From f1a4b508e57879e2c17feded54f0d1b82ae54d2b Mon Sep 17 00:00:00 2001 From: Lukas Fleischer Date: Tue, 19 Mar 2013 13:44:08 +0100 Subject: [PATCH] Enforce e-mail validation during registration Remove the password field from the account creation form and always send a password reset request via e-mail instead. This ensures that only users with valid e-mail addresses are able to login. Signed-off-by: Lukas Fleischer --- web/html/account.php | 4 ++-- web/template/account_edit_form.php | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/web/html/account.php b/web/html/account.php index f15a10a1..50d376f7 100644 --- a/web/html/account.php +++ b/web/html/account.php @@ -105,8 +105,8 @@ if (isset($_COOKIE["AURSID"])) { # process_account_form("","new", "NewAccount", in_request("U"), 1, 0, in_request("E"), - in_request("P"), in_request("C"), in_request("R"), - in_request("L"), in_request("I"), in_request("K")); + '', '', in_request("R"), in_request("L"), + in_request("I"), in_request("K")); } else { # display the account request form diff --git a/web/template/account_edit_form.php b/web/template/account_edit_form.php index a41b34cf..a0de2a38 100644 --- a/web/template/account_edit_form.php +++ b/web/template/account_edit_form.php @@ -60,17 +60,17 @@ ()

+

-

-

+