[clinton/MarylandElectronicPetitionSignature.git] / admin / reset.php

<?PHP
include_once('../slack.php');
include_once('/var/www/secure.php'); 
include_once('../email.php');
if(isset($_POST['email'])){
      	$email = $_POST['email'];
      	$r = $petition->query("SELECT * FROM users WHERE email = '$email'");
	$row = mysqli_fetch_array($r,MYSQLI_ASSOC);
    	if ($row['email'] != ''){
          $pass =  rand(1000,9999);
          $salt = md5(rand(1000,9999));
          $hash = md5($pass.$salt);
          $encrypted = $hash.':'.$salt;
          //off_world_mail(,,);
	  $subject = 'MD Petition Login';
	  $body = 'Login with '.$email.' and your new password '.$pass.' at https://www.md-petition.com/admin/login.php';
          meps_mail($email,$body,$subject);
          $petition->query("update users set pass = '$encrypted' WHERE email = '$email'");
          echo "<h1>Your Password has been Sent.</h1>";
	  slack_general_admin('DEBUG: '.$body,'md-petition-signed');
        }else{
          echo "<h1>E-Mail address not found.</h1>";
	  slack_general('ADMIN: Reset- E-Mail address not found','md-petition');
        }	
}else{
	slack_general('ADMIN: reset.php','md-petition');	
}
?>
<script async src="https://www.googletagmanager.com/gtag/js?id=G-TY6C66ZWMX"></script>
<script>
  window.dataLayer = window.dataLayer || [];
  function gtag(){dataLayer.push(arguments);}
  gtag('js', new Date());

  gtag('config', 'G-TY6C66ZWMX');
</script>
<form action="reset.php" method="post" accept-charset="utf-8">	<table>
		<tbody><tr>
			<td>E-Mail Address</td>
			<td><input type="text" name="email" value=""></td>
		</tr>
		<tr>	
			<td>&nbsp;</td>
			<td><input type="submit" name="resetGo" value="Reset Password"> or <a href='login.php'>Login Here</a></td>
		</tr>
	</tbody></table>	
</form>
Commit	Line	Data
532de2f1	1	<?PHP
60eab1aa	2	include_once('../slack.php');
532de2f1	3	include_once('/var/www/secure.php');
0dd4d9f7	4	include_once('../email.php');
532de2f1 PM	5	if(isset($_POST['email'])){
	6	$email = $_POST['email'];
	7	$r = $petition->query("SELECT * FROM users WHERE email = '$email'");
0dd4d9f7 PM	8	$row = mysqli_fetch_array($r,MYSQLI_ASSOC);
0dd4d9f7 PM	9	if ($row['email'] != ''){
532de2f1 PM	10	$pass = rand(1000,9999);
	11	$salt = md5(rand(1000,9999));
	12	$hash = md5($pass.$salt);
	13	$encrypted = $hash.':'.$salt;
0dd4d9f7 PM	14	//off_world_mail(,,);
0dd4d9f7 PM	15	$subject = 'MD Petition Login';
bb171a21	16	$body = 'Login with '.$email.' and your new password '.$pass.' at https://www.md-petition.com/admin/login.php';
0dd4d9f7	17	meps_mail($email,$body,$subject);
532de2f1 PM	18	$petition->query("update users set pass = '$encrypted' WHERE email = '$email'");
532de2f1 PM	19	echo "<h1>Your Password has been Sent.</h1>";
2d021f26	20	slack_general_admin('DEBUG: '.$body,'md-petition-signed');
532de2f1 PM	21	}else{
532de2f1 PM	22	echo "<h1>E-Mail address not found.</h1>";
9503f62a	23	slack_general('ADMIN: Reset- E-Mail address not found','md-petition');
532de2f1	24	}
9503f62a PM	25	}else{
9503f62a PM	26	slack_general('ADMIN: reset.php','md-petition');
532de2f1 PM	27	}
532de2f1 PM	28	?>
301ed955 PM	29	<script async src="https://www.googletagmanager.com/gtag/js?id=G-TY6C66ZWMX"></script>
	30	<script>
	31	window.dataLayer = window.dataLayer \|\| [];
	32	function gtag(){dataLayer.push(arguments);}
	33	gtag('js', new Date());
532de2f1	34
301ed955 PM	35	gtag('config', 'G-TY6C66ZWMX');
301ed955 PM	36	</script>
532de2f1 PM	37	<form action="reset.php" method="post" accept-charset="utf-8"> <table>
	38	<tbody><tr>
	39	<td>E-Mail Address</td>
	40	<td><input type="text" name="email" value=""></td>
	41	</tr>
	42	<tr>
	43	<td> </td>
2f840576	44	<td><input type="submit" name="resetGo" value="Reset Password"> or <a href='login.php'>Login Here</a></td>
532de2f1 PM	45	</tr>
	46	</tbody></table>
	47	</form>