Untitled

<form data-abide="ajax" id="frmpwd" name="frmpwd">
<fieldset>

<h4 class="subheader">forgot password</h4>

<div class="row">
<div class="large-12 columns">
<label>Username
<div class="row collapse">
<div class="small-3 large-1 columns">
<span class="prefix"><i class="fa fa-user   "></i></span>
</div>

<div class="small-9 large-11 columns">
<div class="referer-fields">
<div class="username-field">
<input type="text" id="username" name="username" placeholder="Username" required>
<small class="error">Username is required </small>
</div>
</div>
</div>

</div>
</label>
</div>
</div>

<div class="row">
<div class="large-12 columns">
<label>Mobile
<div class="row collapse">
<div class="small-3 large-1 columns">
<span class="prefix">
<span data-tooltip aria-haspopup="true" data-options="disable_for_touch:true" class="has-tip expand" title="your Mobile phone number with country-code i.e 60xxxxxxxxxx">
<i class="fa fa-mobile"></i>
</span>
</span>
</div>
<div class="small-9 large-11 columns">
<div class="mobile-fields">

<input type="text" id="mobile" name="mobile" pattern="number" required placeholder="Mobile Number with country-code i.e 60xxxxxxxxxx" data-abide-validator="valide_mobile" />
<small class="error">Please enter your mobile phone number</small>
<small class="backup" style="display:none"></small>
</label>
</div>
</div>
</div>
</label>
</div>
</div>


<div class="row">
<div class="large-3 columns">
<input type="submit" class="button small radius" id="buttrequestpwd" name="buttrequestpwd" value="Request Password">
</div>
<div class="large-9 columns">
<div id="loginprosect"></div>
</div>
</div>

</fieldset>
</form>
<script type="text/javascript">
$(document).foundation('abide', 'reflow');
$('#frmpwd').on('valid.fndtn.abide', function() {

        //checkrefid
        var homer=homeurl();
        var refurl=homer+'poster.php?sect=chkmbl';

        var uname=$("#username").val();
        var mobile=$("#mobile").val();

        $("#buttrequestpwd").attr('disabled','disabled');
        $("#loginprosect").prepend('<i class="fa fa-spin fa-spinner"></i>');
        $.post(refurl,{uname:uname, mobile:mobile}, function(data){
            $("#loginprosect").html(data);
            if(data==1){
                var proslink=homer+'poster.php?sect=reqpwd';
                $.post(proslink, {uname:uname, mobile:mobile}, function(data){
                    if(data==1){
                        //$("#loginprosect").html(data);
                        $("#loginprosect").html('<span class="alert-box success"><i class="fa fa-check-circle"></i> We have SMS your password.');
                    }else{
                        $("#loginprosect").html('<span class="alert-box warning"><i class="fa fa-warning"></i> We will SMS your login password after PH is complete');
                    }
                });
            }else{
                $("#loginprosect").html('<span class="alert-box warning"><i class="fa fa-warning"></i>Invalid Mobile or Username');
            }
        });

    });


</script>

//=========================================//

if($_GET['sect']=='reqpwd'){

    $uname=$_POST['uname'];
    $mobile=$_POST['mobile'];

    $qgetuid=sqlquery("select id, password from user where username=?");
    $qgetuid->bindValue(1, $uname);
    $qgetuid->execute();
    $uids = $qgetuid->fetch(PDO::FETCH_ASSOC);
    $currpwd=$uids['password'];
    $newuid=$uids['id'];
    if($currpwd!=''){
    //create password and pin
    $newpwd=random_str(8);
    $shapwd=sha1($newpwd);
    $quppwd=sqlquery("update user set password=? where id=?");
    $quppwd->bindValue(1, $shapwd);
    $quppwd->bindValue(2, $newuid);
    $quppwd->execute();

    //recover pwd
    $qhasher=sqlquery("insert into klhash (uid, hasher) values (?,?)");
    $qhasher->bindValue(1, $newuid);
    $qhasher->bindValue(2, $newpwd);
    $qhasher->execute();

    require 'sms_send.php';

    $mesej="Your CaknaCommunity login info\nUsername : $uname\nPassword : $newpwd";
    sendsms($newuid, $mesej);

    echo 1;
    }else{
        echo 0;
    }

}