0) { echo '

'; foreach($MESSAGES as $message){ echo '

'.$message['message'].'

'; } echo '

'; } } /* * Function checks password input for new password * Return codes: * true: password is okay * 2: One password field is empty * 3: Passwords are not equal * 4: Passwort is too snort */ function check_new_pass($pass1, $pass2) { global $PASS_ERR; global $PASS_ERR_MSG; // Check if one passwort input is empty if($pass1 !== "" && $pass2 !== ""){ // Check if password are equal if($pass1 === $pass2){ // Check if password length is okay if(strlen($pass1) >= MIN_PASS_LENGTH){ // Password is okay. return true; } else{ // Password is not long enough $PASS_ERR = 4; $PASS_ERR_MSG = "Password is not long enough. Please enter a password which has ".MIN_PASS_LENGTH." characters or more."; return $PASS_ERR; } } else{ // Passwords are not equal $PASS_ERR = 3; $PASS_ERR_MSG = "Passwords are not equal."; return $PASS_ERR; } } else{ // One password is empty. $PASS_ERR = 2; $PASS_ERR_MSG = "Not all password fields were filled out"; return $PASS_ERR; } } function get_hash() { switch(PASS_HASH_SCHEMA){ case "SHA-512": return '$6$rounds=5000$'; break; case "SHA-256": return '$5$rounds=5000$'; break; case "BLOWFISH": return '$2a$09$'; break; } } function gen_pass_hash($pass) { $salt = base64_encode(rand(1, 1000000) + microtime()); $hash_schema = get_hash(); $pass_hash = crypt($pass, $hash_schema.$salt.'$'); return $pass_hash; } function write_pass_hash_to_db($pass_hash, $uid) { global $db; $uid = $db->escape_string($uid); $pass_hash = $db->escape_string($pass_hash); $db->query("UPDATE `".DBT_USERS."` SET `".DBC_USERS_PASSWORD."` = '$pass_hash' WHERE `".DBC_USERS_ID."` = '$uid';"); } /* * Add message to logfile */ function writeLog($text) { if(defined('WRITE_LOG') && defined('WRITE_LOG_PATH')){ $logdestination = realpath(WRITE_LOG_PATH).DIRECTORY_SEPARATOR."webmum.log"; if(is_writable(WRITE_LOG_PATH)){ $logfile = fopen($logdestination, "a") or die("Unable to create or open logfile \"".$logdestination."\" in root directory!"); fwrite($logfile, date('M d H:i:s').": ".$text."\n"); fclose($logfile); } else{ die("Directory \"".WRITE_LOG_PATH."\" is not writable"); } } } /** * @param string $url * @return string */ function url($url) { $base = FRONTEND_BASE_PATH; if (substr($base, -1) === '/') { $base = substr($base, 0, -1); } if (strlen($url) > 0 && $url[0] === '/') { $url = substr($url, 1); } return $base.'/'.$url; } /** * @param string $url */ function redirect($url) { header("Location: ".url($url)); exit; } /** * Split comma, semicolon or newline separated list of emails to string * * @param string $input * * @return array */ function stringToEmails($input) { $separators = array(',', ';', "\r\n", "\r", "\n", '|', ':'); $list = explode('|', str_replace($separators, '|', $input)); foreach($list as $i => &$email){ if(empty($email)){ unset($list[$i]); } else{ $email = trim($email); } } return array_values( array_map( 'strtolower', array_unique( $list ) ) ); } /** * List of emails to comma or $glue separated list string * * @param array $list * @param string $glue * * @return string */ function emailsToString($list, $glue = ',') { return implode($glue, $list); } /** * Format single email address * * @param string $input * @return string */ function formatEmail($input) { return strtolower(trim($input)); } /** * Format email addresses (single, multiple in separated list, or array of email addresses) * * @param string|array $input * @param string $glue * @return string */ function formatEmails($input, $glue) { if(!is_array($input)){ $input = stringToEmails($input); } return emailsToString($input, $glue); } ?>