dolibarr/htdocs/user/passwordforgotten.php

<?php
/* Copyright (C) 2007-2011	Laurent Destailleur	<eldy@users.sourceforge.net>
 * Copyright (C) 2008-2012	Regis Houssin		<regis.houssin@inodbox.com>
 * Copyright (C) 2008-2011	Juanjo Menent		<jmenent@2byte.es>
 * Copyright (C) 2014       Teddy Andreotti    	<125155@supinfo.com>
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program. If not, see <https://www.gnu.org/licenses/>.
 */

/**
 *       \file       htdocs/user/passwordforgotten.php
 *       \brief      Page to ask a new password
 */

define("NOLOGIN", 1); // This means this output page does not require to be logged.

require '../main.inc.php';
require_once DOL_DOCUMENT_ROOT.'/contact/class/contact.class.php';
require_once DOL_DOCUMENT_ROOT.'/core/lib/usergroups.lib.php';
require_once DOL_DOCUMENT_ROOT.'/core/lib/functions2.lib.php';
if (!empty($conf->ldap->enabled)) {
	require_once DOL_DOCUMENT_ROOT.'/core/class/ldap.class.php';
}

// Load translation files required by page
$langs->loadLangs(array('errors', 'users', 'companies', 'ldap', 'other'));

// Security check
if (!empty($conf->global->MAIN_SECURITY_DISABLEFORGETPASSLINK)) {
	header("Location: ".DOL_URL_ROOT.'/');
	exit;
}

$action = GETPOST('action', 'aZ09');
$mode = $dolibarr_main_authentication;
if (!$mode) {
	$mode = 'http';
}

$username = GETPOST('username', 'alphanohtml');
$passworduidhash = GETPOST('passworduidhash', 'alpha');
$conf->entity = (GETPOST('entity', 'int') ? GETPOST('entity', 'int') : 1);

// Instantiate hooks of thirdparty module only if not already define
$hookmanager->initHooks(array('passwordforgottenpage'));


if (GETPOST('dol_hide_leftmenu', 'alpha') || !empty($_SESSION['dol_hide_leftmenu'])) {
	$conf->dol_hide_leftmenu = 1;
}
if (GETPOST('dol_hide_topmenu', 'alpha') || !empty($_SESSION['dol_hide_topmenu'])) {
	$conf->dol_hide_topmenu = 1;
}
if (GETPOST('dol_optimize_smallscreen', 'alpha') || !empty($_SESSION['dol_optimize_smallscreen'])) {
	$conf->dol_optimize_smallscreen = 1;
}
if (GETPOST('dol_no_mouse_hover', 'alpha') || !empty($_SESSION['dol_no_mouse_hover'])) {
	$conf->dol_no_mouse_hover = 1;
}
if (GETPOST('dol_use_jmobile', 'alpha') || !empty($_SESSION['dol_use_jmobile'])) {
	$conf->dol_use_jmobile = 1;
}


/**
 * Actions
 */

$parameters = array('username' => $username);
$reshook = $hookmanager->executeHooks('doActions', $parameters, $object, $action); // Note that $action and $object may have been modified by some hooks
if ($reshook < 0) {
	$message = $hookmanager->error;
}

if (empty($reshook)) {
	// Validate new password
	if ($action == 'validatenewpassword' && $username && $passworduidhash) {
		$edituser = new User($db);
		$result = $edituser->fetch('', $username);
		if ($result < 0) {
			$message = '<div class="error">'.dol_escape_htmltag($langs->trans("ErrorLoginDoesNotExists", $username)).'</div>';
		} else {
			global $dolibarr_main_instance_unique_id;

			//print $edituser->pass_temp.'-'.$edituser->id.'-'.$dolibarr_main_instance_unique_id.' '.$passworduidhash;
			if ($edituser->pass_temp && dol_verifyHash($edituser->pass_temp.'-'.$edituser->id.'-'.$dolibarr_main_instance_unique_id, $passworduidhash)) {
				// Clear session
				unset($_SESSION['dol_login']);
				$_SESSION['dol_loginmesg'] = $langs->transnoentitiesnoconv('NewPasswordValidated'); // Save message for the session page

				$newpassword = $edituser->setPassword($user, $edituser->pass_temp, 0);
				dol_syslog("passwordforgotten.php new password for user->id=".$edituser->id." validated in database");

				header("Location: ".DOL_URL_ROOT.'/');
				exit;
			} else {
				$langs->load("errors");
				$message = '<div class="error">'.$langs->trans("ErrorFailedToValidatePasswordReset").'</div>';
			}
		}
	}
	// Action modif mot de passe
	if ($action == 'buildnewpassword' && $username) {
		$sessionkey = 'dol_antispam_value';
		$ok = (array_key_exists($sessionkey, $_SESSION) === true && (strtolower($_SESSION[$sessionkey]) == strtolower(GETPOST('code'))));

		// Verify code
		if (!$ok) {
			$message = '<div class="error">'.$langs->trans("ErrorBadValueForCode").'</div>';
		} else {
			$isanemail = preg_match('/@/', $username);

			$edituser = new User($db);
			$result = $edituser->fetch('', $username, '', 1);
			if ($result == 0 && $isanemail) {
				$result = $edituser->fetch('', '', '', 1, -1, $username);
			}

			if ($result <= 0 && $edituser->error == 'USERNOTFOUND') {
				$message = '<div class="warning paddingtopbottom'.(empty($conf->global->MAIN_LOGIN_BACKGROUND) ? '' : ' backgroundsemitransparent boxshadow').'">';
				if (!$isanemail) {
					$message .= $langs->trans("IfLoginExistPasswordRequestSent");
				} else {
					$message .= $langs->trans("IfEmailExistPasswordRequestSent");
				}
				$message .= '</div>';
				$username = '';
			} else {
				if (!$edituser->email) {
					$message = '<div class="error">'.$langs->trans("ErrorLoginHasNoEmail").'</div>';
				} else {
					$newpassword = $edituser->setPassword($user, '', 1);
					if ($newpassword < 0) {
						// Failed
						$message = '<div class="error">'.$langs->trans("ErrorFailedToChangePassword").'</div>';
					} else {
						// Success
						if ($edituser->send_password($user, $newpassword, 1) > 0) {
							$message = '<div class="warning paddingtopbottom'.(empty($conf->global->MAIN_LOGIN_BACKGROUND) ? '' : ' backgroundsemitransparent boxshadow').'">';
							if (!$isanemail) {
								$message .= $langs->trans("IfLoginExistPasswordRequestSent");
							} else {
								$message .= $langs->trans("IfEmailExistPasswordRequestSent");
							}
							//$message .= $langs->trans("PasswordChangeRequestSent", $edituser->login, dolObfuscateEmail($edituser->email));
							$message .= '</div>';
							$username = '';
						} else {
							$message .= '<div class="error">'.$edituser->error.'</div>';
						}
					}
				}
			}
		}
	}
}


/**
 * View
 */

$dol_url_root = DOL_URL_ROOT;

// Title
$title = 'Dolibarr '.DOL_VERSION;
if (!empty($conf->global->MAIN_APPLICATION_TITLE)) {
	$title = $conf->global->MAIN_APPLICATION_TITLE;
}

// Select templates
if (file_exists(DOL_DOCUMENT_ROOT."/theme/".$conf->theme."/tpl/passwordforgotten.tpl.php")) {
	$template_dir = DOL_DOCUMENT_ROOT."/theme/".$conf->theme."/tpl/";
} else {
	$template_dir = DOL_DOCUMENT_ROOT."/core/tpl/";
}

if (!$username) {
	$focus_element = 'username';
} else {
	$focus_element = 'password';
}

// Send password button enabled ?
$disabled = 'disabled';
if (preg_match('/dolibarr/i', $mode)) {
	$disabled = '';
}
if (!empty($conf->global->MAIN_SECURITY_ENABLE_SENDPASSWORD)) {
	$disabled = ''; // To force button enabled
}

// Show logo (search in order: small company logo, large company logo, theme logo, common logo)
$width = 0;
$rowspan = 2;
$urllogo = DOL_URL_ROOT.'/theme/common/login_logo.png';
if (!empty($mysoc->logo_small) && is_readable($conf->mycompany->dir_output.'/logos/thumbs/'.$mysoc->logo_small)) {
	$urllogo = DOL_URL_ROOT.'/viewimage.php?cache=1&amp;modulepart=mycompany&amp;file='.urlencode('logos/thumbs/'.$mysoc->logo_small);
} elseif (!empty($mysoc->logo_small) && is_readable($conf->mycompany->dir_output.'/logos/'.$mysoc->logo)) {
	$urllogo = DOL_URL_ROOT.'/viewimage.php?cache=1&amp;modulepart=mycompany&amp;file='.urlencode('logos/'.$mysoc->logo);
	$width = 128;
} elseif (is_readable(DOL_DOCUMENT_ROOT.'/theme/'.$conf->theme.'/img/dolibarr_logo.svg')) {
	$urllogo = DOL_URL_ROOT.'/theme/'.$conf->theme.'/img/dolibarr_logo.svg';
} elseif (is_readable(DOL_DOCUMENT_ROOT.'/theme/dolibarr_logo.svg')) {
	$urllogo = DOL_URL_ROOT.'/theme/dolibarr_logo.svg';
}

// Security graphical code
if (function_exists("imagecreatefrompng") && !$disabled) {
	$captcha = 1;
	$captcha_refresh = img_picto($langs->trans("Refresh"), 'refresh', 'id="captcha_refresh_img"');
}

// Execute hook getPasswordForgottenPageOptions (for table)
$parameters = array('entity' => GETPOST('entity', 'int'));
$hookmanager->executeHooks('getPasswordForgottenPageOptions', $parameters); // Note that $action and $object may have been modified by some hooks
if (is_array($hookmanager->resArray) && !empty($hookmanager->resArray)) {
	$morelogincontent = $hookmanager->resArray; // (deprecated) For compatibility
} else {
	$morelogincontent = $hookmanager->resPrint;
}

// Execute hook getPasswordForgottenPageExtraOptions (eg for js)
$parameters = array('entity' => GETPOST('entity', 'int'));
$reshook = $hookmanager->executeHooks('getPasswordForgottenPageExtraOptions', $parameters); // Note that $action and $object may have been modified by some hooks.
$moreloginextracontent = $hookmanager->resPrint;

include $template_dir.'passwordforgotten.tpl.php'; // To use native PHP
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`<?php`
Fix: broken features 2012-09-02 09:27:06 +02:00			`/* Copyright (C) 2007-2011 Laurent Destailleur <eldy@users.sourceforge.net>`
FIX change my deprecated email 2018-10-27 14:43:12 +02:00			`* Copyright (C) 2008-2012 Regis Houssin <regis.houssin@inodbox.com>`
Fix: broken features 2012-09-02 09:27:06 +02:00			`* Copyright (C) 2008-2011 Juanjo Menent <jmenent@2byte.es>`
Fix param for username is $username and not $login 2015-12-21 03:01:37 +01:00			`* Copyright (C) 2014 Teddy Andreotti <125155@supinfo.com>`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`*`
			`* This program is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
Prepare move to other licence. For the moment all answers for licence upgrade were not yet received. So we prepare for GPL by uniformizing licence text keys to GPL-3+. Will move later to AGPL if all answers are positive. 2013-01-16 15:36:08 +01:00			`* the Free Software Foundation; either version 3 of the License, or`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
Move Gnu.org to https 2019-09-23 21:55:30 +02:00			`* along with this program. If not, see <https://www.gnu.org/licenses/>.`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`*/`

Minor changes 2009-03-13 14:12:43 +01:00			`/**`
			`* \file htdocs/user/passwordforgotten.php`
Doxygen 2011-07-08 17:50:28 +02:00			`* \brief Page to ask a new password`
Minor changes 2009-03-13 14:12:43 +01:00			`*/`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`define("NOLOGIN", 1); // This means this output page does not require to be logged.`
Fix: Pb sous Plesk 2008-01-20 22:53:43 +01:00
Removed parenthesis from all require and replaced with single quotes 2012-08-22 23:24:21 +02:00			`require '../main.inc.php';`
Removed parenthesis from all require_once and replaced with single quotes 2012-08-22 23:11:24 +02:00			`require_once DOL_DOCUMENT_ROOT.'/contact/class/contact.class.php';`
			`require_once DOL_DOCUMENT_ROOT.'/core/lib/usergroups.lib.php';`
Merge branch 'develop-HiddenMailPasswordForgotten' of github.com:Devensys/dolibarr into Devensys-develop-HiddenMailPasswordForgotten Conflicts: htdocs/core/lib/functions.lib.php 2014-10-11 23:44:50 +02:00			`require_once DOL_DOCUMENT_ROOT.'/core/lib/functions2.lib.php';`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!empty($conf->ldap->enabled)) {`
			`require_once DOL_DOCUMENT_ROOT.'/core/class/ldap.class.php';`
			`}`
Fix: Identification par code securite sur logon. Utilisation du bon nom de session PHP. 2007-12-29 18:06:53 +01:00
loadlangs 2018-05-26 16:24:54 +02:00			`// Load translation files required by page`
			`$langs->loadLangs(array('errors', 'users', 'companies', 'ldap', 'other'));`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00
Fix: All output page must include main.inc.php 2009-12-29 19:10:48 +01:00			`// Security check`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!empty($conf->global->MAIN_SECURITY_DISABLEFORGETPASSLINK)) {`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2020-10-31 14:32:18 +01:00			`header("Location: ".DOL_URL_ROOT.'/');`
			`exit;`
Qual: redirect instead of the error message 2010-10-22 21:42:04 +02:00			`}`
Test: smarty integration 2009-12-29 12:30:41 +01:00
Fix GETPOST on 'action' 2020-09-16 19:39:50 +02:00			`$action = GETPOST('action', 'aZ09');`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$mode = $dolibarr_main_authentication;`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!$mode) {`
			`$mode = 'http';`
			`}`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00
Fix GETPOST on 'action' 2020-09-16 19:39:50 +02:00			`$username = GETPOST('username', 'alphanohtml');`
Set default length of password to 12 car. FIX #yogosha5855 2021-04-17 03:11:58 +02:00			`$passworduidhash = GETPOST('passworduidhash', 'alpha');`
fix html5 user 2019-02-16 10:29:15 +01:00			`$conf->entity = (GETPOST('entity', 'int') ? GETPOST('entity', 'int') : 1);`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00
Fix: mass convert line delimiters 2012-09-07 17:23:16 +02:00			`// Instantiate hooks of thirdparty module only if not already define`
Fix: broken features 2012-09-02 09:27:06 +02:00			`$hookmanager->initHooks(array('passwordforgottenpage'));`

Qual: Uniformize code 2013-04-05 18:09:05 +02:00
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (GETPOST('dol_hide_leftmenu', 'alpha') \|\| !empty($_SESSION['dol_hide_leftmenu'])) {`
			`$conf->dol_hide_leftmenu = 1;`
			`}`
			`if (GETPOST('dol_hide_topmenu', 'alpha') \|\| !empty($_SESSION['dol_hide_topmenu'])) {`
			`$conf->dol_hide_topmenu = 1;`
			`}`
			`if (GETPOST('dol_optimize_smallscreen', 'alpha') \|\| !empty($_SESSION['dol_optimize_smallscreen'])) {`
			`$conf->dol_optimize_smallscreen = 1;`
			`}`
			`if (GETPOST('dol_no_mouse_hover', 'alpha') \|\| !empty($_SESSION['dol_no_mouse_hover'])) {`
			`$conf->dol_no_mouse_hover = 1;`
			`}`
			`if (GETPOST('dol_use_jmobile', 'alpha') \|\| !empty($_SESSION['dol_use_jmobile'])) {`
			`$conf->dol_use_jmobile = 1;`
			`}`
Qual: Uniformize code 2013-04-05 18:09:05 +02:00
Fix: D�clenchement des triggers incorrects sur modif mot de passe adh�rent ou user 2007-10-21 22:40:24 +02:00
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`/**`
			`* Actions`
			`*/`

NEW add doAction hook in passwordforgotten page 2020-12-11 13:31:50 +01:00			`$parameters = array('username' => $username);`
			`$reshook = $hookmanager->executeHooks('doActions', $parameters, $object, $action); // Note that $action and $object may have been modified by some hooks`
			`if ($reshook < 0) {`
code syntax user directory 2021-02-26 13:18:40 +01:00			`$message = $hookmanager->error;`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`}`
NEW add doAction hook in passwordforgotten page 2020-12-11 13:31:50 +01:00
			`if (empty($reshook)) {`
code syntax user directory 2021-02-26 13:18:40 +01:00			`// Validate new password`
Set default length of password to 12 car. FIX #yogosha5855 2021-04-17 03:11:58 +02:00			`if ($action == 'validatenewpassword' && $username && $passworduidhash) {`
code syntax user directory 2021-02-26 13:18:40 +01:00			`$edituser = new User($db);`
Fix report by Ahsan Aziz (can reset the password of another user that did not request password reset). 2021-07-05 17:29:10 +02:00			`$result = $edituser->fetch('', $username);`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if ($result < 0) {`
			`$message = '<div class="error">'.dol_escape_htmltag($langs->trans("ErrorLoginDoesNotExists", $username)).'</div>';`
			`} else {`
Set default length of password to 12 car. FIX #yogosha5855 2021-04-17 03:11:58 +02:00			`global $dolibarr_main_instance_unique_id;`

			`//print $edituser->pass_temp.'-'.$edituser->id.'-'.$dolibarr_main_instance_unique_id.' '.$passworduidhash;`
Fix report by Ahsan Aziz (can reset the password of another user that did not request password reset). 2021-07-05 17:29:10 +02:00			`if ($edituser->pass_temp && dol_verifyHash($edituser->pass_temp.'-'.$edituser->id.'-'.$dolibarr_main_instance_unique_id, $passworduidhash)) {`
code syntax user directory 2021-02-26 13:18:40 +01:00			`// Clear session`
			`unset($_SESSION['dol_login']);`
Fix escape error message 2021-08-20 12:38:44 +02:00			`$_SESSION['dol_loginmesg'] = $langs->transnoentitiesnoconv('NewPasswordValidated'); // Save message for the session page`
code syntax user directory 2021-02-26 13:18:40 +01:00
			`$newpassword = $edituser->setPassword($user, $edituser->pass_temp, 0);`
			`dol_syslog("passwordforgotten.php new password for user->id=".$edituser->id." validated in database");`
Set default length of password to 12 car. FIX #yogosha5855 2021-04-17 03:11:58 +02:00
code syntax user directory 2021-02-26 13:18:40 +01:00			`header("Location: ".DOL_URL_ROOT.'/');`
			`exit;`
			`} else {`
			`$langs->load("errors");`
			`$message = '<div class="error">'.$langs->trans("ErrorFailedToValidatePasswordReset").'</div>';`
			`}`
			`}`
			`}`
			`// Action modif mot de passe`
			`if ($action == 'buildnewpassword' && $username) {`
			`$sessionkey = 'dol_antispam_value';`
Fix phpunit SecurityTest 2022-02-22 23:44:56 +01:00			`$ok = (array_key_exists($sessionkey, $_SESSION) === true && (strtolower($_SESSION[$sessionkey]) == strtolower(GETPOST('code'))));`
code syntax user directory 2021-02-26 13:18:40 +01:00
			`// Verify code`
			`if (!$ok) {`
			`$message = '<div class="error">'.$langs->trans("ErrorBadValueForCode").'</div>';`
			`} else {`
			`$isanemail = preg_match('/@/', $username);`

			`$edituser = new User($db);`
			`$result = $edituser->fetch('', $username, '', 1);`
			`if ($result == 0 && $isanemail) {`
			`$result = $edituser->fetch('', '', '', 1, -1, $username);`
			`}`

			`if ($result <= 0 && $edituser->error == 'USERNOTFOUND') {`
css 2021-07-05 18:56:24 +02:00			`$message = '<div class="warning paddingtopbottom'.(empty($conf->global->MAIN_LOGIN_BACKGROUND) ? '' : ' backgroundsemitransparent boxshadow').'">';`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!$isanemail) {`
			`$message .= $langs->trans("IfLoginExistPasswordRequestSent");`
			`} else {`
			`$message .= $langs->trans("IfEmailExistPasswordRequestSent");`
			`}`
			`$message .= '</div>';`
			`$username = '';`
			`} else {`
			`if (!$edituser->email) {`
			`$message = '<div class="error">'.$langs->trans("ErrorLoginHasNoEmail").'</div>';`
			`} else {`
			`$newpassword = $edituser->setPassword($user, '', 1);`
			`if ($newpassword < 0) {`
			`// Failed`
			`$message = '<div class="error">'.$langs->trans("ErrorFailedToChangePassword").'</div>';`
			`} else {`
			`// Success`
			`if ($edituser->send_password($user, $newpassword, 1) > 0) {`
css 2021-07-05 18:56:24 +02:00			`$message = '<div class="warning paddingtopbottom'.(empty($conf->global->MAIN_LOGIN_BACKGROUND) ? '' : ' backgroundsemitransparent boxshadow').'">';`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!$isanemail) {`
			`$message .= $langs->trans("IfLoginExistPasswordRequestSent");`
			`} else {`
			`$message .= $langs->trans("IfEmailExistPasswordRequestSent");`
			`}`
			`//$message .= $langs->trans("PasswordChangeRequestSent", $edituser->login, dolObfuscateEmail($edituser->email));`
			`$message .= '</div>';`
			`$username = '';`
			`} else {`
			`$message .= '<div class="error">'.$edituser->error.'</div>';`
			`}`
			`}`
			`}`
			`}`
			`}`
			`}`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`}`


Doxygen 2011-07-08 17:50:28 +02:00			`/**`
			`* View`
New: Ajout fonction "Mot de passe oubli�" sur la page de logon 2007-06-02 03:53:54 +02:00			`*/`
Doxygen 2011-07-08 17:50:28 +02:00
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`$dol_url_root = DOL_URL_ROOT;`
Core templates are in core/templates directory 2010-01-04 20:39:16 +01:00
Add Smartphone class Fix: mutualized code 2010-09-22 10:52:48 +02:00			`// Title`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$title = 'Dolibarr '.DOL_VERSION;`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!empty($conf->global->MAIN_APPLICATION_TITLE)) {`
			`$title = $conf->global->MAIN_APPLICATION_TITLE;`
			`}`
Add Smartphone class Fix: mutualized code 2010-09-22 10:52:48 +02:00
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`// Select templates`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (file_exists(DOL_DOCUMENT_ROOT."/theme/".$conf->theme."/tpl/passwordforgotten.tpl.php")) {`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2020-10-31 14:32:18 +01:00			`$template_dir = DOL_DOCUMENT_ROOT."/theme/".$conf->theme."/tpl/";`
add new rule 2020-05-21 15:05:19 +02:00			`} else {`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2020-10-31 14:32:18 +01:00			`$template_dir = DOL_DOCUMENT_ROOT."/core/tpl/";`
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`}`
Core templates are in core/templates directory 2010-01-04 20:39:16 +01:00
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!$username) {`
			`$focus_element = 'username';`
			`} else {`
			`$focus_element = 'password';`
			`}`
Core templates are in core/templates directory 2010-01-04 20:39:16 +01:00
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`// Send password button enabled ?`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$disabled = 'disabled';`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (preg_match('/dolibarr/i', $mode)) {`
			`$disabled = '';`
			`}`
			`if (!empty($conf->global->MAIN_SECURITY_ENABLE_SENDPASSWORD)) {`
			`$disabled = ''; // To force button enabled`
			`}`
Core templates are in core/templates directory 2010-01-04 20:39:16 +01:00
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`// Show logo (search in order: small company logo, large company logo, theme logo, common logo)`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$width = 0;`
			`$rowspan = 2;`
Fix Only dolibarr logos are in root of theme 2020-02-05 14:14:59 +01:00			`$urllogo = DOL_URL_ROOT.'/theme/common/login_logo.png';`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (!empty($mysoc->logo_small) && is_readable($conf->mycompany->dir_output.'/logos/thumbs/'.$mysoc->logo_small)) {`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$urllogo = DOL_URL_ROOT.'/viewimage.php?cache=1&modulepart=mycompany&file='.urlencode('logos/thumbs/'.$mysoc->logo_small);`
code syntax user directory 2021-02-26 13:18:40 +01:00			`} elseif (!empty($mysoc->logo_small) && is_readable($conf->mycompany->dir_output.'/logos/'.$mysoc->logo)) {`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$urllogo = DOL_URL_ROOT.'/viewimage.php?cache=1&modulepart=mycompany&file='.urlencode('logos/'.$mysoc->logo);`
			`$width = 128;`
code syntax user directory 2021-02-26 13:18:40 +01:00			`} elseif (is_readable(DOL_DOCUMENT_ROOT.'/theme/'.$conf->theme.'/img/dolibarr_logo.svg')) {`
Fix use SVG logo instead of PNG 2020-05-15 12:43:48 +02:00			`$urllogo = DOL_URL_ROOT.'/theme/'.$conf->theme.'/img/dolibarr_logo.svg';`
code syntax user directory 2021-02-26 13:18:40 +01:00			`} elseif (is_readable(DOL_DOCUMENT_ROOT.'/theme/dolibarr_logo.svg')) {`
Fix use SVG logo instead of PNG 2020-05-15 12:43:48 +02:00			`$urllogo = DOL_URL_ROOT.'/theme/dolibarr_logo.svg';`
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`}`
Core templates are in core/templates directory 2010-01-04 20:39:16 +01:00
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`// Security graphical code`
code syntax user directory 2021-02-26 13:18:40 +01:00			`if (function_exists("imagecreatefrompng") && !$disabled) {`
Fix: compatibility between bureau2crea theme and multicompany module 2012-09-02 11:36:42 +02:00			`$captcha = 1;`
PSR2 space after comma in function call 2019-01-27 11:55:16 +01:00			`$captcha_refresh = img_picto($langs->trans("Refresh"), 'refresh', 'id="captcha_refresh_img"');`
Fix: the core system used php templates by default 2010-04-12 20:56:53 +02:00			`}`

Fix: add resprint for passwordforgotten 2017-08-28 09:14:50 +02:00			`// Execute hook getPasswordForgottenPageOptions (for table)`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$parameters = array('entity' => GETPOST('entity', 'int'));`
			`$hookmanager->executeHooks('getPasswordForgottenPageOptions', $parameters); // Note that $action and $object may have been modified by some hooks`
			`if (is_array($hookmanager->resArray) && !empty($hookmanager->resArray)) {`
Fix: add resprint for passwordforgotten 2017-08-28 09:14:50 +02:00			`$morelogincontent = $hookmanager->resArray; // (deprecated) For compatibility`
			`} else {`
			`$morelogincontent = $hookmanager->resPrint;`
			`}`

			`// Execute hook getPasswordForgottenPageExtraOptions (eg for js)`
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`$parameters = array('entity' => GETPOST('entity', 'int'));`
			`$reshook = $hookmanager->executeHooks('getPasswordForgottenPageExtraOptions', $parameters); // Note that $action and $object may have been modified by some hooks.`
Fix: add resprint for passwordforgotten 2017-08-28 09:14:50 +02:00			`$moreloginextracontent = $hookmanager->resPrint;`
Fix: broken features 2012-09-02 09:27:06 +02:00
Scrutinizer Auto-Fixes This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com 2019-11-14 12:09:15 +01:00			`include $template_dir.'passwordforgotten.tpl.php'; // To use native PHP`