loggedIn() ) { $referer = $_SERVER['HTTP_REFERER']; redirect_to("profile"); } $recoverid = $_GET['r']; $vericode = $_GET['v']; if( $recoverid && $vericode ) { $do_verify = true; $userid = $userdb->recoverVerify($recoverid, $vericode); if( $userid ) { $verify_ok = true; } } $action = $_POST['action']; if( $verify_ok && $action=="resetpassword" ) { $passwd1 = $_POST['passwd1']; $passwd2 = $_POST['passwd2']; $check_ok=true; $username = $userinfo['username']; if( !$passwd1 ) { $passwd1_error = "This field is required"; } else if ( strlen($passwd1) < 5 ) { $passwd1_error = "Password is too short. Must be at least 5 characters."; } if( !$passwd2 ) { $passwd2_error = "This field is required"; } else if( $passwd1 != $passwd2 ) { $passwd2_error = "The two passwords do not match"; } $check_ok = !isset($passwd_error) && !isset($passwd1_error) && !isset($passwd2_error); if($check_ok) { if( $userdb->changePassword($userid, $passwd1)) { $session->loginForUser($userid); redirect_to("profile"); } } } require_once('commonheader.php'); ?>