"; if(isset($_REQUEST["act"])) $act = $_REQUEST["act"]; else $act = ""; if(isset($_REQUEST["email"])) $email = $_REQUEST["email"]; else $email = ""; if(isset($_REQUEST["addl"])) $addl = $_REQUEST["addl"]; else $addl = ""; if(isset($_REQUEST["new_password"])) $new_password = $_REQUEST["new_password"]; else $new_password = ""; if(isset($_REQUEST["c_password"])) $c_password = $_REQUEST["c_password"]; else $c_password = ""; if(isset($_REQUEST["rpt_password"])) $rpt_password = $_REQUEST["rpt_password"]; else $rpt_password = ""; if($act == ""){ $page_title = "Login Information"; $page_content .= "

Request Login Information Reminder

Enter you email address below. We will send a reminder to the email address we have on file for your account.

email address:

"; }elseif($act=="pass"){ $page_title = "Password Reminder"; $email = str_replace(";","",$email); $email = str_replace("'","",$email); $email = str_replace("\"","",$email); $email = strtoupper($email); if($email != ""){ if($addl != ""){ $addl = str_replace(";","",$addl); $addl = str_replace("'","",$addl); $addl = str_replace("\"","",$addl); $id = $addl; $andwhere = "and adm_id = $id"; } $getInfo = "select * from $table_name where upper($id_field) = '$email' and status = 'active'"; // $page_content .= "

$getInfo

"; $getInfoQuery = mysql_query($getInfo) or die(mysql_error()); $infoNum = mysql_numrows($getInfoQuery); if($infoNum == 1){ while ($row = mysql_fetch_array($getInfoQuery, MYSQL_ASSOC)) { $f_name = $row["f_name"]; $l_name = $row["l_name"]; $email_new = $row["email"]; $password = $row["password"]; } $sendTo = "$email_new"; // send the email to this address $fromAdd = "administration@berkeleyrecycling.org"; // send the email to this address $subLine = "Password Reminder"; // email subject line $mailVals = " Here is your berkeleyrecycling.org Site Administration password: $password This email was generated by a request for an email reminder. If you did not request this reminder, please disregard this message. Log in to the Site Administration here: http://www.berkeleyrecycling.org/admin/ "; // $page_content .= "

$mailVals

"; $mailYes = mail($sendTo, $subLine, $mailVals, "From: ".$fromAdd."\r\n"); $page_content .= "

Password Reminder

A password reminder has been sent to $email_new.

"; }elseif($infoNum > 1){ $page_content .= "

Multiple Records...

We found more than one record with that email address. Please select the proper account from the list below

"; while ($row = mysql_fetch_array($getInfoQuery, MYSQL_ASSOC)) { $f_name = $row["f_name"]; $l_name = $row["l_name"]; $email_new = $row["email"]; $adm_id = $row["adm_id"]; $password = $row["password"]; $page_content .= "
$f_name $l_name
"; } $page_content .= "
"; }else{ $page_content .= "
Oops.

The email address you supplied does not match any in our records. Please try again.

email address:

reminder: Password || Login ID

"; } } }elseif($act == "new"){ $loggedin = false; include "auth_check.php"; $page_title = "Change Your Berkeley Recycling Administration password"; $page_content .= "
Change Your Berkeley Recycling Administration Password

Enter your current password and the new password below. When accepted, an email will be sent to the address we have on record as a reminder.
"; if($c != ""){ $page_content .= "
The passwords you entered did not match. Please try again and be sure your new password is the same in the new password box and in the confirmation box.
"; } if($p != ""){ $page_content .= "
The password you entered was not valid. Please review the password guidelines and try again.
"; } if($l != ""){ $page_content .= "
The current password you entered was not correct. Please try again. If you have forgotten your current password, click here to have a reminder sent to you.
"; } $page_content .= "

Current Password:

Password should be between 6 and 16 characters long and should be made up only of letters, numbers, hyphens (\"-\") and the underscore (\"_\"). Passwords are case-sensitive.

New Password:

Confirm New Password:

"; }elseif($act == "change"){ $loggedin = false; include "auth_check.php"; $errorFlag = false; $errorLink = ""; $checkPW = "select adm_id from $table_name where $id_num_field = $mbr and $pw_field = '$c_password'"; // $page_content .= "
$checkPW
"; $checkPWQuery = mysql_query($checkPW) or die(mysql_error()); $PWcheck = mysql_numrows($checkPWQuery); if($PWcheck == 0){ $errorFlag = true; $errorLink .= "&l=1"; } if($new_password != $rpt_password){ $errorFlag = true; $errorLink .= "&c=1"; } if(strlen($new_password) > 16 || strlen($new_password) < 6 || strpos($new_password," ") > -1 || strpos($new_password,";") > -1 || strpos($new_password,"'") > -1 || strpos($new_password,"\"") > -1){ $errorFlag = true; $errorLink .= "&p=1"; } if($errorFlag){ header("location: password.php?act=new$errorLink"); }else{ $forumPW = md5($new_password); $updatePW = "update $table_name set $pw_field = '$new_password' where adm_id = $mbr"; // $page_content .= "
$updatePW
"; $updatePWQuery = mysql_query($updatePW) or die(mysql_error()); $getInfo = "select f_name, l_name, email, $pw_field from $table_name where $id_num_field = $mbr and status = 'active'"; // $page_content .= "
$getInfo
"; $getInfoQuery = mysql_query($getInfo) or die(mysql_error()); while ($row = mysql_fetch_array($getInfoQuery, MYSQL_ASSOC)) { $f_name = $row["f_name"]; $l_name = $row["l_name"]; $email_new = $row["email"]; $password = $row["password"]; } if($email_new != ""){ $sendTo = "$email_new"; // send the email to this address $fromAdd = "administration@berkeleyrecycling.org"; // send the email to this address $subLine = "Password Update - Berkeley Recycling Administration"; // email subject line $mailVals = " Your Berkeley Recycling Administration password has been changed to: $password This email was generated by requesting a new password. If you did not request a new password, please reply to this email with your information. "; // $page_content .= "
$mailVals
"; $mailYes = mail($sendTo, $subLine, $mailVals, "From: ".$fromAdd."\r\n"); $email_mess = "An email notice has been sent to $email_new for your records."; }else{ $email_mess = ""; } session_unset(); session_destroy(); $page_title = "Change Your Berkeley Recycling Administration Password"; $page_content .= "
Change Your Berkeley Recycling Administration Password

Your password has been changed. $email_mess

Please log-in again to return to the Berkeley Recycling Administration pages.
"; } } $page_content .= ""; display_admin(); ?>

Current Password:
Password should be between 6 and 16 characters long and should be made up only of letters, numbers, hyphens (\"-\") and the underscore (\"_\"). Passwords are case-sensitive.
New Password:
Confirm New Password: