close ad
 
Important WebAssist Announcement
open ad
View Menu

Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

forgot password sending encyprted password by email

Thread began 1/26/2014 11:35 am by sysop349733 | Last modified 1/27/2014 9:45 am by sysop349733 | 1583 views | 3 replies

sysop349733

forgot password sending encyprted password by email

Hello,

I use the Security Assist wizard to create security pages. I chose crypt() as the encryption method.

Pages seem to be created properly including forgotpassword.php in the root directory and forgotpassword_email.php in the webassist/securityassist/email directory.

When I click on the "forgot password?" link on the login.php page, it sends an email like this:

----------------------
Password Information

Your username and password were requested from our website. They have been recovered and are listed below:

Username: user@domainname.com
Password: 53bqlujVVhk4A
------------------------------------------

The problem is, that is the encrypted password which, of course, the user cannot use to login, not that I would want that anyway, as I assume that the solution for forgetting an encrypted password would not be for the user to receive it by email, but to get a link to a page where he may reset it.

What do I have wrong that is causing the encrypted password to be sent and how can I have the user reset his password instead?

"webassist/security_assist/email/forgotpassword_email5.php"

1. Where do I configure this URL to include the domain, assuming this is indeed the proper destination for the user to receive in the email?

Appending that path to my domain name, I get a page that says this, in its entirety:
-----------------------------
Password Information

Your username and password were requested from our website. You will be required to re-set your password to gain access to the site. Please use the following link to access your password update. You may also copy and paste the following URL into your browser:

URL: [*return_url*]

----------------------------

Obviously, some configuration parameter is missing. I assumed that including the "forgotpassword.php" page in the SecurityAssist create pages wizard would have made this functional.

2. Am I neglecting something when using the wizard that keeps these pages from being properly configured or are there additional steps I need to take after using the wizard to properly configure these pages?

I consulted the online documentation, but found it unclear.

Thanks for any guidance.

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now.  Build a store, a gallery, or a web-based email solution.

Want your website pre-built and hosted?

Close Windowclose

Rate your experience or provide feedback on this page

Account or customer service questions?
Please user our contact form.

Need technical support?
Please visit support to ask a question

Content

rating

Layout

rating

Ease of use

rating

security code refresh image

We do not respond to comments submitted from this page directly, but we do read and analyze any feedback and will use it to help make your experience better in the future.

Close Windowclose

We were unable to retrieve the attached file

Close Windowclose

Attach and remove files

add attachmentAdd attachment
Close Windowclose

Enter the URL you would like to link to in your post

Close Windowclose

This is how you use right click RTF editing

Enable right click RTF editing option allows you to add html markup into your tutorial such as images, bulleted lists, files and more...

-- click to close --

Uploading file...