<email>
- <subject>{bugdar::$options['trackertitle']} Password Reset</subject>
+ <subject><%- bugdar::$options['trackertitle'] %> Password Reset</subject>
<bodyText>Hi {$user->record['displayname']},
-You requested this lost password email at the {bugdar::$options['trackertitle']} bug tracker. To reset your password, simply click the link below (or paste it into your browser window exactly) and enter a new password.
+You requested this lost password email at the <%- bugdar::$options['trackertitle'] %> bug tracker. To reset your password, simply click the link below (or paste it into your browser window exactly) and enter a new password.
-{bugdar::$options['trackerurl']}/login.php?do=recoverpw&activator=$activator
+<%- bugdar::$options['trackerurl'] %>/login.php?do=recoverpw&activator=<%- $activator %>
If you did not request this, do not worry as this notice will expire in 24 hours.</bodyText>
</email>
\ No newline at end of file
{
if (bugdar::$userinfo['userid'])
{
- $db->query("DELETE FROM " . TABLE_PREFIX . "adminsession WHERE sessionid = '" . $bugsys->input_escape(COOKIE_PREFIX . 'adminsession') . "'");
+ $db->query("DELETE FROM " . TABLE_PREFIX . "adminsession WHERE sessionid = '" . $input->inputEscape(COOKIE_PREFIX . 'adminsession') . "'");
$auth->clearCookies();
- BSFunctions::cookie(COOKIE_PREFIX . 'adminsession');
+ BSFunctions::cookie(COOKIE_PREFIX . 'adminsession', null);
$message->redirect(T('You have been logged out.'), ($_SERVER['HTTP_REFERER'] ? $_SERVER['HTTP_REFERER'] : 'index.php'));
}
else
{
$user = new UserAPI($bugsys);
$user->set('email', $input->in['email'], true, false); // don't verify so we don't get errors about existing emails
- $user->set_condition(array('email'));
+ $user->setCondition(array('email'));
$user->fetch();
if ($message->hasErrors())
$activator = BSFunctions::random(25);
$db->query("INSERT INTO " . TABLE_PREFIX . "passwordreset (activatorid, dateline, userid) VALUES ('" . $activator . "', " . TIMENOW . ", " . $user->record['userid'] . ")");
- eval('$email = "' . $template->fetch(FetchEmailPath('passwordreset.xml', bugdar::$datastore['language'][$user->record['languageid']]['langcode'])) . '";');
- $email = $bugsys->xml->parse($email);
+ $email = new BSTemplate(FetchEmailPath('passwordreset.xml', bugdar::$datastore['language'][$user->record['languageid']]['langcode']));
+ $email->vars = array('activator' => $activator);
+
+ $email = $bugsys->xml->parse($email->evaluate()->getTemplate());
$mail->setSubject($email['email']['subject']['value']);
$mail->setBodyText($email['email']['bodyText']['value']);
if ($_REQUEST['do'] == 'lostpw')
{
- eval('$template->flush("' . $template->fetch('lostpassword') . '");');
+ BSTemplate::fetch('lostpassword')->evaluate()->flush();
}
// ###################################################################
$db->query("DELETE FROM " . TABLE_PREFIX . "passwordreset WHERE dateline < " . (TIMENOW - 86400));
// now look for ours
- $activation = $db->queryFirst("SELECT * FROM " . TABLE_PREFIX . "passwordreset WHERE activatorid = '" . $bugsys->input_escape('activator') . "'");
+ $activation = $db->queryFirst("SELECT * FROM " . TABLE_PREFIX . "passwordreset WHERE activatorid = '" . $input->inputEscape('activator') . "'");
if (!$activation)
{
$message->error(L_INVALID_ID);
$user = new UserAPI($bugsys);
$user->set('userid', $activation['userid']);
- $user->set_condition();
if ($input->in['fix_password'] != $input->in['confirm_password'])
{
$db->query("DELETE FROM " . TABLE_PREFIX . "passwordreset WHERE dateline < " . (TIMENOW - 86400));
// now look for ours
- $activation = $db->queryFirst("SELECT * FROM " . TABLE_PREFIX . "passwordreset WHERE activatorid = '" . $bugsys->input_escape('activator') . "'");
+ $activation = $db->queryFirst("SELECT * FROM " . TABLE_PREFIX . "passwordreset WHERE activatorid = '" . $input->inputEscape('activator') . "'");
if (!$activation)
{
$message->error(T('Invalid activation reset key. Please make sure you copied the URL exactly as it appeared in the email.'));
}
- eval('$template->flush("' . $template->fetch('passwordreset') . '");');
+ $tpl = new BSTemplate('passwordreset');
+ $tpl->vars = array(
+ 'activation' => $activation,
+ 'message' => $message
+ );
+ $tpl->evaluate()->flush();
}
// ###################################################################
{
if ($_COOKIE[COOKIE_PREFIX . 'adminsession'])
{
- $db->query("DELETE FROM " . TABLE_PREFIX . "adminsession WHERE sessionid = '" . $bugsys->input_escape(COOKIE_PREFIX . 'adminsession') . "'");
- BSFunctions::cookie(COOKIE_PREFIX . 'adminsession');
+ $db->query("DELETE FROM " . TABLE_PREFIX . "adminsession WHERE sessionid = '" . $input->inputEscape(COOKIE_PREFIX . 'adminsession') . "'");
+ BSFunctions::cookie(COOKIE_PREFIX . 'adminsession', null);
$message->redirect(T('You have been logged out.'), 'admin/');
}
else