36 $directory =
ABS_PATH.
"inc/libs/usercake/languages/";
37 $languages = glob($directory .
"*.php");
48 $directory =
ABS_PATH.
"inc/libs/usercake/site-templates/";
49 $languages = glob($directory .
"*.css");
61 $pages = glob($directory .
"*.php");
63 foreach ($pages as $page) {
75 if (isset($_SESSION[$name])) {
76 $_SESSION[$name] = NULL;
77 unset($_SESSION[$name]);
90 $code = hash(
'sha256', uniqid(rand(),
true));
92 return substr($code, 0, $length);
106 $gen = md5(uniqid(mt_rand(),
false));
127 if (function_exists(
'openssl_random_pseudo_bytes')) {
129 if ($hash === NULL) {
130 $random = bin2hex(openssl_random_pseudo_bytes(32));
131 $salt = substr(md5(uniqid($random,
true)), 0, 22);
132 return crypt($password, sprintf(
'$2y$%02d$', $rounds) . $salt);
134 return crypt($password, $hash);
137 if ($hash === NULL) {
138 $salt = substr(md5(uniqid(rand(),
true)), 0, 22);
139 return crypt($password, sprintf(
'$2y$%02d$', $rounds) . $salt);
141 return crypt($password, $hash);
153 function lang($key, $markers = NULL) {
155 $key = strtoupper($key);
156 if ($markers == NULL) {
162 foreach ($markers as $marker) {
163 $str = str_replace(
"%m" . $iteration .
"%", $marker, $str);
169 return (
"No language key found");
186 if (strlen(trim($what)) < $min)
188 else if (strlen(trim($what)) > $max)
202 return (str_replace($default_hooks, $default_replace, $str));
212 return strtolower(strip_tags(trim(($str))));
224 $result = trim($str);
227 $result = str_replace(
'ü',
'ue', $result);
228 $result = str_replace(
'Ü',
'Ue', $result);
229 $result = str_replace(
'ä',
'ae', $result);
230 $result = str_replace(
'Ä',
'Ae', $result);
231 $result = str_replace(
'ö',
'oe', $result);
232 $result = str_replace(
'Ö',
'Oe', $result);
233 $result = preg_replace(
"/(ò|ó)/",
"o", $result);
234 $result = preg_replace(
"/(Ò|Ó)/",
"O", $result);
235 $result = preg_replace(
"/(á|à)/",
"a", $result);
236 $result = preg_replace(
"/(Á|À)/",
"A", $result);
237 $result = preg_replace(
"/ß/",
"ss", $result);
238 $result = preg_replace(array(
"(ú|ù)",
"(Ú|Ù)"), array(
"u",
"U"), $result);
239 $result = preg_replace(array(
"(é|è)",
"(É|È)"), array(
"e",
"E"), $result);
240 $result = preg_replace(array(
'(í|ì)',
'(Í|Ì)'), array(
'i',
'I'), $result);
243 $result = preg_replace(
"/[^A-Za-z0-9\.-_]/",
"", $result);
247 $result = strtolower(preg_replace(
"/$pattern/",
"-", $result));
261 $result = trim($name);
265 $result = preg_replace(
"/$pattern/",
" ", $result);
268 $pattern =
"[^A-Za-z _\-üÜäÄöÖòóÒÓáàÁÀAéèÉÈíìÍÌúùÚÙ\'\.ß]";
269 $result = preg_replace(
"/$pattern/",
'', $result);
270 $pattern =
"('|\"){1,}";
271 $result = preg_replace(
"/$pattern/",
"'", $result);
286 $pattern =
"[A-Za-z _\-üÜäÄöÖòóÒÓáàÁÀAéèÉÈíìÍÌúùÚÙ\'\.ß]{1,}";
287 return (preg_match(
"/$pattern$/", $name)==1);
298 $sessionId = hash(
'sha1', uniqid(mt_rand(),
true));
312 if(ctype_alnum($sessionId)) {
315 FROM ". $db[
'users'] .
"
316 WHERE session_id = ?";
317 $stmt = $mysqli->prepare($qry);
318 $stmt->bind_param(
"s", $sessionId);
320 $stmt->store_result();
321 $numrows = $stmt->num_rows;
323 if($numrows > 0 || $numrows === FALSE) {
348 $stmt = $mysqli->prepare(
349 "UPDATE " . $db[
'users'] .
"
350 SET `password` = 'deleted', `valid_email` = -1, `activation_token` = 'deleted',
351 `last_activation_request` = 'deleted', `active` = -1, `last_sign_in_stamp` = UNIX_TIMESTAMP()
353 $stmt2 = $mysqli->prepare(
"DELETE FROM " . $db[
'user_permission'] .
"
355 foreach ($userId as $id) {
360 $stmt->bind_param(
"i", $id);
362 $stmt2->bind_param(
"i", $id);
397 $stmt = $mysqli->prepare(
"DELETE FROM " . $db[
'users'] .
"
399 $stmt2 = $mysqli->prepare(
"DELETE FROM " . $db[
'user_permission'] .
"
401 foreach ($users as $id) {
408 $stmt->bind_param(
"i", $id);
410 $stmt2->bind_param(
"i", $id);
415 $errors[] =
"Der Benutzer ".
fetchUsername($id).
" ist noch für eine Änderung verantwortlich.";
417 $errors[] =
"Der Benutzer ".
fetchUsername($id).
" ist noch für ".$numref.
" Änderungen verantwortlich.";
423 $errors[] =
"Sie verfügen nicht über die notwendigen Rechte.";
446 $sql =
"ALTER TABLE `" . $db[
'users'] .
"` AUTO_INCREMENT = 1000";
447 $stmt = $mysqli->prepare($sql);
448 if (is_object($stmt)) {
461 $stmt = $mysqli->prepare(
"SELECT active
462 FROM " . $db[
'users'] .
"
466 $stmt->bind_param(
"s", $email);
468 $stmt->store_result();
469 $num_returns = $stmt->num_rows;
472 if ($num_returns > 0) {
487 $stmt = $mysqli->prepare(
"SELECT active
488 FROM " . $db[
'users'] .
"
492 $stmt->bind_param(
"s", $mobile);
494 $stmt->store_result();
495 $num_returns = $stmt->num_rows;
498 if ($num_returns > 0) {
515 $stmt = $mysqli->prepare(
"SELECT active
516 FROM " . $db[
'users'] .
"
522 $stmt->bind_param(
"ss", $username, $email);
524 $stmt->store_result();
525 $num_returns = $stmt->num_rows;
528 if ($num_returns > 0) {
543 $stmt = $mysqli->prepare(
"SELECT
551 last_activation_request,
552 lost_password_request,
557 FROM " . $db[
'users']);
559 $stmt->bind_result($id, $user, $first, $last, $password, $email, $token,
560 $activationRequest, $passwordRequest, $active, $title, $signUp, $signIn);
562 while ($stmt->fetch()) {
563 $row[] = array(
'id' => $id,
'username' => $user,
'firstname' => $first,
564 'lastname' => $last,
'password' => $password,
'email' => $email,
565 'activation_token' => $token,
'lastActivationRequest' => $activationRequest,
566 'lostPasswordRequest' => $passwordRequest,
'active' => $active,
567 'title' => htmlspecialchars_decode($title),
'signUpStamp' => $signUp,
568 'lastSignInStamp' => $signIn);
584 if ($username != NULL) {
585 $column =
"user_name";
587 } elseif ($token != NULL) {
588 $column =
"activation_token";
590 } elseif ($userId != NULL) {
597 $stmt = $mysqli->prepare(
"SELECT
606 last_activation_request,
607 lost_password_request,
613 FROM " . $db[
'users'] .
"
617 $stmt->bind_param(
"s", $data);
620 $stmt->bind_result($userId, $user, $first, $last, $password, $email,
621 $mobile, $token, $activationRequest, $passwordRequest, $active,
622 $validEmail, $title, $signUp, $signIn);
623 while ($stmt->fetch()) {
624 $row = array(
'id' => $userId,
'username' => $user,
'firstname' => $first,
625 'lastname' => $last,
'password' => $password,
'email' => $email,
626 'mobile' => $mobile,
'activation_token' => $token,
627 'lastActivationRequest' => $activationRequest,
628 'lostPasswordRequest' => $passwordRequest,
629 'active' => $active,
'valid_email'=> $validEmail,
'title' => htmlspecialchars_decode($title),
630 'signUpStamp' => $signUp,
'lastSignInStamp' => $signIn);
650 $qry =
"SELECT user_name
651 FROM ". $db[
'users'] .
"
653 $stmt = $mysqli->prepare($qry);
654 $stmt->bind_param(
'i',$userId);
656 $stmt->bind_result($uname);
657 while ($stmt->fetch()) {
660 return !empty($username) ? $username :
' - ';
671 if (isset($user_id)) {
673 $stmt = $mysqli->prepare(
"
675 FROM " . $db[
'users'] .
"
679 $stmt->bind_param(
"i", $user_id) || fail(
'MySQL bind_param', $mysqli->error);
680 $stmt->bind_result($storedSession) || fail(
'MySQL bind_result', $mysqli->error);
681 $stmt->execute() || fail(
'MySQL execute', $mysqli->error);
682 if ($stmt->fetch()) {
683 $retval = $storedSession;
711 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
712 SET lost_password_request = ?
717 $stmt->bind_param(
"ii", $value, $userId);
718 $result = $stmt->execute();
732 $stmt = $mysqli->prepare(
"SELECT
735 FROM " . $db[
'users'] .
"
745 $stmt->bind_param(
"iss", $loggedInUser->userId, $loggedInUser->passwordHash, $loggedInUser->sessionId);
747 $stmt->store_result();
748 $num_returns = $stmt->num_rows;
751 if ($loggedInUser == NULL) {
754 if ($num_returns > 0) {
758 $loggedInUser->updateLastActivity();
762 $loggedInUser->userLogOut();
786 $stmt = $mysqli->prepare(
"SELECT COUNT(
788 FROM " . $db[
'user_permission'] .
"
793 $stmt->bind_param(
"ii", $loggedInUser->userId, $adminPermission);
795 $stmt->bind_result($count);
796 if ($stmt->fetch()) {
800 if (isset($retval)) {
807 fail(
"Überprüfung konnte nicht ausgeführt werden.");
825 global $loggedInUser;
851 $stmt = $mysqli->prepare(
853 FROM " . $db[
'user_permission'] .
"
857 $stmt->bind_param(
"ii", $id, $adminPermission);
859 $stmt->bind_result($count);
860 if ($stmt->fetch()) {
864 if (isset($retval)) {
872 fail(
"Couldn't perform check.");
916 if (isset($userId)) {
918 $stmt = $mysqli->prepare(
"
919 SELECT last_sign_in_stamp
920 FROM " . $db[
'users'] .
"
924 $stmt->bind_param(
"i", $userId);
925 $stmt->bind_result($lastSignIn);
927 if ($stmt->fetch()) {
928 $retval = $lastSignIn;
946 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
951 $stmt->bind_param(
"s", $token);
952 $result = $stmt->execute();
966 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
971 $stmt->bind_param(
"s", $token);
972 $result = $stmt->execute();
975 return ($result > 0) ?
true :
false;
986 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
987 SET active = 2, session_id = '0'
991 $stmt->bind_param(
"i", $userId);
992 $result = $stmt->execute();
1011 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1016 $stmt->bind_param(
"si", $newFirstname, $userId);
1017 $result = $stmt->execute();
1033 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1038 $stmt->bind_param(
"si", $newUsername, $userId);
1039 $result = $stmt->execute();
1041 return ($result > 0) ?
true :
false;;
1055 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1060 $stmt->bind_param(
"si", $newLastname, $userId);
1061 $result = $stmt->execute();
1063 return ($result > 0) ?
true :
false;
1077 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1082 $stmt->bind_param(
"si", $newEmail, $userId);
1083 $result = $stmt->execute();
1085 return ($result > 0) ?
true :
false;
1099 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1104 $stmt->bind_param(
"si", $mobile, $userId);
1105 $result = $stmt->execute();
1107 return ($result > 0) ?
true :
false;
1122 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1123 SET activation_token = ?,
1124 last_activation_request = ?
1128 $stmt->bind_param(
"ssss", $newActivationToken, time(), $email, $username);
1129 $result = $stmt->execute();
1131 return ($result > 0) ?
true :
false;
1146 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1147 SET activation_token = ?,
1148 last_activation_request = ?
1149 WHERE user_name = ?");
1150 $stmt->bind_param(
"sss", $new_confirm_token, $time, $username);
1151 $result = $stmt->execute();
1153 return ($result > 0) ?
true :
false;
1168 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1170 activation_token = ?
1172 activation_token = ?");
1173 $stmt->bind_param(
"sss", $newPasswordHash, $newActivationToken, $oldToken);
1174 $result = $stmt->execute();
1176 return ($result > 0) ?
true :
false;
1190 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'users'] .
"
1195 $stmt->bind_param(
"si", $title, $userId);
1196 $result = $stmt->execute();
1198 return ($result > 0) ?
true :
false;
1211 $stmt = $mysqli->prepare(
"SELECT active
1212 FROM " . $db[
'users'] .
"
1216 $stmt->bind_param(
"i", $userId);
1218 $stmt->store_result();
1219 $num_returns = $stmt->num_rows;
1222 if ($num_returns > 0) {
1240 $stmt = $mysqli->prepare(
"SELECT active
1241 FROM " . $db[
'users'] .
"
1245 $stmt->bind_param(
"s", $username);
1247 $stmt->store_result();
1248 $num_returns = $stmt->num_rows;
1251 if ($num_returns > 0) {
1274 if ($lostpass == FALSE) {
1275 $stmt = $mysqli->prepare(
"SELECT active
1276 FROM " . $db[
'users'] .
"
1277 WHERE `valid_email` = 0
1279 activation_token = ?
1282 $stmt = $mysqli->prepare(
"SELECT active
1283 FROM " . $db[
'users'] .
"
1286 activation_token = ?
1288 (lost_password_request = 1 OR lost_password_request = 2)
1291 $stmt->bind_param(
"s", $token);
1293 $stmt->store_result();
1294 $num_returns = $stmt->num_rows;
1297 if ($num_returns > 0) {
1314 $stmt = $mysqli->prepare(
"INSERT INTO " . $db[
'permissions'] .
" (
1320 $stmt->bind_param(
"s", $permissionName);
1321 $result = $stmt->execute();
1334 $stmt = $mysqli->prepare(
"DELETE FROM " . $db[
'permissions'] .
"
1336 $stmt2 = $mysqli->prepare(
"DELETE FROM " . $db[
'user_permission'] .
"
1337 WHERE permission_id = ?");
1338 foreach ($permissionId as $id) {
1340 $errors[] =
lang(
"CANNOT_DELETE_ADMIN");
1341 } elseif ($id == 2) {
1342 $errors[] =
lang(
"CANNOT_DELETE_NEWUSER");
1344 $stmt->bind_param(
"i", $id);
1346 $stmt2->bind_param(
"i", $id);
1362 $stmt = $mysqli->prepare(
"SELECT
1365 FROM " . $db[
'permissions'] .
"");
1367 $stmt->bind_result($id, $name);
1368 while ($stmt->fetch()) {
1370 $row[] = array(
'id' => $id,
'name' => $name);
1383 $stmt = $mysqli->prepare(
"SELECT
1386 FROM " . $db[
'permissions'] .
"
1390 $stmt->bind_param(
"i", $permissionId);
1392 $stmt->bind_result($permissionId, $name);
1393 while ($stmt->fetch()) {
1394 $row = array(
'id' => $permissionId,
'name' => $name);
1407 $stmt = $mysqli->prepare(
"SELECT id
1408 FROM " . $db[
'permissions'] .
"
1412 $stmt->bind_param(
"i", $permissionId);
1414 $stmt->store_result();
1415 $num_returns = $stmt->num_rows;
1418 if ($num_returns > 0) {
1432 $stmt = $mysqli->prepare(
"SELECT id
1433 FROM " . $db[
'permissions'] .
"
1437 $stmt->bind_param(
"s", $permission);
1439 $stmt->store_result();
1440 $num_returns = $stmt->num_rows;
1443 if ($num_returns > 0) {
1458 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'permissions'] .
"
1463 $stmt->bind_param(
"si", $newName, $permissionId);
1464 $result = $stmt->execute();
1482 $stmt = $mysqli->prepare(
"INSERT INTO " . $db[
'user_permission'] .
" (
1490 if (is_array($permissionId)) {
1491 foreach ($permissionId as $id) {
1492 $stmt->bind_param(
"ii", $id, $userId);
1496 } elseif (is_array($userId)) {
1497 foreach ($userId as $id) {
1498 $stmt->bind_param(
"ii", $permissionId, $id);
1503 $stmt->bind_param(
"ii", $permissionId, $userId);
1518 $stmt = $mysqli->prepare(
"SELECT
1522 FROM " . $db[
'user_permission'] .
"");
1524 $stmt->bind_result($id, $user, $permission);
1525 while ($stmt->fetch()) {
1526 $row[] = array(
'id' => $id,
'user_id' => $user,
'permission_id' => $permission);
1540 $stmt = $mysqli->prepare(
"SELECT
1543 FROM " . $db[
'user_permission'] .
"
1546 $stmt->bind_param(
"i", $userId);
1548 $stmt->bind_result($id, $permission);
1549 while ($stmt->fetch()) {
1550 $row[$permission] = array(
'id' => $id,
'permission_id' => $permission);
1566 $stmt = $mysqli->prepare(
"SELECT id, user_id
1567 FROM " . $db[
'user_permission'] .
"
1568 WHERE permission_id = ?
1570 $stmt->bind_param(
"i", $permission_id);
1572 $stmt->bind_result($id, $user);
1573 while ($stmt->fetch()) {
1574 $row[$user] = array(
'id' => $id,
'user_id' => $user);
1593 $stmt = $mysqli->prepare(
"DELETE FROM " . $db[
'user_permission'] .
"
1594 WHERE permission_id = ?
1596 if (is_array($permissionId)) {
1597 foreach ($permissionId as $id) {
1599 $stmt->bind_param(
"ii", $id, $userId);
1606 } elseif (is_array($userId)) {
1607 foreach ($userId as $id) {
1609 $stmt->bind_param(
"ii", $permissionId, $id);
1618 $stmt->bind_param(
"ii", $permissionId, $userId);
1626 return $i - $forbidden;
1640 $content = file_get_contents(
$filename);
1642 $securityHeaderPattern =
"~if\s*\(\!accessGranted\([\.\$_A-Z\['\])\(\)]*\)\)\s*\{[A-Za-z\s\(\)\{\}'.;üäÜÄöÖ,0-9]*\}~i";
1644 $hasSecurityHeader = preg_match($securityHeaderPattern, $content);
1645 if ($hasSecurityHeader === 0) {
1647 }
else if ($hasSecurityHeader === 1) {
1672 $stmt = $mysqli->prepare(
"INSERT INTO " . $db[
'pages'] .
" (
1679 foreach ($pages as $page) {
1680 $stmt->bind_param(
"si", $page, $page_access);
1681 if ($stmt->execute()) {
1697 $stmt = $mysqli->prepare(
"DELETE FROM " . $db[
'pages'] .
"
1699 foreach ($pages as $id) {
1700 $stmt->bind_param(
"i", $id);
1713 $stmt = $mysqli->prepare(
"SELECT
1717 FROM " . $db[
'pages'] .
"
1720 $stmt->bind_result($id, $page, $state);
1721 while ($stmt->fetch()) {
1722 $row[$page] = array(
'id' => $id,
'page' => $page,
'state' => $state);
1738 $stmt = $mysqli->prepare(
"SELECT
1742 FROM " . $db[
'pages'] .
"
1746 $stmt->bind_param(
"i", $pageId);
1748 $stmt->bind_result($pageId, $page, $state);
1749 while ($stmt->fetch()) {
1750 $row = array(
'id' => $pageId,
'page' => $page,
'state' => $state);
1766 $stmt = $mysqli->prepare(
"SELECT state
1767 FROM " . $db[
'pages'] .
"
1771 $stmt->bind_param(
"i", $pageId);
1773 $stmt->store_result();
1774 $num_returns = $stmt->num_rows;
1777 if ($num_returns > 0) {
1794 $stmt = $mysqli->prepare(
"UPDATE " . $db[
'pages'] .
"
1799 $stmt->bind_param(
"ii", $state, $pageId);
1800 $result = $stmt->execute();
1817 $qry =
"UPDATE " . $db[
'users'] .
"
1818 SET `session_id` = ?
1820 $stmt = $mysqli->prepare($qry);
1821 $stmt->bind_param(
"si", $default_id, $userId);
1822 $result = $stmt->execute();
1825 return ($result > 0) ?
true :
false;
1842 $tokens = explode(
'/', $uri);
1843 $pageName = $tokens[
sizeof($tokens) - 1];
1846 $stmt = $mysqli->prepare(
"SELECT
1850 FROM " . $db[
'pages'] .
"
1854 $stmt->bind_param(
"s", $pageName);
1856 $stmt->bind_result($id, $page, $state);
1857 while ($stmt->fetch()) {
1858 $pageDetails = array(
'id' => $id,
'page' => $page,
'state' => $state);
1862 if (empty($pageDetails)) {
1872 $errors[] =
"Die Seite konnte nicht zur Datenbank hinzugefuegt werden.";
1890 if ($pageDetails[
'state'] ==
PAGE_LOCK) {
1910 $stmt = $mysqli->prepare(
"SELECT valid_email
1911 FROM " . $db[
'users'] .
"
1915 $stmt->bind_param(
"i", $userId);
1917 $stmt->bind_result($validMail);
1919 if($stmt->fetch()) {
1920 return ($validMail==1)?
true :
false;
1936 $qry =
"UPDATE " . $db[
'users'] .
"
1937 SET `valid_email` = 0
1938 WHERE `activation_token` = ?";
1939 $stmt = $mysqli->prepare($qry);
1940 $stmt->bind_param(
"s", $token);
1941 $result = $stmt->execute();
1944 return ($result > 0) ?
true :
false;
1957 $qry =
"UPDATE " . $db[
'users'] .
"
1958 SET `valid_email` = 1
1959 WHERE `activation_token` = ?";
1960 $stmt = $mysqli->prepare($qry);
1961 $stmt->bind_param(
"i", $token);
1962 $result = $stmt->execute();
1965 return ($result > 0) ?
true :
false;
1978 $stmt = $mysqli->prepare(
"SELECT
1980 FROM " . $db[
'pages'] .
"
1982 $stmt->bind_param(
"s", $page);
1983 $stmt->bind_result($id);
1985 if ($stmt->fetch()) {
2002 $stmt = $mysqli->prepare(
"SELECT lost_password_request
2003 FROM " . $db[
'users'] .
"
2007 $stmt->bind_param(
"i", $userId);
2009 $stmt->bind_result($passwordFlag);
2011 if($stmt->fetch()) {
2012 return ($passwordFlag<0)?
true :
false;
2028 $stmt = $mysqli->prepare(
"SELECT lost_password_request
2029 FROM " . $db[
'users'] .
"
2033 $stmt->bind_param(
"i", $userId);
2035 $stmt->bind_result($passwordFlag);
2037 if($stmt->fetch()) {
2038 return ($passwordFlag<-1)?
true :
false;
2056 $qryInit =
"SET @userId = ?";
2057 $stmt = $mysqli->prepare($qryInit);
2058 $stmt->bind_param(
"i",$userId);
2063 $qry =
"SELECT SUM(count)
2065 SELECT COUNT(id) AS count
2066 FROM ".$dbBackup[
'car'].
"
2067 WHERE bup_last_change_by = @userId
2069 SELECT COUNT(id) AS count
2070 FROM ".$dbBackup[
'category'].
"
2071 WHERE bup_last_change_by = @userId
2073 SELECT COUNT(id) AS count
2074 FROM ".$dbBackup[
'contact_person'].
"
2075 WHERE bup_last_change_by = @userId
2077 SELECT COUNT(id) AS count
2078 FROM ".$dbBackup[
'production_facility'].
"
2079 WHERE bup_last_change_by = @userId
2081 SELECT COUNT(id) AS count
2082 FROM ".$dbBackup[
'sc_attachment'].
"
2083 WHERE bup_last_change_by = @userId
2085 SELECT COUNT(id) AS count
2086 FROM ".$dbBackup[
'sc_event'].
"
2087 WHERE bup_last_change_by = @userId
2089 SELECT COUNT(id) AS count
2090 FROM ".$dbBackup[
'sc_financial_donation'].
"
2091 WHERE bup_last_change_by = @userId
2093 SELECT COUNT(id) AS count
2094 FROM ".$dbBackup[
'sc_material_donation'].
"
2095 WHERE bup_last_change_by = @userId
2097 SELECT COUNT(id) AS count
2098 FROM ".$dbBackup[
'sc_produced_part'].
"
2099 WHERE bup_last_change_by = @userId
2101 SELECT COUNT(id) AS count
2102 FROM ".$dbBackup[
'sponsor'].
"
2103 WHERE bup_last_change_by = @userId
2105 SELECT COUNT(id) AS count
2106 FROM ".$dbBackup[
'sponsor_car'].
"
2107 WHERE bup_last_change_by = @userId
2109 SELECT COUNT(id) AS count
2110 FROM ".$dbBackup[
'sp_production_facility'].
"
2111 WHERE bup_last_change_by = @userId
2113 SELECT COUNT(id) AS count
2114 FROM ".$dbBackup[
'status'].
"
2115 WHERE bup_last_change_by = @userId)AS t1
2117 $stmt = $mysqli->prepare($qry);
2119 $stmt->bind_result($numOfChanges);
2120 if($stmt->fetch()) {
2121 $result = $numOfChanges;
2128 $qryEnd =
"SET @userId = ?";
2129 $stmt = $mysqli->prepare($qryEnd);
2131 $stmt->bind_param(
"i",$reset);
2147 $errors[] =
lang(
"FORGOTPASS_INVALID_TOKEN");
2156 "searchStrs" => array(
"#GENERATED-PASS#",
"#USERNAME#"),
2157 "subjectStrs" => array($rand_pass, $userdetails[
"user_name"])
2160 if (!$mail->newTemplateMsg(
"your-lost-password.txt", $hooks)) {
2161 $errors[] =
lang(
"MAIL_TEMPLATE_BUILD_ERROR");
2163 if (!$mail->sendMail($userdetails[
"email"],
"Neues Passwort")) {
2164 $errors[] =
lang(
"MAIL_ERROR");
2167 $errors[] =
lang(
"SQL_ERROR");
2170 $errors[] =
lang(
"SQL_ERROR");
2172 $successes[] =
lang(
"FORGOTPASS_NEW_PASS_EMAIL");
2189 $errors[] =
lang(
"FORGOTPASS_INVALID_TOKEN");
2193 switch ($userdetails[
'lostPasswordRequest']) {
2196 $errors[] =
lang(
"SQL_ERROR");
2198 $successes[] =
lang(
"FORGOTPASS_REQUEST_CANNED");
2203 $errors[] =
lang(
"SQL_ERROR");
2205 $successes[] =
lang(
"FORGOTPASS_REQUEST_CANNED");