Your IP : 216.73.216.86

Current Path : /home/emeraadmin/www/4d695/
Upload File :
Current File : /home/emeraadmin/www/4d695/update_password.php.tar

home/emeraadmin/public_html/pages/update_password.php000064400000002072151676734040017132 0ustar00<?php
require_once '../Classes/Database.php';

if ($_SERVER['REQUEST_METHOD'] === 'POST') {
    $token = $_POST['token'];
    $newPassword = password_hash($_POST['new_password'], PASSWORD_DEFAULT);

    $db = new Database();

    // Check if token is valid and not expired
    $db->query('SELECT user_id FROM password_resets WHERE token = :token ');
    $db->bind(':token', $token);
    $resetRecord = $db->single();

    if ($resetRecord) {
        $userId = $resetRecord->user_id;

        // Update the user's password
        $db->query('UPDATE users SET password = :password WHERE id = :id');
        $db->bind(':password', $newPassword);
        $db->bind(':id', $userId);
        $db->execute();

        // Delete the reset token so it can't be used again
        $db->query('DELETE FROM password_resets WHERE token = :token');
        $db->bind(':token', $token);
        $db->execute();

        echo "Password updated successfully";
    } else {
        echo "Invalid or expired token";
    }
} else {
    echo "Invalid request";
}
?>