ezpublish / documentation / ez publish / user manual / 5.x / password expiry / forgot password function

Caution: This documentation is for eZ Publish legacy, from version 3.x to 6.x.
For 5.x documentation covering Platform see eZ Documentation Center, for difference between legacy and Platform see 5.x Architecture overview.

Table of contents

Forgot Password Function

The "Forgot Password" Function

The view "forgotpassword" was added to the "userpaex" module to manage the forgot password function.

Forgot Password

This function has some differences from the eZ function:

The user must add his email address.
When a new hash key is generated, the user receives an email with a link to the form where he can submit his new password. This email also contains the expiration date time of the hash key (and the link). After the user clicks on the link and sets a new password, the hash key is removed from the "forgot password"-table.
The time the hash key remains valid is defined in the mbpaex.ini. The Forgot Password Hash Life Time value is set in seconds and has a default value of 86400 seconds (24 hours)
Only the last hash key generated is valid. For example, when a second hash key is requested without having used the previous one, the previous hash key is removed.

Written by:Ricardo Correia (18/01/2013 10:21 am)

Last updated by:Ricardo Correia (18/01/2013 2:18 pm)

Comments

There are no comments.