1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
|
<?php
$navig['login']="เข้าสู่ระบบ";
$navig['login_s']="ลืมรหัสผ่าน";
navigator($navig);
echo "<br>";
bar_header("ลืมรหัสผ่าน");
fieldset_top("ลืมรหัสผ่าน");
if($_POST[btn_submit])
{
$sql_user = "SELECT * FROM cms_main_user as t1 inner join cms_user_profile as t2 on (t1.id_user = t2.id_user) WHERE t1.user='$_POST[username]' and t2.email='$_POST[email]'";
$res = mysql_query ($sql_user) or die ("can't get sql user");
$dat = mysql_num_rows($res);
$sql_req = "SELECT * FROM cms_pass_request WHERE username='$_POST[username]' and email='$_POST[email]'";
$res_req = mysql_query ($sql_req) or die ("can't get sql user");
$req = mysql_num_rows($res_req);
if($dat==1 and $req ==0 )
{
$sql_id = "SELECT t1.id_user FROM cms_main_user as t1 inner join cms_user_profile as t2 on (t1.id_user = t2.id_user) WHERE user='$_POST[username]' and email='$_POST[email]' ";
$res_id = mysql_query ($sql_id) or die('canta');;
$dat_id = mysql_fetch_object ($res_id);
$userid = $dat_id->id_user;
$sesskey = md5(rand(1,50000));
$date = date('d/m/y');
$sql_in = "INSERT INTO cms_pass_request (username,password,email,sesskey,confirmed,userid,date_request) values ('$_POST[username]','$_POST[pass1]','$_POST[email]','$sesskey',0,'".$userid."','$date')";
mysql_query ($sql_in) or die ("can'tb");
$user_en = base64_encode($_POST[username]);
$host = $_SERVER['HTTP_HOST']."/index.php?mod=confirm_changepass&path=login&key=$sesskey&u=$user_en";
// $webObeclms = "/index.php?mod=confirm_email&path=login&key=$sesskey&u=$en_username";
// $subject = " Confirm change password in $host\n";
$content = " ยืนยันการเปลี่ยน password ของท่าน \n username $_POST[username]'<br/>
Password ใหม่ของท่านคือ : $_POST[pass1]<br/>
โปรดคลิกลิงค์นี้เพื่อทำการยืนยัน<br/>
<a href=\"$host\">ยืนยันเปลี่ยนรหัสผ่าน</a><br/>
หรือ เข้าตามนี้<br/> $host<br/>
";
//mail($_POST[email],"CHANGE PASSWORD",$msg,'Content-Type: text/html; charset="UTF-8"\r\nFrom:Admin<>');
// sendmail_getpass($sesskey,$_POST[pass1],$_POST[username],$user_en);// send email from lib
$email_send = $_POST[email];
$mail = new MIMEMAIL("HTML");
$mail->senderName = "Koratgroup Auto System";
$mail->senderMail = "oan_pokemon@hotmail.com";
//$mail->bcc = "bcc@email";
$mail->subject = "Koratgroup";
$mail->body = $content."test mail"; // OR: $mail->body = "path_to_file/filename";
// attach file user code below here
$mail->attachment[] ="";
// $mail->attachment[] = $_SERVER['DOCUMENT_ROOT']."/".$_SESSION['web_name']."/mail_temp/$folder_temp/".$file_send;
//$mail->attachment[] = "path_to_file2/filename2";
//...
$mail->create();
$mail->send($email_send);
//$mail->send("recipient2@email,recipient3@email,recipient4@email");
echo "<center><font color='red'><b>ส่งคำขอแล้ว กรุณารอสักครู่</b></font>";
echo "<meta http-equiv='refresh' content='3; url=index.php'>" ;
}
else if ($req>=1)
echo "<center><font color='red'>ท่านมีรายการคำขอเปลี่ยน password อยู่แล้ว<br/> กรุณาตรวจสอบข้อมูลใน email ของท่าน</font></center>";
else
echo "<center><font color='red'>Username หรือ Email ของท่านไม่ตรง กรุณาตรวจสอบอีกครั้ง</font></center>";
}
?>
<form name='auth_form' method="post" action="">
<table border="0" align="center">
<tr>
<td colspan="3" align="center">
<img src='coremain/images/online.gif'> <b>ขอรหัสผ่านใหม่</b>
</td>
</tr>
<tr height='35'>
<td>
<img src='coremain/images/bullet2.gif'> กรอก username ของท่าน
</td>
<td>
<input type="text" name="username" value="<?php echo $_POST[username];?>">
</td>
</tr>
<tr height='35'>
<td>
<img src='coremain/images/bullet2.gif'> กรอก e-mail ของท่าน
</td>
<td>
<input type="text" name="email" value="<?php echo $_POST[email];?>">
</td>
</tr>
<tr height='35'>
<td>
<img src='coremain/images/bullet2.gif'> กรอก password ใหม่
</td>
<td>
<input type="password" name="pass1">
</td>
</tr>
<tr height='35'>
<td>
<img src='coremain/images/bullet2.gif'> ยืนยัน password ใหม่
</td>
<td>
<input type="password" name="pass2">
</td>
</tr>
</table>
<br/>
<center><input type="submit" name="btn_submit" onclick='return validate_form();' value='ขอรหัสผ่านใหม่' onmouseover=this.style.cursor='hand'></center>
</form>
<?php fieldset_down();?>
<script language="javascript">
function validate_form()
{
var x = document.auth_form;
if (x.pass1.value=="")
{
alert("กรุณากรอก Password");
x.pass1.focus();
return false;
}
if (x.pass2.value=="")
{
alert("กรุณากรอก Password");
x.pass2.focus();
return false;
}
if (x.pass2.value!=x.pass1.value)
{
alert("รหัสผ่านไม่ตรงกัน");
x.pass2.focus();
return false;
}
else
return true;
}
</script>
|