Jump to content

Password recovery form


Guest Dan T

Recommended Posts

Posted

I'd like to suggest a slight reworking of the "forgot your password" system. It seems like it resets the password right away (or disables it) when a person types in a username. This kind of sucks in the sense that someone went through my entire admin staff and reset their passwords. The e-mail says you can ignore it, but nobody could log into the Admin CP after they got that e-mail, so they couldn't really ignore it. I don't know if is a bug or it's intentional, so I filed it under a "feature suggestion", but shouldn't the password stay the same until AFTER the user clicks the link?

Posted

Your issue sounds more like you were hit with this:



http://forums.invisionpower.com/index.php?showtopic=229129

You can't just indiscriminantly go in and change other peoples' passwords the way IPB is intended the password recovery feature to work, but you could achieve this if you have the settings described in this topic set to an unsafe level.


Hm, well I thought it might have been IPB setting something when the form was filled out, especially since nothing actually happened to the forum aside from us getting e-mails. I corrected those settings, though. If this isn't the case, then sorry for the waste of time.
Posted

No, I believe in 2.2 it changes your password to a randomly generated number - or did I dream that?




There is a option (ACP) that lets you choose 'random passowrd' or the regular [from the 2.1.x series)

Archived

This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...