Java tutorial
/** * OpenKM, Open Document Management System (http://www.openkm.com) * Copyright (c) 2006-2015 Danilo Tomasoni * * No bytes were intentionally harmed during the development of this application. * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License along * with this program; if not, write to the Free Software Foundation, Inc., * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ package com.openkm.servlet; import java.io.IOException; import javax.mail.MessagingException; import javax.servlet.ServletContext; import javax.servlet.ServletException; import javax.servlet.http.HttpServlet; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import org.apache.commons.lang.RandomStringUtils; import org.slf4j.Logger; import org.slf4j.LoggerFactory; import com.openkm.core.Config; import com.openkm.core.DatabaseException; import com.openkm.dao.AuthDAO; import com.openkm.dao.bean.User; import com.openkm.util.MailUtils; import com.openkm.util.WebUtils; public class PasswordResetServlet extends HttpServlet { private static Logger log = LoggerFactory.getLogger(PasswordResetServlet.class); private static final long serialVersionUID = 1L; public void doGet(HttpServletRequest request, HttpServletResponse response) throws IOException, ServletException { ServletContext sc = getServletContext(); sc.removeAttribute("forgot"); sc.removeAttribute("failed"); response.sendRedirect("login.jsp"); } public void doPost(HttpServletRequest request, HttpServletResponse response) throws IOException, ServletException { String username = WebUtils.getString(request, "username"); ServletContext sc = getServletContext(); User usr = null; if (Config.USER_PASSWORD_RESET) { try { usr = AuthDAO.findUserByPk(username); } catch (DatabaseException e) { log.error(getServletName() + " User '" + username + "' not found"); } if (usr != null) { try { String password = RandomStringUtils.randomAlphanumeric(8); AuthDAO.updateUserPassword(username, password); MailUtils.sendMessage(usr.getEmail(), usr.getEmail(), "Password reset", "Your new password is: " + password + "<br/>" + "To change it log in and then go to 'Tools' > 'Preferences' > 'User Configuration'."); sc.setAttribute("resetOk", usr.getEmail()); response.sendRedirect("password_reset.jsp"); } catch (MessagingException e) { log.error(e.getMessage(), e); sc.setAttribute("resetFailed", "Failed to send the new password by email"); response.sendRedirect("password_reset.jsp"); } catch (DatabaseException e) { log.error(e.getMessage(), e); sc.setAttribute("resetFailed", "Failed reset the user password"); response.sendRedirect("password_reset.jsp"); } } else { sc.setAttribute("resetFailed", "Invalid user name provided"); sc.getRequestDispatcher("/password_reset.jsp").forward(request, response); } } else { sc.getRequestDispatcher("/login.jsp").forward(request, response); } } }