Try: ca/tecreations/ViewFile.php -- Online
<?php
require_once $_SERVER['DOCUMENT_ROOT'] . "/Base.php";
require_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/QA.php";
$qa = new QA();
$qa->setDebug(false);
$user->setDebug(false);
$email = $_SESSION['email'];
$uid = $user->getUID($email);
$level = $user->getLevel($uid);
$_SESSION['uid'] = $uid;
$_SESSION['level'] = $level;
$q1 = $q2 = $q3 = $a1 = $a2 = $a3 = $a1_err = $a2_err = $a3_err = "";
if (isset($email)){
$q1 = $qa->getQ1($uid);
$q2 = $qa->getQ2($uid);
$q3 = $qa->getQ3($uid);
}
if (isset($_SERVER['QUERY_STRING'])) {
if (!empty($_SERVER['QUERY_STRING'])) {
if (isset($_REQUEST['a1']) && isset($_REQUEST['a1']) && isset($_REQUEST['a1'])) {
$a1 = $_REQUEST['a1'];
if (isset($_REQUEST['a1']) && empty($a1)) $a1_err = "Empty";
$a2 = $_REQUEST['a2'];
if (isset($_REQUEST['a2']) && empty($a2)) $a2_err = "Empty";
$a3 = $_REQUEST['a3'];
if (isset($_REQUEST['a3']) && empty($a3)) $a3_err = "Empty";
if ($a1_err == $a2_err && $a2_err == $a3_err && $a3_err == "") {
// process the submission
$a1 = strtolower($a1);
$a2 = strtolower($a2);
$a3 = strtolower($a3);
if (!$qa->verifyA1($uid,$a1)) $a1_err = "Incorrect Answer";
if (!$qa->verifyA2($uid,$a2)) $a2_err = "Incorrect Answer";
if (!$qa->verifyA3($uid,$a3)) $a3_err = "Incorrect Answer";
if ($a1_err == $a2_err && $a2_err == $a3_err && $a3_err == "") {
unset($_SESSION['email']);
header("Location: $PREFIX_DIR/Login/ChangePass.php");
}
}
}
}
}
include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/start.php";
?>
<title>Forgotten Password Recovery</title>
<style type="text/css">
.wrapper { width: 600px; padding: 25px; }
</style>
</head>
<body>
<?php include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/header_start.php"; ?>
<?php include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/menu/login.php"; ?>
<?php include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/menu/register.php"; ?>
<?php include_once $_SERVER['DOCUMENT_ROOT'] . "$PREFIX_DIR/header_finish.php"; ?>
<div class="wrapper">
<h2>Forgotten Password Recovery</h2>
<p>Please fill out this form to reset the password for your account.</p>
<form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="<?php echo $METHOD; ?>">
<div class="form-group">
<h5>Question 1</h5>
<p><?php echo $q1; ?></p>
</div>
<div class="form-group <?php echo (!empty($a1_err)) ? 'has-error' : ''; ?>">
<label>Response</label>
<input autocomplete=off type="text" name="a1" class="form-control" value="<?php echo htmlspecialchars($a1); ?>">
<span class="help-block"><?php echo $a1_err; ?></span>
</div>
<div class="form-group">
<h5>Question 2</h5>
<p><?php echo $q2; ?></p>
</div>
<div class="form-group <?php echo (!empty($a2_err)) ? 'has-error' : ''; ?>">
<label>Response</label>
<input autocomplete=off type="text" name="a2" class="form-control" value="<?php echo htmlspecialchars($a2); ?>">
<span class="help-block"><?php echo $a2_err; ?></span>
</div>
<div class="form-group">
<h5>Question 3</h5>
<p><?php echo $q3; ?></p>
</div>
<div class="form-group <?php echo (!empty($a3_err)) ? 'has-error' : ''; ?>">
<label>Response</label>
<input autocomplete=off type="text" name="a3" class="form-control" value="<?php echo htmlspecialchars($a3); ?>">
<span class="help-block"><?php echo $a3_err; ?></span>
</div>
<div class="form-group">
<input type="submit" class="btn btn-primary" value="Submit">
<input type="reset" class="btn btn-default" value="Reset">
</div>
</form>
</div>
</body>
</html>