|
||||||
else
|
$customer->firstname.' '.$customer->lastname))
|
||||||
$this->errors[] = Tools::displayError('Error occurred when sending the e-mail.');
|
self::$smarty->assign(array('confirmation' => 2, 'email' => $customer->email));
|
||||||
|
else
|
||||||
|
$this->errors[] = Tools::displayError('Error occurred when sending the e-mail.');
|
||||||
|
}
|
||||||
}
|
}
|
||||||
else
|
|
||||||
$this->errors[] = Tools::displayError('An error occurred with your account and your new password cannot be sent to your e-mail. Please report your problem using the contact form.');
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
else
|
elseif (($token = Tools::getValue('token')) && ($id_customer = (int)(Tools::getValue('id_customer')))) {
|
||||||
|
$email = Db::getInstance()->getValue('SELECT `email` FROM '._DB_PREFIX_.'customer c WHERE c.`secure_key` = \''.pSQL($token).'\' AND c.id_customer = '.(int)$id_customer);
|
||||||
|
if ($email) {
|
||||||
|
$customer = new Customer();
|
||||||
|
$customer->getByemail($email);
|
||||||
|
if ((strtotime($customer->last_passwd_gen.'+'.(int)($min_time = Configuration::get('PS_PASSWD_TIME_FRONT')).' minutes') - time()) > 0) {
|
||||||
|
Tools::redirect('authentication.php?error_regen_pwd');
|
||||||
|
}
|
||||||
|
else {
|
||||||
|
$customer->passwd = Tools::encrypt($password = Tools::passwdGen((int)MIN_PASSWD_LENGTH,'RANDOM'));
|
||||||
|
$customer->last_passwd_gen = date('Y-m-d H:i:s', time());
|
||||||
|
if ($customer->update())
|
||||||
|
{
|
||||||
|
if (Mail::Send((int)(self::$cookie->id_lang), 'password', Mail::l('Your password'),
|
||||||
|
array('{email}' => $customer->email,
|
||||||
|
'{lastname}' => $customer->lastname,
|
||||||
|
'{firstname}' => $customer->firstname,
|
||||||
|
'{passwd}' => $password),
|
||||||
|
$customer->email,
|
||||||
|
$customer->firstname.' '.$customer->lastname))
|
||||||
|
self::$smarty->assign(array('confirmation' => 1, 'email' => $customer->email));
|
||||||
|
else
|
||||||
|
$this->errors[] = Tools::displayError('Error occurred when sending the e-mail.');
|
||||||
|
}
|
||||||
|
else
|
||||||
|
$this->errors[] = Tools::displayError('An error occurred with your account and your new password cannot be sent to your e-mail. Please report your problem using the contact form.');
|
||||||
|
}
|
||||||
|
}
|
||||||
|
else {
|
||||||
|
$this->errors[] = Tools::displayError('We cannot regenerate your password with the data you submitted');
|
||||||
|
}
|
||||||
|
}
|
||||||
|
elseif (($token = Tools::getValue('token')) || ($id_customer = Tools::getValue('id_customer'))) {
|
||||||
$this->errors[] = Tools::displayError('We cannot regenerate your password with the data you submitted');
|
$this->errors[] = Tools::displayError('We cannot regenerate your password with the data you submitted');
|
||||||
|
}
|
||||||
}
|
}
|
||||||
elseif (($token = Tools::getValue('token')) || ($id_customer = Tools::getValue('id_customer')))
|
|
||||||
$this->errors[] = Tools::displayError('We cannot regenerate your password with the data you submitted');
|
|
||||||
}
|
}
|
||||||
|
|
||||||
public function displayContent()
|
public function displayContent()
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user