. /** * @package MantisBT * @copyright Copyright (C) 2000 - 2002 Kenzaburo Ito - kenito@300baud.org * @copyright Copyright (C) 2002 - 2014 MantisBT Team - mantisbt-dev@lists.sourceforge.net * @link http://www.mantisbt.org */ /** * MantisBT Core API's */ require_once( 'core.php' ); form_security_validate('manage_user_reset'); auth_reauthenticate(); access_ensure_global_level( config_get( 'manage_user_threshold' ) ); $f_user_id = gpc_get_int( 'user_id' ); user_ensure_exists( $f_user_id ); $t_user = user_get_row( $f_user_id ); # Ensure that the account to be reset is of equal or lower access to the # current user. access_ensure_global_level( $t_user['access_level'] ); # If the password can be changed, we reset it, otherwise we unlock # the account (i.e. reset failed login count) $t_reset = helper_call_custom_function( 'auth_can_change_password', array() ); if ( $t_reset ) { $t_result = user_reset_password( $f_user_id ); } else { $t_result = user_reset_failed_login_count_to_zero( $f_user_id ); } $t_redirect_url = 'manage_user_page.php'; form_security_purge('manage_user_reset'); html_page_top( null, $t_result ? $t_redirect_url : null ); echo '
'; echo '

'; if ( $t_reset ) { if ( false == $t_result ) { # PROTECTED echo lang_get( 'account_reset_protected_msg' ) . '
'; } else { # SUCCESSFUL RESET if ( ( ON == config_get( 'send_reset_password' ) ) && ( ON == config_get( 'enable_email_notification' ) ) ) { # send the new random password via email echo lang_get( 'account_reset_msg' ) . '
'; } else { # email notification disabled, then set the password to blank echo lang_get( 'account_reset_msg2' ) . '
'; } } } else { # UNLOCK echo lang_get( 'account_unlock_msg' ) . '
'; } print_bracket_link( $t_redirect_url, lang_get( 'proceed' ) ); echo '

'; html_page_bottom();