assign('login', $_REQUEST['login']); $gBitSmarty->assign('oldpass', $_REQUEST["oldpass"]); $gBitSmarty->assign('provpass', $_REQUEST["provpass"]); if (isset($_REQUEST["change"])) { $userInfo = $gBitUser->getUserInfo( array( 'user_id' => $_REQUEST['user_id'] ) ); if ($_REQUEST["pass"] == $_REQUEST["oldpass"]) { $gBitSystem->fatalError( tra("You can not use the same password again") ); } if( $passswordError = $gBitUser->verifyPasswordFormat( $_REQUEST["pass"], $_REQUEST["pass2"] ) ) { $gBitSystem->fatalError( tra( $passswordError )); } $validated = FALSE; if( !empty( $_REQUEST["provpass"] ) ) { if( !($validated = $gBitUser->confirmRegistration( $userInfo['user_id'], $_REQUEST["provpass"] )) ) { $gBitSystem->fatalError( tra("Password reset request is invalid or has expired") ); } } elseif( $gBitUser->isRegistered() ) { if( !( $validated = $gBitUser->validate( $userInfo['login'], $_REQUEST["oldpass"], '', '' )) ) { $gBitSystem->fatalError( tra("Invalid old password") ); } } if( $validated ) { $gBitUser->storePassword( $_REQUEST["pass"], $userInfo['login'] ); $url = $gBitUser->login( $userInfo['login'], $_REQUEST["pass"] ); } header ( "location: ".$url ); } // Display the template $gBitSystem->display( 'bitpackage:users/change_password.tpl', 'Change Password' ); ?>