<?php
use PHPMailer\PHPMailer\PHPMailer;
use PHPMailer\PHPMailer\Exception;
session_start();
if(isset($_POST['password-reset-tokensqa']) && $_POST['email'])
{
include 'db_connect.php';
$email = $_POST['email'];
$password = 'password';
$result = mysqli_query($conn,"SELECT * FROM users WHERE email='" . $email . "'");
$row= mysqli_fetch_array($result);
if($row)
{
$result = mysqli_query($conn, "SELECT question, ans FROM users WHERE email = '" .$email." ' ");
$right_question = "";
$right_answer = "";
while ($row = mysqli_fetch_array($result)) {
if ($row["question"] == $_POST['question']) {
$right_question = $row["question"];
$right_answer = $row["ans"];
}
}
echo "db question: $right_question<br>";
echo "db ans: $right_answer<br>";
echo "<br><br>";
echo "user q "+$_POST['question'];
echo "user a "+ $_POST['ans'];
if ($right_answer == $_POST['ans']) {
// send email
}
}
$token = md5($email).rand(10,9999);
$expFormat = mktime(
date("H"), date("i"), date("s"), date("m") ,date("d")+1, date("Y")
);
$expDate = date("Y-m-d H:i:s",$expFormat);
$update = mysqli_query($conn,"UPDATE users set password ='" . md5($password) . "', reset_link_token='" . $token . "' ,exp_date='" . $expDate . "' WHERE email='" . $email . "'");
$link = "<a href='cms/reset-password.php?key=".$email."&token=".$token."'>Click to Reset password</a>";
require_once('fpwvendor/autoload.php');
$mail = new PHPMailer(true);
$mail->CharSet = "utf-8";
$mail->IsSMTP();
// enable SMTP authentication
$mail->SMTPAuth = true;
// GMAIL username
$mail->Username = "xx";
// GMAIL password
$mail->Password = "xxx";
$mail->SMTPSecure = "ssl";
// sets GMAIL as the SMTP server
$mail->Host = "smtp.gmail.com";
// set the SMTP port for the GMAIL server
$mail->Port = "465";
$mail->From='xx';
$mail->FromName='Luck-buy : Courier ';
$mail->AddAddress($email);
$mail->Subject = 'Reset Password';
$mail->IsHTML(true);
$mail->Body = 'Hello there '.$email.', <br><br><br><br> Click on the Link below to Reset Password <br><br><br> '.$link.'';
if($mail->Send())
{
$_SESSION['email']="We've sent you a reset password in your gmail account - ".$email."" ;
header( "refresh:1;url=forget-password_sq.php" );
}
else
{
echo "Mail Error - >".$mail->ErrorInfo;
}
}else{
$_SESSION['error']="Something went wrong! Please check your SQ and Answer Carefully. - ".$email." ";
// header( "refresh:1;url=forget-password_sq.php" );
}
}else{
$_SESSION['error']="Invalid Email Address Please check carefully ".$email."";
header( "refresh:1;url=forget-password_sq.php" );
}
}
?>