neoPhpUserChangePassword
Quote from Phil78 on December 20, 2021, 1:17 pmHi All, when I use neoPhpUserChangePassword, I need to give the old password. If the user does not remember the old one how can we change the password ?
I have tried loading the old crypted pwd or clearing first the old paswword but it does not work.
Hi All, when I use neoPhpUserChangePassword, I need to give the old password. If the user does not remember the old one how can we change the password ?
I have tried loading the old crypted pwd or clearing first the old paswword but it does not work.
Quote from luishp on December 20, 2021, 2:07 pm@phil78 neoPhp does not include a function to change the password without knowing the previous one for security reasons.
You will need to code it yourself. Usually, when the user needs to set a new password, he must provide an email and a temporal link is sent to that address. The link includes a limited time token as a parameter. It allows the user to change his password. Once the password is changed or 10 minutes later, the token is deleted. As you can see, it involves some work because it must be safe. Otherwise anyone would be able to change any password.Regards.
@phil78 neoPhp does not include a function to change the password without knowing the previous one for security reasons.
You will need to code it yourself. Usually, when the user needs to set a new password, he must provide an email and a temporal link is sent to that address. The link includes a limited time token as a parameter. It allows the user to change his password. Once the password is changed or 10 minutes later, the token is deleted. As you can see, it involves some work because it must be safe. Otherwise anyone would be able to change any password.
Regards.