Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

› WebAssist Forums › Data Bridge › SecurityAssist › Forgot password page emails encrypted password.

Forgot password page emails encrypted password.

Thread began 4/12/2010 6:30 pm by dan361748 | Last modified 4/27/2010 12:41 pm by dan361748 | 3038 views | 7 replies

4/26/2010 3:18 pmEric Mittman

You are correct in your understanding of the new password, it is generated the stored in the db. The user gets the original unencrypted value sent to them in the email.

So when you are adding the user you can have the password that was entered stored in a session variable, then when the user is inserted you would send out the email to the user with their details. For the password you would use the unencrypted version held in the session variable.

In order for the user to change their password they would either need to be logged in already, or go to a forgot password page that will generate a new random password and email it to the user.

If you store the passwords in an encrypted format you will not have the ability to email the password to the user, you would need a forgot password page that resets the user's password to a random value and emails them with that.

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now. Build a store, a gallery, or a web-based email solution.