Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
benjamin.harris
/
soil-report-ai
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Árvore: af9bd378d3
Ramos Etiquetas
soil-report-ai
/
login
/
forgot-password.php

forgot-password.php 4.1 KB
Histórico Em bruto

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. <?php
    2. 

  2. require_once __DIR__ . '/../config/database.php';
    3. 

  3. require_once __DIR__ . '/../lib/auth.php';
    4. 

  4. require_once __DIR__ . '/../lib/csrf.php';
    5. 

  5. require_once __DIR__ . '/../vendor/autoload.php';
    6. 

  6. require_once __DIR__ . '/../lib/mailer.php';
    7. 

  7. 

  8. if (isLoggedIn()) {
    9. 

  9.     header('Location: /dashboard/dashboard.php');
    10. 

  10.     exit;
    11. 

  11. }
    12. 

  12. 

  13. $sent  = false;
    14. 

  14. $error = '';
    15. 

  15. 

  16. if ($_SERVER['REQUEST_METHOD'] === 'POST') {
    17. 

  17.     if (!verifyCsrfToken($_POST['csrf_token'] ?? '')) {
    18. 

  18.         $error = 'Invalid request. Please try again.';
    19. 

  19.     } else {
    20. 

  20.         $email = trim($_POST['email'] ?? '');
    21. 

  21. 

  22.         if ($email === '' || !filter_var($email, FILTER_VALIDATE_EMAIL)) {
    23. 

  23.             $error = 'Please enter a valid email address.';
    24. 

  24.         } else {
    25. 

  25.             // createPasswordResetToken returns null if email not found,
    26. 

  26.             // but we show the same success message to avoid email enumeration.
    27. 

  27.             $token = createPasswordResetToken($email);
    28. 

  28. 

  29.             if ($token !== null) {
    30. 

  30.                 sendPasswordResetEmail($email, $token);
    31. 

  31.             }
    32. 

  32. 

  33.             $sent = true; // Always show success to prevent email enumeration
    34. 

  34.         }
    35. 

  35.     }
    36. 

  36. }
    37. 

  37. 

  38. $pageTitle = 'Forgot Password';
    39. 

  39. include __DIR__ . '/_head.php';
    40. 

  40. ?>
    41. 

  41. 

  42. <div class="container">
    43. 

  43.     <div class="row justify-content-center">
    44. 

  44.         <div class="col-xl-10 col-lg-12 col-md-9">
    45. 

  45.             <div class="card o-hidden border-0 shadow-lg my-5">
    46. 

  46.                 <div class="card-body p-0">
    47. 

  47.                     <div class="row">
    48. 

  48.                         <div class="col-lg-6 d-none d-lg-block bg-login-image"></div>
    49. 

  49.                         <div class="col-lg-6">
    50. 

  50.                             <div class="p-5">
    51. 

  51.                                 <div class="text-center mb-4">
    52. 

  52.                                     <h1 class="h4 text-gray-900">Forgot Your Password?</h1>
    53. 

  53.                                     <p class="text-muted small">Enter your email and we'll send you a reset link.</p>
    54. 

  54.                                 </div>
    55. 

  55. 

  56.                                 <?php if ($sent): ?>
    57. 

  57.                                     <div class="alert alert-success" role="alert">
    58. 

  58.                                         If that email is registered, a reset link has been sent. Please check your inbox.
    59. 

  59.                                     </div>
    60. 

  60.                                 <?php else: ?>
    61. 

  61.                                     <?php if ($error !== ''): ?>
    62. 

  62.                                         <div class="alert alert-danger"><?= htmlspecialchars($error, ENT_QUOTES, 'UTF-8') ?></div>
    63. 

  63.                                     <?php endif; ?>
    64. 

  64. 

  65.                                     <form method="POST" action="/login/forgot-password.php" novalidate>
    66. 

  66.                                         <input type="hidden" name="csrf_token" value="<?= generateCsrfToken() ?>">
    67. 

  67.                                         <div class="mb-3">
    68. 

  68.                                             <input type="email" name="email" class="form-control form-control-user"
    69. 

  69.                                                    placeholder="Email Address" required autofocus
    70. 

  70.                                                    value="<?= htmlspecialchars($_POST['email'] ?? '', ENT_QUOTES, 'UTF-8') ?>">
    71. 

  71.                                         </div>
    72. 

  72.                                         <button type="submit" class="btn btn-success btn-user w-100 mb-3">
    73. 

  73.                                             Send Reset Link
    74. 

  74.                                         </button>
    75. 

  75.                                     </form>
    76. 

  76.                                 <?php endif; ?>
    77. 

  77. 

  78.                                 <hr>
    79. 

  79.                                 <div class="text-center">
    80. 

  80.                                     <a class="small" href="/login/register.php">Create an Account!</a>
    81. 

  81.                                 </div>
    82. 

  82.                                 <div class="text-center">
    83. 

  83.                                     <a class="small" href="/login/login.php">Already have an account? Login!</a>
    84. 

  84.                                 </div>
    85. 

  85.                             </div>
    86. 

  86.                         </div>
    87. 

  87.                     </div>
    88. 

  88.                 </div>
    89. 

  89.             </div>
    90. 

  90.         </div>
    91. 

  91.     </div>
    92. 

  92. </div>
    93. 

  93. 

  94. <?php include __DIR__ . '/_foot.php'; ?>
    95.