-
Notifications
You must be signed in to change notification settings - Fork 0
/
cust_forgetpassotpverify.php
106 lines (76 loc) · 2.54 KB
/
cust_forgetpassotpverify.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
<?php
session_start();
if($_SESSION['forgetpass_otp'] == FALSE){
header("location:customer_login.php");
}
?>
<html>
<head><title>OTP Verification</title>
<link rel="stylesheet" type="text/css" href="css/cust_forgetpassotpverify.css">
</head>
<body>
<?php include 'header.php' ; ?>
<div class="cust_forgetpassotpverify">
<form method="post">
<input type="text" name="otpcode" placeholder="OTP Code">
<input type="submit" name="verify-btn" value="Verify">
</form>
</div>
<?php include 'footer.php' ; ?>
</body>
</html>
<?php
//$_SESSION['forgetpass_otp'] = 'SBI20060'; //Demo OTP! Please Change;
echo $_SESSION['forgetpass_otp'];
if(isset($_POST['verify-btn'])){
if(empty($_POST['otpcode'])){
echo '<script>alert("OTP is required")</script>';
}
else{
if($_POST['otpcode'] == $_SESSION['forgetpass_otp'] ){
include 'db_connect.php';
$cust_id = $_SESSION['cust_id'];
$sql = "SELECT Password,Username,Mobile_no FROM bank_customers WHERE Customer_ID = $cust_id ";
$result = $conn->query($sql);
if($result->num_rows < 0){
echo "Failed : ".$sql;
}
else {
$row = $result->fetch_assoc();
$pass = $row['Password'];
$mob = $row['Mobile_no'];
$cust_name = $row['Username'];
$hidden_mob_no = substr($mob, 0, 3)."XXXX".substr($mob, 7, 10);
//--------------------------------------------------------------------------------
// Send customer's password to his or her registered mobile number
//SMS integration code ------------------------------------
require('textlocal.class.php');
$apikey = 'Mzie479SxfY-Z7slYf9AI3zVXCAu0G5skUBQVYOfRU';
$textlocal = new Textlocal(false,false,$apikey);
$numbers = array($mob);
$sender = 'TXTLCL';
$message = 'Hello '.$cust_name.' your internet banking account password is : '.$pass'';
try {
$result = $textlocal->sendSms($numbers, $message, $sender);
print_r($result);
} catch (Exception $e) {
die('Error: ' . $e->getMessage());
}
//------------------------------------------------------
//---------------------------------------------------------------------------------
unset($_SESSION['cust_id']);
unset($_SESSION['forgetpass_otp']);
/*echo '<script>alert("Your SBI Internet banking password is : '.$pass.'")
location="customer_login.php"</script>';*/
echo '<script>alert("Password sent successfully to your registered mobile number '.$hidden_mob_no.' \nPlease do not share with anyone")
location="customer_login.php";
</script>';
}
}
else
{
echo '<script>alert("Incorrect OTP")</script>';
}
}
}
?>