getMLText("invalid_request_token"))),getMLText("invalid_request_token")); } if (isset($_POST["hash"])) { $hash = $_POST["hash"]; } if (isset($_POST["newpassword"])) { $newpassword = $_POST["newpassword"]; } if (isset($_POST["newpasswordrepeat"])) { $newpasswordrepeat = $_POST["newpasswordrepeat"]; } if (empty($newpassword) || empty($newpasswordrepeat) || $newpassword != $newpasswordrepeat) { UI::exitError(getMLText("password_mismatch_error_title"),getMLText("password_mismatch_error")); } $user = $dms->checkPasswordRequest($hash); if($user) { $user->setPwd(seed_pass_hash($newpassword)); $dms->deletePasswordRequest($hash); header('Location: ../out/out.Login.php'); exit; } UI::exitError(getMLText("password_forgotten_invalid_hash_title"),getMLText("password_forgotten_invalid_hash"));