Add option to disable password recovery

Author: Jamie Snape

core/configs/application.ini

@@ -21,6 +21,8 @@ dynamichelp = "1"
 password.prefix =
 ; outbound HTTP proxy to be used by PHP (empty for none)
 httpproxy =
+; allow password reset
+allow_password_reset = "1"
 ; require secure cookies
 cookie_secure = "0"
 ; show debug toolbar

core/controllers/AdminController.php

@@ -81,6 +81,9 @@ public function indexAction()
         $formArray['name']->setValue($config->global->application->name);
         $formArray['timezone']->setValue($config->global->default->timezone);
 
+        if (isset($config->global->allow_password_reset)) {
+            $formArray['allow_password_reset']->setValue($config->global->allow_password_reset);
+        }
         if (isset($config->global->closeregistration)) {
             $formArray['closeregistration']->setValue($config->global->closeregistration);
         }
@@ -116,10 +119,11 @@ public function indexAction()
                 $config->global->application->lang = $this->getParam('lang');
                 $config->global->default->timezone = $this->getParam('timezone');
                 $config->global->defaultlicense = $this->getParam('licenseSelect');
-                $config->global->dynamichelp = $this->getParam('dynamichelp');
+                $config->global->allow_password_reset = $this->getParam('allow_password_reset');
                 $config->global->closeregistration = $this->getParam('closeregistration');
-                $config->global->httpproxy = $this->getParam('httpProxy');
+                $config->global->dynamichelp = $this->getParam('dynamichelp');
                 $config->global->gravatar = $this->getParam('gravatar');
+                $config->global->httpproxy = $this->getParam('httpProxy');
 
                 $writer = new Zend_Config_Writer_Ini();
                 $writer->setConfig($config);

core/controllers/UserController.php

@@ -86,6 +86,11 @@ public function recoverpasswordAction()
         if ($this->logged) {
             throw new Zend_Exception('Shouldn\'t be logged in');
         }
+
+        if ((int) Zend_Registry::get('configGlobal')->get('allow_password_reset', 0) === 0) {
+            throw new Zend_Exception('Password reset is disabled');
+        }
+
         $this->disableLayout();
         $email = $this->getParam('email');
         if (isset($email)) {
@@ -643,6 +648,9 @@ public function loginAction()
                 echo JsonComponent::encode(array('status' => false, 'message' => 'Invalid email or password'));
             }
         }
+
+        $this->view->allowPasswordReset = (int) Zend_Registry::get('configGlobal')->get('allow_password_reset', 0) === 1;
+        $this->view->closeRegistration = (int) Zend_Registry::get('configGlobal')->get('closeregistration', 0) === 1;
     }
 
     /** Term of service */

core/controllers/forms/AdminForm.php

@@ -54,6 +54,7 @@ public function createConfigForm()
 
         $dynamichelp = new Zend_Form_Element_Checkbox('dynamichelp');
         $gravatar = new Zend_Form_Element_Checkbox('gravatar');
+        $allowPasswordReset = new Zend_Form_Element_Checkbox('allow_password_reset');
         $closeRegistration = new Zend_Form_Element_Checkbox('closeregistration');
 
         $httpProxy = new Zend_Form_Element_Text('httpProxy');
@@ -69,6 +70,7 @@ public function createConfigForm()
                 $gravatar,
                 $lang,
                 $name,
+                $allowPasswordReset,
                 $closeRegistration,
                 $submit,
                 $httpProxy,

core/public/js/user/user.login.js

@@ -49,10 +49,12 @@ $(document).ready(function () {
     });
 
     // Deal with password recovery
-    $('a#forgotPasswordLink').click(function () {
-        midas.loadDialog("forgotpassword", "/user/recoverpassword");
-        midas.showDialog("Recover Password");
-    });
+    if ($('a#forgotPasswordLink').length) {
+        $('a#forgotPasswordLink').click(function () {
+            midas.loadDialog("forgotpassword", "/user/recoverpassword");
+            midas.showDialog("Recover Password");
+        });
+    }
 
     $("a.registerLink").unbind('click').click(function () {
         midas.showOrHideDynamicBar('register');

core/views/admin/index.phtml

@@ -83,6 +83,10 @@ $this->headScript()->appendFile($this->coreWebroot.'/public/js/jquery/jquery.clu
                 <label for='dynamichelp'>Dynamic help</label>
                 {$this->configForm['dynamichelp']}
               </div>
+              <div qtip='If you enable this feature, password reset will not be allowed.' class='allowPasswordReset'>
+                <label for='allow_password_reset'>Allow password reset</label>
+                {$this->configForm['allow_password_reset']}
+              </div>
               <div qtip='If you enable this feature, user registration will not be allowed.' class='closeRegistration'>
                 <label for='closeregistration'>Close registration</label>
                 {$this->configForm['closeregistration']}

core/views/user/login.phtml

@@ -30,8 +30,14 @@ echo '<script type="text/javascript" src="'.$this->coreWebroot.'/public/js/user/
             <td><label for="email"><?php echo $this->t('Email') ?></label></td>
             <td>
                 <label for="password"><?php echo $this->t('Password') ?></label>
-                <a id='forgotPasswordLink' style='text-decoration: underline;font-size: 10px;'
-                   href="#"><?php echo $this->t('Forgot your password') ?>?</a>
+                <?php
+                if ($this->allowPasswordReset) {
+                    ?>
+                    <a id='forgotPasswordLink' style='text-decoration: underline;font-size: 10px;'
+                       href="#"><?php echo $this->t('Forgot your password'); ?>?</a>
+                <?php
+                }
+                ?>
             </td>
             <td></td>
         </tr>
@@ -46,16 +52,14 @@ echo '<script type="text/javascript" src="'.$this->coreWebroot.'/public/js/user/
         </tr>
         <tr>
             <td>
-                <?php if (!isset(Zend_Registry::get('configGlobal')->closeregistration) || Zend_Registry::get(
-                    'configGlobal'
-                )->closeregistration == "0") {
-                echo $this->t("Not registered yet?"); ?>
-                <a class="registerLink" style='text-decoration: underline;'><?php echo $this->t("Register here") ?></a>
+                <?php
+                if (!$this->closeRegistration) {
+                    echo $this->t("Not registered yet?"); ?>
+                    <a class="registerLink" style='text-decoration: underline;'><?php echo $this->t("Register here"); ?></a>
+                <?php
+                }
+                ?>
             </td>
-            <?php
-            } else {
-                echo '</td>';
-            } ?>
             <td><?php echo $this->form['remerberMe'] ?>
                 <label id="rememberMeText" for="remerberMe"><?php echo $this->t("Remember Me") ?></label></td>
             <td></td>