1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56

<?php
header('Access-Control-Allow-Origin:*');
include_once("./_common.php");

$mode_ok = "N";

@extract($_POST);

if($mode=='id_find'){
    $sql = "select login_id from customers where ceo_name = '{$id_ceo_name}' and email = '{$id_email}' limit 1";
    $info = sql_fetch($sql,$connect_j3);
    if($info['login_id']!=''){
        $mode_ok = "Y";
        $login_id = $info['login_id'];
    } else {
        $msg = "해당되는 회원정보가 없습니다.";
    }    
}

if($mode=='pw_find'){
    $new_pw = urltopdf_rand(10);

    $sql = "select count(login_id) as cnt from customers where login_id = '{$pw_login_id}' and email = '{$pw_email}' ";
    $info = sql_fetch($sql,$connect_j3);

    if($info['cnt']>0){
        $ma_subject = "{$config['shop_title']} 고객님의 패스워드 찾기로 변경된 패스워드 입니다.";
        $ma_content = "패스워드 찾기로 변경된 비밀번호는 {$new_pw} 입니다.";

        $snd_email = $config['admin_email'];
        $rcv_email = $pw_email;
        $mail = new PHPMailer;
        $rtn = email_send($mail, $ma_subject, $ma_content, $snd_email, $rcv_email);
        if($rtn=='OK'){
            $enc_pw = hash("sha256",$new_pw);
            $sql = "update customers set login_passwd = '{$enc_pw}' where login_id = '{$pw_login_id}' ";
            mysql_query($sql,$connect_j3);
            $mode_ok = "Y";
        } else {
            $msg = $rtn;
        }
    } else {
        $mode_ok = "N";
        $msg = "해당되는 회원정보가 없습니다.";
    }

}

echo "<?php xml version='1.0' encoding='utf-8'?><output>";
echo "<mode>".$mode."</mode>";
echo "<mode_ok>".$mode_ok."</mode_ok>";
echo "<rtn_url>".rawurlencode($rtn_url)."</rtn_url>";
echo "<msg>".$msg."</msg>";
echo "<login_id>".$login_id."</login_id>";
echo "</output>";
?>