$stmt = $conn->prepare("SELECT count(1) as count from usermaster where emailid=:email and dateofbirth=:DOB and `isDeleted`!=1 "); $stmt->bindParam(':email', $params->userName, PDO::PARAM_STR); $stmt->bindParam(':DOB', $dob, PDO::PARAM_STR); if ($stmt->execute()) { $result = $stmt->fetch(PDO::FETCH_ASSOC); $count = $result['count']; if ($count != 0) { $password = mt_rand(1000000, 9999999); $hash = sha1($password); $stmt = $conn->prepare("UPDATE logindetails SET password=:password where userName=:email"); $stmt->bindParam(':email', $params->userName, PDO::PARAM_STR); $stmt->bindParam(':password', $hash, PDO::PARAM_STR); if (!$stmt->execute()) { echo AppUtil::getReturnStatus("unsuccessful", "Resetting password failed"); } else { AppUtil::sendForgotPasswordMail($params->userName, $password); echo AppUtil::getReturnStatus("successful", $password); } } else { echo AppUtil::getReturnStatus("NotAvailable", "Username or date of birth not valid "); } } else { echo AppUtil::getReturnStatus("Unsuccessful", "Some Error Occured "); } /*$stmt = $conn->prepare("SELECT * FROM `logindetails` WHERE `userName`=:username AND `password`=:password"); $stmt->bindParam(':username', $params->username, PDO::PARAM_STR); $pass=sha1($params->password); //echo $pass; $stmt->bindParam(':password',$pass , PDO::PARAM_STR);