<?php
include '../inc/connect.php';

if(!isset($_POST['id'])){
    echo json_encode(array("status"=>"error","message"=>"ไม่พบข้อมูลผู้ใช้"));
    exit;
}

$id = intval($_POST['id']);
$newPassword = "1234567890";
$hashedPassword = md5($newPassword);

try {
    $stmt = $pdo->prepare("UPDATE users SET password=:password WHERE id=:id");
    $stmt->bindParam(":password",$hashedPassword);
    $stmt->bindParam(":id",$id,PDO::PARAM_INT);
    $stmt->execute();

    echo json_encode(array("status"=>"success","message"=>"รีเซทรหัสผ่านสำเร็จ รหัสผ่านใหม่: $newPassword"));
} catch(PDOException $e){
    echo json_encode(array("status"=>"error","message"=>"เกิดข้อผิดพลาด: ".$e->getMessage()));
}
?>