/**
* functions.php - Change Password plugin
*
- * Copyright (c) 2003-2005 The SquirrelMail Project Team
- * Licensed under the GNU GPL. For full terms see the file COPYING.
- *
+ * @copyright 2003-2010 The SquirrelMail Project Team
+ * @license http://opensource.org/licenses/gpl-license.php GNU Public License
* @version $Id$
* @package plugins
* @subpackage change_password
require_once(SM_PATH . 'plugins/change_password/backend/'.$cpw_backend.'.php');
- $msgs = do_hook_function('change_password_dochange',
- array (
- 'username' => $username,
- 'curpw' => $curpw,
- 'newpw' => $newpw
+ $msgs = do_hook('change_password_dochange',
+ $temp=array (
+ 'username' => &$username,
+ 'curpw' => &$curpw,
+ 'newpw' => &$newpw
) );
/* something bad happened, return */
/* update our password stored in the session */
$onetimepad = OneTimePadCreate(strlen($newpw));
- $_SESSION['onetimepad'] = $onetimepad;
+ sqsession_register($onetimepad,'onetimepad');
$key = OneTimePadEncrypt($newpw, $onetimepad);
- setcookie('key', $key, 0, $base_uri);
+ sqsetcookie('key', $key, 0, $base_uri);
/* make sure we write the session data before we redirect */
session_write_close();
- header('Location: '.SM_PATH. 'src/options.php?optmode=submit&optpage=change_password&plugin_change_password=1');
+ header('Location: '.SM_PATH. 'src/options.php?optmode=submit&optpage=change_password&plugin_change_password=1&smtoken=' . sm_generate_security_token());
exit;
}
-?>
\ No newline at end of file
projects / squirrelmail.git / blobdiff