load->language('account/forgotten'); if ($this->customer->isLogged()) { $this->response->redirect($this->url->link('account/account', 'language=' . $this->config->get('config_language') . '&customer_token=' . $this->session->data['customer_token'])); } $this->document->setTitle($this->language->get('heading_title')); $data['breadcrumbs'] = []; $data['breadcrumbs'][] = [ 'text' => $this->language->get('text_home'), 'href' => $this->url->link('common/home', 'language=' . $this->config->get('config_language')) ]; $data['breadcrumbs'][] = [ 'text' => $this->language->get('text_account'), 'href' => $this->url->link('account/account', 'language=' . $this->config->get('config_language')) ]; $data['breadcrumbs'][] = [ 'text' => $this->language->get('text_forgotten'), 'href' => $this->url->link('account/forgotten', 'language=' . $this->config->get('config_language')) ]; $data['confirm'] = $this->url->link('account/forgotten.confirm', 'language=' . $this->config->get('config_language')); $data['back'] = $this->url->link('account/login', 'language=' . $this->config->get('config_language')); $data['column_left'] = $this->load->controller('common/column_left'); $data['column_right'] = $this->load->controller('common/column_right'); $data['content_top'] = $this->load->controller('common/content_top'); $data['content_bottom'] = $this->load->controller('common/content_bottom'); $data['footer'] = $this->load->controller('common/footer'); $data['header'] = $this->load->controller('common/header'); $this->response->setOutput($this->load->view('account/forgotten', $data)); } /** * @return void */ public function confirm(): void { $this->load->language('account/forgotten'); $json = []; if ($this->customer->isLogged()) { $json['redirect'] = $this->url->link('account/account', 'language=' . $this->config->get('config_language') . '&customer_token=' . $this->session->data['customer_token'], true); } if (!$json) { $keys = ['email']; foreach ($keys as $key) { if (!isset($this->request->post[$key])) { $this->request->post[$key] = ''; } } $this->load->model('account/customer'); $customer_info = $this->model_account_customer->getCustomerByEmail($this->request->post['email']); if (!$customer_info) { $json['error'] = $this->language->get('error_not_found'); } } if (!$json) { $this->model_account_customer->editCode($this->request->post['email'], oc_token(40)); $this->session->data['success'] = $this->language->get('text_success'); $json['redirect'] = $this->url->link('account/login', 'language=' . $this->config->get('config_language'), true); } $this->response->addHeader('Content-Type: application/json'); $this->response->setOutput(json_encode($json)); } /** * @return void */ public function reset(): void { $this->load->language('account/forgotten'); if (isset($this->request->get['email'])) { $email = (string)$this->request->get['email']; } else { $email = ''; } if (isset($this->request->get['code'])) { $code = (string)$this->request->get['code']; } else { $code = ''; } if ($this->customer->isLogged()) { $this->response->redirect($this->url->link('account/account', 'language=' . $this->config->get('config_language') . '&customer_token=' . $this->session->data['customer_token'])); } $this->load->model('account/customer'); $customer_info = $this->model_account_customer->getCustomerByEmail($email); if (!$customer_info || !$customer_info['code'] || $customer_info['code'] !== $code) { $this->model_account_customer->editCode($email, ''); $this->session->data['error'] = $this->language->get('error_code'); $this->response->redirect($this->url->link('account/login', 'language=' . $this->config->get('config_language'))); } $this->document->setTitle($this->language->get('heading_reset')); $data['breadcrumbs'] = []; $data['breadcrumbs'][] = [ 'text' => $this->language->get('text_home'), 'href' => $this->url->link('common/home', 'language=' . $this->config->get('config_language')) ]; $data['breadcrumbs'][] = [ 'text' => $this->language->get('text_account'), 'href' => $this->url->link('account/account', 'language=' . $this->config->get('config_language')) ]; $data['breadcrumbs'][] = [ 'text' => $this->language->get('heading_title'), 'href' => $this->url->link('account/forgotten.reset', 'language=' . $this->config->get('config_language')) ]; $this->session->data['reset_token'] = substr(bin2hex(openssl_random_pseudo_bytes(26)), 0, 26); $data['save'] = $this->url->link('account/forgotten.password', 'language=' . $this->config->get('config_language') . '&email=' . urlencode($email) . '&code=' . $code . '&reset_token=' . $this->session->data['reset_token']); $data['back'] = $this->url->link('account/login', 'language=' . $this->config->get('config_language')); $data['column_left'] = $this->load->controller('common/column_left'); $data['column_right'] = $this->load->controller('common/column_right'); $data['content_top'] = $this->load->controller('common/content_top'); $data['content_bottom'] = $this->load->controller('common/content_bottom'); $data['footer'] = $this->load->controller('common/footer'); $data['header'] = $this->load->controller('common/header'); $this->response->setOutput($this->load->view('account/forgotten_reset', $data)); } /** * @return void */ public function password(): void { $this->load->language('account/forgotten'); $json = []; if (isset($this->request->get['email'])) { $email = (string)$this->request->get['email']; } else { $email = ''; } if (isset($this->request->get['code'])) { $code = (string)$this->request->get['code']; } else { $code = ''; } if ($this->customer->isLogged()) { $json['redirect'] = $this->url->link('account/account', 'language=' . $this->config->get('config_language') . '&customer_token=' . $this->session->data['customer_token'], true); } if (!isset($this->request->get['reset_token']) || !isset($this->session->data['reset_token']) || ($this->request->get['reset_token'] != $this->session->data['reset_token'])) { $this->session->data['error'] = $this->language->get('error_session'); $json['redirect'] = $this->url->link('account/forgotten', 'language=' . $this->config->get('config_language'), true); } $this->load->model('account/customer'); $customer_info = $this->model_account_customer->getCustomerByEmail($email); if (!$customer_info || !$customer_info['code'] || $customer_info['code'] !== $code) { // Reset token $this->model_account_customer->editCode($email, ''); $this->session->data['error'] = $this->language->get('error_code'); $json['redirect'] = $this->url->link('account/forgotten', 'language=' . $this->config->get('config_language'), true); } if (!$json) { $keys = [ 'password', 'confirm' ]; foreach ($keys as $key) { if (!isset($this->request->post[$key])) { $this->request->post[$key] = ''; } } if ((oc_strlen(html_entity_decode($this->request->post['password'], ENT_QUOTES, 'UTF-8')) < 4) || (oc_strlen(html_entity_decode($this->request->post['password'], ENT_QUOTES, 'UTF-8')) > 40)) { $json['error']['password'] = $this->language->get('error_password'); } if ($this->request->post['confirm'] != $this->request->post['password']) { $json['error']['confirm'] = $this->language->get('error_confirm'); } } if (!$json) { $this->model_account_customer->editPassword($customer_info['email'], $this->request->post['password']); $this->session->data['success'] = $this->language->get('text_success'); unset($this->session->data['reset_token']); $json['redirect'] = $this->url->link('account/login', 'language=' . $this->config->get('config_language'), true); } $this->response->addHeader('Content-Type: application/json'); $this->response->setOutput(json_encode($json)); } }