Opened 4 weeks ago

#379 new Enhancement

Interface and Code to allow user to reset password

Reported by: GarthBraithwaite_STG Owned by:
Priority: Unknown Milestone:
Component: View-App Version: 3.0
Severity: Moderate Effort Keywords:
Cc:

Description

Spring security has mechanisms to encode passwords. The problem is that these are 1 way. As such we need a way to allow self registered users the ability make a reset request.

My initial take is to 1) make the request. 2) server checks their email and sends an email to them with a link that includes their unique verification code or even their encoded password along with a generated temp password. They would click the link which sends that info back where the code checks it to match. If it matches they are presented a page that allows them to enter a new password. When they submit it back the code then encodes their new password updates their XML.

Change History (0)

Note: See TracTickets for help on using tickets.