update

2019-07-01 19:50:09 +08:00 · 2019-07-01 19:50:09 +08:00 · 73061adf62
commit 73061adf62
parent 421d79cc5c
2 changed files with 21 additions and 12 deletions
--- a/clientarea/controllers/forget_password.php
+++ b/clientarea/controllers/forget_password.php
@ -32,20 +32,29 @@ if (isset($_POST["reset_request"])) {
        setMsg("errors", $errors);
        redirect("clientarea", "forget_password");
    } else {
-        $code = md5(crypt(rand(), "aa"));
-        $stmt = $objDB->prepare(
-            "UPDATE users SET is_active = 0, reset_code=? WHERE email=?"
-        );
-        $stmt->bind_param("ss", $code, $email);
-        if ($stmt->execute()) {
+        $reset_code = md5(crypt(rand(), "aa"));
+        $data = [
+            "is_active" => 0,
+            "reset_code" => $reset_code,
+        ];
+        $res = $dbpdo->update("users", $data, "`email` = '$email'");
+        if ($res) {
+            $data = ["email" => $email];
            setMsg("msg_notify", "You made a password request, please check email to reset your password.", "success");
-            $message = "Hi! You requested password reset, . You need to click here to <a href='" . setURL('clientarea', 'reset_password') . "&reset_code=$code'>reset your password.</a>";
-            echo $message;
-            send_mail([
+            $message = "Hi! You requested password reset, . You need to click <a href='" . setURL('clientarea', 'reset_password', ['reset_code' => $reset_code]) . "'>here</a> to reset your password.";
+            $msg_email = [
                "to" => $email,
                "message" => $message,
                "subject" => "Reset Password Requested"
-            ]);
+            ];
+            if (send_mail($msg_email)) {
+                $dbpdo->add("emails", [
+                    "date" => time(),
+                    "subject" => "Reset Password Requested",
+                    "body" => $message,
+                    "user_id" => 1,
+                ]);
+            };
        } else {
            setMsg("msg_notify", "reset password request, Please try again later.", "warning");
        }
--- a/data/demo.sql
+++ b/data/demo.sql
@ -26,9 +26,9 @@ CREATE TABLE IF NOT EXISTS `emails`(
    `id` INT(11) NOT NULL AUTO_INCREMENT,
    `date` VARCHAR(255) NOT NULL,
    `subject` VARCHAR(255) NOT NULL,
-    `body` VARCHAR(255) NOT NULL,
+    `body` VARCHAR(5000) NOT NULL,
    `user_id` INT(11) NOT NULL,
-    `is_active` TINYINT(4) NOT NULL,
+    `read` TINYINT(1) NOT NULL DEFAULT '0',
    PRIMARY KEY(`id`)
 ) ENGINE = MyISAM DEFAULT CHARSET = utf8 AUTO_INCREMENT = 100;