assign('login', $_REQUEST['login']); $gBitSmarty->assign('oldpass', $_REQUEST["oldpass"]); $gBitSmarty->assign('provpass', $_REQUEST["provpass"]); if (isset($_REQUEST["change"])) { if ($_REQUEST["pass"] != $_REQUEST["pass2"]) { $gBitSystem->fatalError( tra("The passwords didn't match") ); } if ($_REQUEST["pass"] == $_REQUEST["oldpass"]) { $gBitSystem->fatalError( tra("You can not use the same password again") ); } $passsword_error_msg = $gBitUser->verifyPasswordFormat( $_REQUEST["pass"] ); if (strlen($passsword_error_msg)) { $gBitSystem->fatalError( $passsword_error_msg ); } if (strlen($_REQUEST["provpass"]) ) { if (!$gBitUser->confirmRegistration($_REQUEST['login'], $_REQUEST["provpass"]) ) { $gBitSystem->fatalError( tra("Password reset request is invalid or has expired") ); } } elseif( !$gBitUser->isAdmin() && !$gBitUser->validate($_REQUEST['login'], $_REQUEST["oldpass"], '', '') ) { $gBitSystem->fatalError( tra("Invalid old password") ); } $gBitUser->storePassword( $_REQUEST["pass"], $_REQUEST['login'] ); $url = $gBitUser->login( $_REQUEST['login'], $_REQUEST["pass"] ); header ( "location: ".$url ); } // Display the template $gBitSystem->display( 'bitpackage:users/change_password.tpl'); ?>