Wie kann ich das captcha ausschalten?

[woeppel]

Ich versuche bisher vergebens bei "Passwort vergessen" das Captcha zu deaktivieren.
Bei "Newsletter" und "Kontakt" klappt alles wunderbar.
Bei "Passwort vergessen" nach Eingabe der Emailadresse bekomme ich die Meldung:
Bitte geben Sie Ihre E-Mail-Adresse und den Sicherheitscode erneut ein.

Modified 1.06 SP2

In meiner password_double_opt.php habe ich bisher wiefolgt auskommandiert:

Code: PHP  [Auswählen]

<?php
/* -----------------------------------------------------------------------------------------
  $Id: password_double_opt.php 3072 2012-06-18 15:01:13Z hhacker $

  modified eCommerce Shopsoftware
  http://www.modified-shop.org

  Copyright (c) 2009 - 2013 [www.modified-shop.org]
  -----------------------------------------------------------------------------------------
  based on:
  (c) 2000-2001 The Exchange Project  (earlier name of osCommerce)
  (c) 2002-2003 osCommerce www.oscommerce.com
  (c) 2003 nextcommerce www.nextcommerce.org
  (c) 2006 XT-Commerce (password_double_opt.php,v 1.0)

  Released under the GNU General Public License
  ---------------------------------------------------------------------------------------*/

require ('includes/application_top.php');

// create smarty elements
$smarty = new Smarty;

// include boxes
require (DIR_FS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/source/boxes.php');

// include needed functions
require_once (DIR_FS_INC.'xtc_render_vvcode.inc.php');
require_once (DIR_FS_INC.'xtc_random_charcode.inc.php');
require_once (DIR_FS_INC.'xtc_encrypt_password.inc.php');
$case = 'double_opt';
$info_message = TEXT_PASSWORD_FORGOTTEN;

if (isset ($_GET['action']) && ($_GET['action'] == 'first_opt_in') && $_POST) {
  $check_customer_query = xtc_db_query("SELECT customers_email_address,
                                               customers_id
                                          FROM ".TABLE_CUSTOMERS."
                                         WHERE customers_email_address = '".xtc_db_input($_POST['email'])."'
                                           AND customers_status != ". DEFAULT_CUSTOMERS_STATUS_ID_GUEST);
  $check_customer = xtc_db_fetch_array($check_customer_query);

  $vlcode = xtc_random_charcode(32);
  $link = xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=verified&customers_id='.$check_customer['customers_id'].'&key='.$vlcode, 'NONSSL');

  // assign language to template for caching
  $smarty->assign('language', $_SESSION['language']);
  $smarty->assign('tpl_path', 'templates/'.CURRENT_TEMPLATE.'/');
  $smarty->assign('logo_path', HTTP_SERVER.DIR_WS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/img/');

  // assign vars
  $smarty->assign('EMAIL', $check_customer['customers_email_address']);
  $smarty->assign('LINK', $link);
  // dont allow cache
  $smarty->caching = false;

  // create mails
  $html_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/password_verification_mail.html');
  $txt_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/password_verification_mail.txt');

  //BOF - Dokuman - 2009-09-04: convert uppercase Captchas to lowercase, to be more flexible on user input
  //if ($_POST['vvcode'] == $_SESSION['vvcode']) {
  if (isset($_POST['vvcode']) && isset($_SESSION['vvcode']) && strtoupper($_POST['vvcode']) == strtoupper($_SESSION['vvcode'])) {
  //BOF - Dokuman - 2009-09-04: convert uppercase Captchas to lowercase, to be more flexible on user input
    if (!xtc_db_num_rows($check_customer_query)) {
      $case = 'wrong_mail';
      $info_message = TEXT_EMAIL_ERROR;
    } else {
      $case = 'first_opt_in';
      xtc_db_query("update ".TABLE_CUSTOMERS." set password_request_key = '".$vlcode."' where customers_id = '".$check_customer['customers_id']."'");
      xtc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, $check_customer['customers_email_address'], '', '', EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, '', '', TEXT_EMAIL_PASSWORD_FORGOTTEN, $html_mail, $txt_mail);

    }
  } else {
    $case = 'code_error';
    $info_message = TEXT_CODE_ERROR;
  }
}

// Verification
if (isset ($_GET['action']) && ($_GET['action'] == 'verified')) {
  $check_customer_query = xtc_db_query("select customers_id, customers_email_address, password_request_key from ".TABLE_CUSTOMERS." where customers_id = '".(int)$_GET['customers_id']."' and password_request_key = '".xtc_db_input($_GET['key'])."'");
  $check_customer = xtc_db_fetch_array($check_customer_query);
  if (!xtc_db_num_rows($check_customer_query) || $_GET['key']=="") {
    $case = 'no_account';
    $info_message = TEXT_NO_ACCOUNT;
  } else {
    $newpass = xtc_create_random_value(ENTRY_PASSWORD_MIN_LENGTH);
    $crypted_password = xtc_encrypt_password($newpass);

    xtc_db_query("update ".TABLE_CUSTOMERS." set customers_password = '".$crypted_password."' where customers_email_address = '".xtc_db_input($check_customer['customers_email_address'])."'"); //DokuMan - 2011-02-19 - SQL injection fix 16.02.2011
    xtc_db_query("update ".TABLE_CUSTOMERS." set password_request_key = '' where customers_id = '".$check_customer['customers_id']."'");
    // assign language to template for caching
    $smarty->assign('language', $_SESSION['language']);
    $smarty->assign('tpl_path', 'templates/'.CURRENT_TEMPLATE.'/');
    $smarty->assign('logo_path', HTTP_SERVER.DIR_WS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/img/');

    // assign vars
    $smarty->assign('EMAIL', $check_customer['customers_email_address']);
    $smarty->assign('NEW_PASSWORD', $newpass);
    // dont allow cache
    $smarty->caching = false;
    // create mails
    $html_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/new_password_mail.html');
    $txt_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/new_password_mail.txt');

    xtc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, $check_customer['customers_email_address'], '', '', EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, '', '', TEXT_EMAIL_PASSWORD_NEW_PASSWORD, $html_mail, $txt_mail);
    if (!isset ($mail_error)) {
      xtc_redirect(xtc_href_link(FILENAME_LOGIN, 'info_message='.urlencode(TEXT_PASSWORD_SENT), 'SSL', true, false));
    }
  }
}

$breadcrumb->add(NAVBAR_TITLE_PASSWORD_DOUBLE_OPT, xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, '', 'NONSSL'));

require (DIR_WS_INCLUDES.'header.php');

switch ($case) {
  case 'first_opt_in' :
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    //$smarty->assign('info_message', $info_message); //DokuMan - 2010-08-26 - unnecessary assign
    $smarty->assign('info_message', TEXT_LINK_MAIL_SENDED);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_messages.html');
    break;
   
  case 'second_opt_in' :
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    //    $smarty->assign('info_message', TEXT_PASSWORD_MAIL_SENDED);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_messages.html');
    break;

  case 'code_error' :
    //BOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES).'" alt="Captcha" />');
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES, '', 'SSL').'" alt="Captcha" />');
    //EOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    $smarty->assign('message', TEXT_PASSWORD_FORGOTTEN);
    $smarty->assign('SHOP_NAME', STORE_NAME);
    $smarty->assign('FORM_ACTION', xtc_draw_form('sign', xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=first_opt_in', 'SSL')));
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    // BOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field
    //$smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : '')));
    $smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : ''), '', 'text', false));
    // EOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field

    //$smarty->assign('INPUT_CODE', xtc_draw_input_field('vvcode', '', 'size="8" maxlength="6"', 'text', '', false));
    $smarty->assign('BUTTON_SEND', xtc_image_submit('button_send.gif', IMAGE_BUTTON_LOGIN));
    $smarty->assign('FORM_END', '</form>');
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_double_opt_in.html');
    break;

  case 'wrong_mail' :
    //BOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES).'" alt="Captcha" />');
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES, '', 'SSL').'" alt="Captcha" />');
    //EOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    $smarty->assign('message', TEXT_PASSWORD_FORGOTTEN);
    $smarty->assign('SHOP_NAME', STORE_NAME);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $smarty->assign('FORM_ACTION', xtc_draw_form('sign', xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=first_opt_in', 'SSL')));
    // BOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field
    //$smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : '')));
    $smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : ''), '', 'text', false));
    // EOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field

    //$smarty->assign('INPUT_CODE', xtc_draw_input_field('vvcode', '', 'size="8" maxlength="6"', 'text', '', false));
    $smarty->assign('BUTTON_SEND', xtc_image_submit('button_send.gif', IMAGE_BUTTON_LOGIN));
    $smarty->assign('FORM_END', '</form>');
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_double_opt_in.html');
    break;

  case 'no_account' :
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_messages.html');
    break;

  case 'double_opt' :
    //BOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES).'" alt="Captcha" />');
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES, '', 'SSL').'" alt="Captcha" />');
    //EOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    //    $smarty->assign('info_message', $info_message);
    $smarty->assign('message', TEXT_PASSWORD_FORGOTTEN);
    $smarty->assign('SHOP_NAME', STORE_NAME);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $smarty->assign('FORM_ACTION', xtc_draw_form('sign', xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=first_opt_in', 'SSL')));
    // BOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field
    //$smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : '')));
    $smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : ''), '', 'text', false));
    // EOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field

    //$smarty->assign('INPUT_CODE', xtc_draw_input_field('vvcode', '', 'size="8" maxlength="6"', 'text', '', false));
    $smarty->assign('BUTTON_SEND', xtc_image_submit('button_continue.gif', IMAGE_BUTTON_LOGIN));
    $smarty->assign('FORM_END', '</form>');
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_double_opt_in.html');
    break;
}

$smarty->assign('main_content', $main_content);
$smarty->caching = 0;
if (!defined('RM'))
  $smarty->load_filter('output', 'note');
$smarty->display(CURRENT_TEMPLATE.'/index.html');
include ('includes/application_bottom.php');
?>
 

[hpzeller]

Teste diesen Code, hier habe ich die Überprüfung des Captcha-Codes noch aus deinem Skript entfernt.

Code: PHP  [Auswählen]

<?php
/* -----------------------------------------------------------------------------------------
  $Id: password_double_opt.php 3072 2012-06-18 15:01:13Z hhacker $

  modified eCommerce Shopsoftware
  http://www.modified-shop.org

  Copyright (c) 2009 - 2013 [www.modified-shop.org]
  -----------------------------------------------------------------------------------------
  based on:
  (c) 2000-2001 The Exchange Project  (earlier name of osCommerce)
  (c) 2002-2003 osCommerce www.oscommerce.com
  (c) 2003 nextcommerce www.nextcommerce.org
  (c) 2006 XT-Commerce (password_double_opt.php,v 1.0)

  Released under the GNU General Public License
  ---------------------------------------------------------------------------------------*/

require ('includes/application_top.php');

// create smarty elements
$smarty = new Smarty;

// include boxes
require (DIR_FS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/source/boxes.php');

// include needed functions
require_once (DIR_FS_INC.'xtc_render_vvcode.inc.php');
require_once (DIR_FS_INC.'xtc_random_charcode.inc.php');
require_once (DIR_FS_INC.'xtc_encrypt_password.inc.php');
$case = 'double_opt';
$info_message = TEXT_PASSWORD_FORGOTTEN;

if (isset ($_GET['action']) && ($_GET['action'] == 'first_opt_in') && $_POST) {
  $check_customer_query = xtc_db_query("SELECT customers_email_address,
                                               customers_id
                                          FROM ".TABLE_CUSTOMERS."
                                         WHERE customers_email_address = '".xtc_db_input($_POST['email'])."'
                                           AND customers_status != ". DEFAULT_CUSTOMERS_STATUS_ID_GUEST);
  $check_customer = xtc_db_fetch_array($check_customer_query);

  $vlcode = xtc_random_charcode(32);
  $link = xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=verified&customers_id='.$check_customer['customers_id'].'&key='.$vlcode, 'NONSSL');

  // assign language to template for caching
  $smarty->assign('language', $_SESSION['language']);
  $smarty->assign('tpl_path', 'templates/'.CURRENT_TEMPLATE.'/');
  $smarty->assign('logo_path', HTTP_SERVER.DIR_WS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/img/');

  // assign vars
  $smarty->assign('EMAIL', $check_customer['customers_email_address']);
  $smarty->assign('LINK', $link);
  // dont allow cache
  $smarty->caching = false;

  // create mails
  $html_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/password_verification_mail.html');
  $txt_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/password_verification_mail.txt');

  //BOF - Dokuman - 2009-09-04: convert uppercase Captchas to lowercase, to be more flexible on user input
  //if ($_POST['vvcode'] == $_SESSION['vvcode']) {
  //if (isset($_POST['vvcode']) && isset($_SESSION['vvcode']) && strtoupper($_POST['vvcode']) == strtoupper($_SESSION['vvcode'])) {
  //BOF - Dokuman - 2009-09-04: convert uppercase Captchas to lowercase, to be more flexible on user input
    if (!xtc_db_num_rows($check_customer_query)) {
      $case = 'wrong_mail';
      $info_message = TEXT_EMAIL_ERROR;
    } else {
      $case = 'first_opt_in';
      xtc_db_query("update ".TABLE_CUSTOMERS." set password_request_key = '".$vlcode."' where customers_id = '".$check_customer['customers_id']."'");
      xtc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, $check_customer['customers_email_address'], '', '', EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, '', '', TEXT_EMAIL_PASSWORD_FORGOTTEN, $html_mail, $txt_mail);

    }
  //} else {
    //$case = 'code_error';
    //$info_message = TEXT_CODE_ERROR;
  //}
}

// Verification
if (isset ($_GET['action']) && ($_GET['action'] == 'verified')) {
  $check_customer_query = xtc_db_query("select customers_id, customers_email_address, password_request_key from ".TABLE_CUSTOMERS." where customers_id = '".(int)$_GET['customers_id']."' and password_request_key = '".xtc_db_input($_GET['key'])."'");
  $check_customer = xtc_db_fetch_array($check_customer_query);
  if (!xtc_db_num_rows($check_customer_query) || $_GET['key']=="") {
    $case = 'no_account';
    $info_message = TEXT_NO_ACCOUNT;
  } else {
    $newpass = xtc_create_random_value(ENTRY_PASSWORD_MIN_LENGTH);
    $crypted_password = xtc_encrypt_password($newpass);

    xtc_db_query("update ".TABLE_CUSTOMERS." set customers_password = '".$crypted_password."' where customers_email_address = '".xtc_db_input($check_customer['customers_email_address'])."'"); //DokuMan - 2011-02-19 - SQL injection fix 16.02.2011
    xtc_db_query("update ".TABLE_CUSTOMERS." set password_request_key = '' where customers_id = '".$check_customer['customers_id']."'");
    // assign language to template for caching
    $smarty->assign('language', $_SESSION['language']);
    $smarty->assign('tpl_path', 'templates/'.CURRENT_TEMPLATE.'/');
    $smarty->assign('logo_path', HTTP_SERVER.DIR_WS_CATALOG.'templates/'.CURRENT_TEMPLATE.'/img/');

    // assign vars
    $smarty->assign('EMAIL', $check_customer['customers_email_address']);
    $smarty->assign('NEW_PASSWORD', $newpass);
    // dont allow cache
    $smarty->caching = false;
    // create mails
    $html_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/new_password_mail.html');
    $txt_mail = $smarty->fetch(CURRENT_TEMPLATE.'/mail/'.$_SESSION['language'].'/new_password_mail.txt');

    xtc_php_mail(EMAIL_SUPPORT_ADDRESS, EMAIL_SUPPORT_NAME, $check_customer['customers_email_address'], '', '', EMAIL_SUPPORT_REPLY_ADDRESS, EMAIL_SUPPORT_REPLY_ADDRESS_NAME, '', '', TEXT_EMAIL_PASSWORD_NEW_PASSWORD, $html_mail, $txt_mail);
    if (!isset ($mail_error)) {
      xtc_redirect(xtc_href_link(FILENAME_LOGIN, 'info_message='.urlencode(TEXT_PASSWORD_SENT), 'SSL', true, false));
    }
  }
}

$breadcrumb->add(NAVBAR_TITLE_PASSWORD_DOUBLE_OPT, xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, '', 'NONSSL'));

require (DIR_WS_INCLUDES.'header.php');

switch ($case) {
  case 'first_opt_in' :
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    //$smarty->assign('info_message', $info_message); //DokuMan - 2010-08-26 - unnecessary assign
    $smarty->assign('info_message', TEXT_LINK_MAIL_SENDED);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_messages.html');
    break;
   
  case 'second_opt_in' :
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    //    $smarty->assign('info_message', TEXT_PASSWORD_MAIL_SENDED);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_messages.html');
    break;

  case 'code_error' :
    //BOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES).'" alt="Captcha" />');
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES, '', 'SSL').'" alt="Captcha" />');
    //EOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    $smarty->assign('message', TEXT_PASSWORD_FORGOTTEN);
    $smarty->assign('SHOP_NAME', STORE_NAME);
    $smarty->assign('FORM_ACTION', xtc_draw_form('sign', xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=first_opt_in', 'SSL')));
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    // BOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field
    //$smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : '')));
    $smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : ''), '', 'text', false));
    // EOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field

    //$smarty->assign('INPUT_CODE', xtc_draw_input_field('vvcode', '', 'size="8" maxlength="6"', 'text', '', false));
    $smarty->assign('BUTTON_SEND', xtc_image_submit('button_send.gif', IMAGE_BUTTON_LOGIN));
    $smarty->assign('FORM_END', '</form>');
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_double_opt_in.html');
    break;

  case 'wrong_mail' :
    //BOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES).'" alt="Captcha" />');
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES, '', 'SSL').'" alt="Captcha" />');
    //EOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    $smarty->assign('message', TEXT_PASSWORD_FORGOTTEN);
    $smarty->assign('SHOP_NAME', STORE_NAME);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $smarty->assign('FORM_ACTION', xtc_draw_form('sign', xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=first_opt_in', 'SSL')));
    // BOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field
    //$smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : '')));
    $smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : ''), '', 'text', false));
    // EOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field

    //$smarty->assign('INPUT_CODE', xtc_draw_input_field('vvcode', '', 'size="8" maxlength="6"', 'text', '', false));
    $smarty->assign('BUTTON_SEND', xtc_image_submit('button_send.gif', IMAGE_BUTTON_LOGIN));
    $smarty->assign('FORM_END', '</form>');
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_double_opt_in.html');
    break;

  case 'no_account' :
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    $smarty->assign('info_message', $info_message);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_messages.html');
    break;

  case 'double_opt' :
    //BOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES).'" alt="Captcha" />');
    //$smarty->assign('VVIMG', '<img src="'.xtc_href_link(FILENAME_DISPLAY_VVCODES, '', 'SSL').'" alt="Captcha" />');
    //EOF - Dokuman - 2009-08-13: fix not displaying Captcha on SSL(Proxy) connections
    $smarty->assign('text_heading', HEADING_PASSWORD_FORGOTTEN);
    //    $smarty->assign('info_message', $info_message);
    $smarty->assign('message', TEXT_PASSWORD_FORGOTTEN);
    $smarty->assign('SHOP_NAME', STORE_NAME);
    $smarty->assign('language', $_SESSION['language']);
    $smarty->caching = 0;
    $smarty->assign('FORM_ACTION', xtc_draw_form('sign', xtc_href_link(FILENAME_PASSWORD_DOUBLE_OPT, 'action=first_opt_in', 'SSL')));
    // BOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field
    //$smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : '')));
    $smarty->assign('INPUT_EMAIL', xtc_draw_input_field('email', xtc_db_input(isset($_POST['email']) ? $_POST['email'] : ''), '', 'text', false));
    // EOF - DokuMan - 2010-10-28 - added missing arguments for xtc_draw_input_field

    //$smarty->assign('INPUT_CODE', xtc_draw_input_field('vvcode', '', 'size="8" maxlength="6"', 'text', '', false));
    $smarty->assign('BUTTON_SEND', xtc_image_submit('button_continue.gif', IMAGE_BUTTON_LOGIN));
    $smarty->assign('FORM_END', '</form>');
    $main_content = $smarty->fetch(CURRENT_TEMPLATE.'/module/password_double_opt_in.html');
    break;
}

$smarty->assign('main_content', $main_content);
$smarty->caching = 0;
if (!defined('RM'))
  $smarty->load_filter('output', 'note');
$smarty->display(CURRENT_TEMPLATE.'/index.html');
include ('includes/application_bottom.php');
?>
 

Gruss
Hanspeter

[woeppel]

Hallo Hanspeter,

so funktioniert es wunderbar. Und das am Freitag 13.

Herzlichen Dank

[fishnet]

Gibt es eigentlich einen Grund, das es für alle Stellen einen Schalter gibt, um das Captcha abzuschalten, nur nicht für das Login?  Jetzt mal abgesehen von der Frage ob das Captcha immer funktioniert, ist es doch auch die Entscheidung des Händlers ob er das will?

[noRiddle (revilonetz)]

Ein Captcha ist doch dafür da Bots rauszuhalten. Was willst du da auf dem Login ? Ohne Passwort nix Bot.
Was verstehe ich nicht ?

Gruß,
noRiddle

[fishnet]

Ohne Captcha gibts auch weniger Kontaktformular Spam.
Trotzdem gibts einen Schalter um das abzuschalten. Freier Wille und so.

[noRiddle (revilonetz)]

"Ohne Captcha gibts auch weniger Kontaktformular Spam."  ???

Gruß,
noRiddle

[fishnet]

"Mit" natürlich 

[noRiddle (revilonetz)]

Okay, trotzdem verstehe ich deine Argumentation nicht.
Welcher Bot geht auf's Login-Formular ?
Meinst du wegen Sript-Kiddis die dämliche Brute-Force-Attacken fahren ?

Gruß,
noRiddle

[fishnet]

Meine Frage ist doch nur einfach:

- man kann überall im Shop die Captchas mit einem Klick abschalten.
- außer für den Login nicht
- warum ist das so?

Für das Kontaktformular zB wird den Händlern der freie Wille gelassen. Fürs Login nicht. Capito?

[noRiddle (revilonetz)]

No, non capisco.
Das klingt als gäbe es im Login ein Captcha und du fragst dich warum man es nicht im Backend deaktivieren kann.
Im Login sehe ich kein Captcha und auf den Gedanken dort eines zu verwenden, dann natülich an- und ausschaltbar, habe  ich meine Fragen.

Gruß,
noRiddle

[Timm]

Es geht sicher um das captcha, wenn du dich mit falschen Werten versucht hast einzuloggen.

Gruß Timm

[noRiddle (revilonetz)]

Ahhh, jetz ja. Schwere Geburt, :ächz:

Gruß,
noRiddle

[fishnet]

Danke Timm 

[peter111]

Hat denn jemand eine Lösung wie man das Captche "schmerzfrei" aus dem  2.0.5.0 rev 12487 entfernt ?
Wir haben leider auch immer wieder verzweifelnde Kunden.
Gruß Peter