Guest Posted May 24, 2003 Share Posted May 24, 2003 I tested the "Lost Password" feature in OSC Affiliate. I entered the e-mail address of my test account, and received an e-mail that contained the IP address of where the request came from as well as the new password. The problem is that the new password doesn't work!!! I've tried this three times... Has anyone else had this problem??? If so, how did you fix it??? Quote Link to comment Share on other sites More sharing options...
henri Posted May 24, 2003 Share Posted May 24, 2003 Get the actuel 'affiliate_password_forgotten.php' file from cvs... Quote Link to comment Share on other sites More sharing options...
Guest Posted May 24, 2003 Share Posted May 24, 2003 Get the actuel 'affiliate_password_forgotten.php' file from cvs... Are you asking for the actual code I am using on my site??? <?php /* $Id: affiliate_password_forgotten.php,v 1.6 2003/02/19 12:06:02 simarilius Exp $ OSC-Affiliate Contribution based on: osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright (c) 2002 -2003 osCommerce Released under the GNU General Public License */ require('includes/application_top.php'); require(DIR_WS_LANGUAGES . $language . '/' . FILENAME_AFFILIATE_PASSWORD_FORGOTTEN); if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'process')) { $check_affiliate_query = tep_db_query("select affiliate_firstname, affiliate_lastname, affiliate_password, affiliate_id from " . TABLE_AFFILIATE . " where affiliate_email_address = '" . $HTTP_POST_VARS['email_address'] . "'"); if (tep_db_num_rows($check_affiliate_query)) { $check_affiliate = tep_db_fetch_array($check_affiliate_query); // Crypted password mods - create a new password, update the database and mail it to them $newpass = tep_create_random_value(ENTRY_PASSWORD_MIN_LENGTH); $crpted_password = tep_encrypt_password($newpass); tep_db_query("update " . TABLE_AFFILIATE . " set affiliate_password = '" . $crypted_password . "' where affiliate_id = '" . $check_affiliate['affiliate_id'] . "'"); tep_mail($check_affiliate['affiliate_firstname'] . " " . $check_affiliate['affiliate_lastname'], $HTTP_POST_VARS['email_address'], EMAIL_PASSWORD_REMINDER_SUBJECT, nl2br(sprintf(EMAIL_PASSWORD_REMINDER_BODY, $newpass)), STORE_OWNER, AFFILIATE_EMAIL_ADDRESS); tep_redirect(tep_href_link(FILENAME_AFFILIATE, 'info_message=' . urlencode(TEXT_PASSWORD_SENT), 'SSL', true, false)); } else { tep_redirect(tep_href_link(FILENAME_AFFILIATE_PASSWORD_FORGOTTEN, 'email=nonexistent', 'SSL')); } } else { $breadcrumb->add(NAVBAR_TITLE_1, tep_href_link(FILENAME_AFFILIATE, '', 'SSL')); $breadcrumb->add(NAVBAR_TITLE_2, tep_href_link(FILENAME_AFFILIATE_PASSWORD_FORGOTTEN, '', 'SSL')); ?> <!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN"> <html <?php echo HTML_PARAMS; ?>> <head> <meta http-equiv="Content-Type" content="text/html; charset=<?php echo CHARSET; ?>"> <title><?php echo TITLE; ?></title> <base href="<?php echo (($request_type == 'SSL') ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG; ?>"> <link rel="stylesheet" type="text/css" href="stylesheet.css"> </head> <body marginwidth="0" marginheight="0" topmargin="0" bottommargin="0" leftmargin="0" rightmargin="0"> <!-- header //--> <?php require(DIR_WS_INCLUDES . 'header.php'); ?> <!-- header_eof //--> <!-- body //--> <table border="0" width="736" cellspacing="1" cellpadding="3" align="center"> <tr> <td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2"> <!-- left_navigation //--> <?php require(DIR_WS_INCLUDES . 'column_left.php'); ?> <!-- left_navigation_eof //--> </table></td> <!-- body_text //--> <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="0"> <tr> <td><table border="0" width="100%" cellspacing="0" cellpadding="0"> <tr> <td class="pageHeading"><?php echo HEADING_TITLE; ?></td> <td class="pageHeading" align="right"><?php echo tep_image(DIR_WS_IMAGES . 'table_background_password_forgotten.gif', HEADING_TITLE, HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td> </tr> </table></td> </tr> <tr> <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <tr> <td><?php echo tep_draw_form('password_forgotten', tep_href_link(FILENAME_AFFILIATE_PASSWORD_FORGOTTEN, 'action=process', 'SSL')); ?><br><table border="0" width="100%" cellspacing="0" cellpadding="3"> <tr> <td align="right" class="main"><?php echo ENTRY_EMAIL_ADDRESS; ?></td> <td class="main"><?php echo tep_draw_input_field('email_address', '', 'maxlength="96"'); ?></td> </tr> <tr> <td colspan="2"><br><table border="0" cellpadding="0" cellspacing="0" width="100%"> <tr> <td valign="top"><?php echo '<a href="' . tep_href_link(FILENAME_AFFILIATE, '', 'SSL') . '">' . tep_image_button('button_back.gif', IMAGE_BUTTON_BACK) . '</a>'; ?></td> <td align="right" valign="top"><?php echo tep_image_submit('button_continue.gif', IMAGE_BUTTON_CONTINUE); ?></td> </tr> </table></td> </tr> <?php if (isset($HTTP_GET_VARS['email']) && ($HTTP_GET_VARS['email'] == 'nonexistent')) { echo ' <tr>' . "n"; echo ' <td colspan="2" class="smallText">' . TEXT_NO_EMAIL_ADDRESS_FOUND . '</td>' . "n"; echo ' </tr>' . "n"; } ?> </table></form></td> </tr> </table></td> <!-- body_text_eof //--> <td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2"> <!-- right_navigation //--> <?php require(DIR_WS_INCLUDES . 'column_right.php'); ?> <!-- right_navigation_eof //--> </table></td> </tr> </table> <!-- body_eof //--> <!-- footer //--> <?php require(DIR_WS_INCLUDES . 'footer.php'); ?> <!-- footer_eof //--> <br> </body> </html> <?php } require(DIR_WS_INCLUDES . 'application_bottom.php'); ?> Quote Link to comment Share on other sites More sharing options...
henri Posted May 24, 2003 Share Posted May 24, 2003 No, the bug you're describing is fixed in cvs: https://sourceforge.net/projects/oscaffiliate Threre you get a working file. Quote Link to comment Share on other sites More sharing options...
Guest Posted May 24, 2003 Share Posted May 24, 2003 Ooops, silly me! Sorry, it was a long night... Instead of swapping files I just made the fix listed in the Bug Report. It was as simple as placing a missing "y" in the correct spot. It works perfect now! In case anyone else reads this thread, around line number 27 find: $crpted_password = tep_encrypt_password($newpass); it should read: $crypted_password = tep_encrypt_password($newpass); (note the missing "y" in "$crpted...") Hope this helps someone else!!! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.