blob: 696640b50830a38d699fb006c0316a017ed0c697 [file] [log] [blame]
<?php
/*
* hores
* Copyright (c) 2023 Adrià Vilanova Martínez
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation, either version 3 of the
* License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public
* License along with this program.
* If not, see http://www.gnu.org/licenses/.
*/
require_once("core.php");
if (!security::checkParams("POST", [
["token", security::PARAM_NEMPTY],
["password", security::PARAM_NEMPTY]
])) {
security::go("index.php?msg=unexpected");
}
$token = $_POST["token"];
$password = $_POST["password"];
if (!security::passwordIsGoodEnough($password)) security::go("recovery.php?token=".$token."&msg=weakpassword");
$status = recovery::finishRecovery($token, $password);
security::go("index.php?msg=".($status ? "recoverycompleted" : "recovery2failed"));