getRestorePoint($hash); if ($restorePointInfo['error'] !== false) { header("Location: /"); } } else { header("Location: /"); } $error = false; $error_message = array(); $user_password = ''; $user_password_repeat = ''; if (!empty($_POST)) { $error = false; $user_password = isset($_POST['user_password']) ? $_POST['user_password'] : ''; $user_password_repeat = isset($_POST['user_password_repeat']) ? $_POST['user_password_repeat'] : ''; $token = isset($_POST['authenticity_token']) ? $_POST['authenticity_token'] : ''; $user_password = helper::clearText($user_password); $user_password_repeat = helper::clearText($user_password_repeat); $user_password = helper::escapeText($user_password); $user_password_repeat = helper::escapeText($user_password_repeat); if (auth::getAuthenticityToken() !== $token) { $error = true; $error_message[] = 'Error!'; } if (!helper::isCorrectPassword($user_password)) { $error = true; $error_message[] = 'Incorrect password.'; } if ($user_password != $user_password_repeat) { $error = true; $error_message[] = 'Passwords do not match.'; } if (!$error) { $account = new account($dbo, $restorePointInfo['accountId']); $account->newPassword($user_password); $account->restorePointRemove(); header("Location: /restore/success"); exit; } } auth::newAuthenticityToken(); $page_id = "restore"; $css_files = array("main.css", "my.css"); $page_title = APP_TITLE; include_once("../html/common/header.inc.php"); ?>