How To Create A Forgotten Password System In PHP | Password Recovery By Email In PHP | PHP Tutorial

After some time trying to work out what the issue was. If you are using recaptcha then in your naming convention, use underscroes and not hyphens in your filenames as the hyphen seems to mess with the feedback.

Great tutorial, thanks for your work

I like your teachings very much and i learned very much from you. But the login system and the forget password system has very dangerous mistakes. Your code is unsecure !!!!! I will again say, that i like your style how to teach very much....

I know this is old and before I learned MySQL, but text doesn't seem like the appropriate data type.

Hi, not sure if someone will read this, but I didn't quite catch, where to put the $currentDate, in reset-password.inc.php, which he mentioned we should add because he forgot it.

Dani, after I completed all the steps and tested out, I got an error message saying undefined variable $sql ---> if (!mysqli_stmt_prepare($stmt, $spl)).

❤❤

nice video thanks! what is the IDE you using on this video?

I 'actually' went through this twice, thoroughly. The first time as show, then I learned the OOP login system, then I went through this again and put it into the OOP paradigm. I did take some time from step to step to make sure I had it right, but it really wasn't too hard either. Thank you, it gave the codeholic in me a🙂 good fix and a good step forward.

Oldie but Goldie

Thanks Dani

Well it works, but then i can not login, with a wrong password message!! Then I can not login with the old one either!

The only challenge am facing is that the link for the password reset can only be send to Webmail server the reset password link can't be send to a Gmail and mostly people use Gmail so that was the challenge.

I love your tutorial and I have been following for long time. Thanks may Almighty God bless you. Like right now am in school and those things you are saying is same thing so I found it simple.

Meaning if you can do this in MVC method?

Hey Dani i just wanted to say that i'm learning so much things from your videos, thanks for this awesome content!

I'm getting the "There was an error !" and it's due to the " if (!$row = mysqli_fetch_assoc($result)) {" anyone knows how to fix that ?

Hi Dani nice tutorial by the way. I keep getting a there is an error message after click the button click to receive password by mail. Any possible fix or solution or something I missed. Thanks

I took your code and I turned it in to oop with pdo it works actually but there is one thing you didn't mention, which is how to now the if the date has expired. could you explain that, please?

Please can u do more tutorials like this it's really helpful , like e-store

THank you so so much I learnt alot of things Clean Code THANK AGAIN ! Teacher

This was great, would it be able to do this is OOP?

It's getting "there was an error" After clicking receive new password by email button
What should I do

Hi, is the mail function going to work directly or i need to do something more to work. I get success message but no email was sent

i got this error could you help please ?
Fatal error: Uncaught ArgumentCountError: The number of elements in the type definition string must match the number
of bind variables in C:\xampp\htdocs\projet3\resetpass2.php:24 Stack trace: #0 C:\xampp\htdocs\projet3\resetpass2.php(24):
mysqli_stmt_bind_param(Object(mysqli_stmt), 's', '1677805010', '8f7fcc133bde7a7...')
#1 {main} thrown in C:\xampp\htdocs\projet3\resetpass2.php on line 24

this is line 24
mysqli_stmt_bind_param($stmt, "s" ,$selector,$currentdate);
mysqli_stmt_execute($stmt);
$result= mysqli_stmt_get_result($stmt);

Hi Dani. Thanks for the great Tutorials. Just a few questions. When you check for errors in an IF first and stop executing when an error happen, why do you continue with an ELSE? It is not really necessary. Also why do you not use SWITCH-CASE instead of many IF-ELSE following each other?

can i use this for oop php? i mean pdo instead of mysqli?

😱🥺 whys my comment been deleted 😶😭 only asking for a bit more help :(

Thanks for a wonderful tutorial once again Dani. I do have a couple of questions though ? 1. If you have a users table, why not just use that and the users email as a selector - rather than create a seperate table and generate a new selector - which is tied to the users email address anyway ? 2. Why the crypto-secure hashed token ? At the end of the day, the only person that gets to use this in order to reset the password is the person who has access to the email account. So if the email account is comprimised - the user has big problems anyway ?

This tutorial worked fine when I finally found out how to set up an email server using phpmailer and how to merge the codes from it properly into the script from your video :D

However, I needed to do one change: to replace your $newPwdHash variable with the original $password variable in the "mysqli_stmt_bind_param($stmt, "ss", $password, $tokenEmail);"-section (from reset-password.inc.php). Otherwise I would have to type in the hashed password stored in the database instead of the given password from user to log in. Any quickfixes for that? 🙂

Anyways, nice video and when replacing hashed with original pwd-variable it worked afterall and a thumbs up from me :D

Very very useful Dani. Thank. I hope to impliment this on my site(s) soon. I still need a profile page yet.

I dont know if this works anymore, but I keep getting stuck on the error happening at line 33 in reset-password.inc.php. Your 33rd line...

If you could help me I'd very much appriciate that!

A great tutorial, well explained. The code I've patterned after yours fails at the point of fetching the row from the result object, and I've spent two days trying to figure out why. My error trapping shows everything is good up to the creation of the result object, but no row can be fetched. Since the table only has one row, and the result object instantiates without error, why can't I pull the row out of it? I've tried various mysqli_fetch alternatives. They all fail. I've researched the crap out this and nothing. Sure could use some help if you have any suggestions.

How cool is this tutorial. Paid stuff for free!!! Thank you Dani.

I must thank you for your generosity. I've been following your tutorials and like very much your method. Keep on that track!

wait wait wait wait, 1800 seconds != 1 hour hehe its == 30 Minutes :)
but nevertheless he is actually the best programming teacher i know on here
thanks to you buddy, you make coding as easy as possible :)
love watching ur videos <3

Mine keeps saying no token

You need to write a book.

who got all the codes? help me pls
......... for my project

Thanks for the great tutorial as usual, one question do you have a tutorial on creating php shopping cart using MVC model?

make tutorial how to buy host, domain how to set those two up. How to use best email service to send pwd reset.

source code please

Hello Dani and others. Could you please help me why my reset-password.php send me back to my index page when I submit the "send me new password" form? Something doesn't work, but I can't figure out whats the problem... :(

This is the best tutorial! Very helpful!

Thank you sir for your tutorials, can your please create a tutorial where users communicate with each other via inbox chat sql and php??

What should I replace o it can work with the PHPMailer?

Hi, i'm getting error Warning: hex2bin(): Input string must be hexadecimal string in Line 40
$tokenBin = hex2bin($validator); What could be the issue

An awesome video this is, and it is well explained.
however i did notice that so many people faced the challenge of "Please re-submit your reset request"; after inputting the new password and still no one has shared how they were able to overcome this.
It appears that no rows are being fetched from the database.
Could someone please help with this, so stuck 😅
This is what my code looks like to this point

else {
mysqli_stmt_bind_param($stmt, "ss", $selector, $currentDate);
mysqli_stmt_execute($stmt);

$result = mysqli_stmt_get_result($stmt);
if (!$row = mysqli_fetch_assoc($result)) {
echo "Please re-submit your reset request";

exit();
}

Looking forward to a good samaritans help please...