<?php 
include 'core/database/connect.php';
//$connect_error = 'Sorry, we\'re experiencing connection problem.  Please try again later...  Thank you!';
//mysql_connect('localhost','root','aee1024') or die ($connect_error);
//mysql_select_db('db_vts') or die($connect_error);
 
$toDate = date_create() ->format("Y/m/d");
 
	 
	//if submit/ save to database	
	if(isset($_POST['done'])){
		$passA = mysql_real_escape_string($_POST['passA']);
		$passB = mysql_real_escape_string($_POST['passB']);
		$RecordID = mysql_real_escape_string($_POST['RecordID']);
		 $encPassA = md5($passA);
		 $encPassB = md5($passB);
		 mysql_query("UPDATE `vts_users` SET `u_password`='$encPassA', `u_password2`='$encPassB' WHERE `u_id`='$RecordID'");
		 mysql_query("UPDATE `password_recovery` SET `status`='processed request' WHERE `record_id`='$RecordID'");
		 //mysql_query("DELETE FROM `password_recovery` WHERE `record_id`='$RecordID'");
		echo "Your password has been changed.";
		exit();
	}
?>