#41 ✓resolved
Matias Korhonen

Add option to reset password

Reported by Matias Korhonen | February 14th, 2009 @ 03:15 PM | in 0.2 (Alpha 2)

It should be possible for the user to reset their password if they have forgotten it. As we only store hashes of the passwords, not the passwords themselves, we cannot send an actual password reminder.

The Procedure

  1. User requests a new password
  2. A random password is generated
  3. That password is sent to the email address the user has in his/her profile
  4. The user is asked to change that random password the first time they login with it.

Comments and changes to this ticket

  • Joao Carlos

    Joao Carlos March 8th, 2009 @ 12:43 AM

    • Assigned user set to “Joao Carlos”
    • Milestone set to 0.2 (Alpha 2)

    Doesn't quite make sense that the user is given a one time only password.

    Options

    1. The user receives a link to a page where the user is prompted to enter a new password. The URL contains a unique hash to identify that specific password change.

    2. The user requests the password reset and is directed to a page where the one time password must be entered straight away. That password was sent to the user's email. After validating, a new password is asked from the user.

  • Joao Carlos

    Joao Carlos March 9th, 2009 @ 12:45 AM

    • State changed from “new” to “resolved”

    (from [1f0f3f254b52c2f217d4a7715d6920158cd8b484]) Implemented username request and password change features. [#41 state:resolved] http://github.com/jcxplorer/hhlc...

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

Ruby on Rails web application for the HAAGA-HELIA Linux Club.

People watching this ticket

Tags

Referenced by

Pages