close ad
Important WebAssist Announcement
open ad
View Menu

Technical Support Forums

Free, outstanding support from WebAssist and your colleagues


forgot password sending encyprted password by email

Thread began 1/26/2014 11:35 am by sysop349733 | Last modified 1/27/2014 9:45 am by Jason Byrnes | 1636 views | 3 replies |


forgot password sending encyprted password by email


I use the Security Assist wizard to create security pages. I chose crypt() as the encryption method.

Pages seem to be created properly including forgotpassword.php in the root directory and forgotpassword_email.php in the webassist/securityassist/email directory.

When I click on the "forgot password?" link on the login.php page, it sends an email like this:

Password Information

Your username and password were requested from our website. They have been recovered and are listed below:

Password: 53bqlujVVhk4A

The problem is, that is the encrypted password which, of course, the user cannot use to login, not that I would want that anyway, as I assume that the solution for forgetting an encrypted password would not be for the user to receive it by email, but to get a link to a page where he may reset it.

What do I have wrong that is causing the encrypted password to be sent and how can I have the user reset his password instead?


1. Where do I configure this URL to include the domain, assuming this is indeed the proper destination for the user to receive in the email?

Appending that path to my domain name, I get a page that says this, in its entirety:
Password Information

Your username and password were requested from our website. You will be required to re-set your password to gain access to the site. Please use the following link to access your password update. You may also copy and paste the following URL into your browser:

URL: [*return_url*]


Obviously, some configuration parameter is missing. I assumed that including the "forgotpassword.php" page in the SecurityAssist create pages wizard would have made this functional.

2. Am I neglecting something when using the wizard that keeps these pages from being properly configured or are there additional steps I need to take after using the wizard to properly configure these pages?

I consulted the online documentation, but found it unclear.

Thanks for any guidance.

Sign in to reply to this post

Jason ByrnesWebAssist

when using encryption of the password column in the wizard, the pages created should not send the password in the email, it should send a link to a page to reset the password.

Please provide a Skype username or a US phone number and a good time to contact you when you will be in front of your computer and we will have an engineer contact you to resolve this issue over the phone.

We are available Monday - Friday from 9am - 4pm EST (except major U.S. holidays).

Sign in to reply to this post



Thanks for the offer, Jason, but I've figured out the problem and the fix which I will describe should anybody else refer to this thread with the same problem.

Using the wizard multiple times to create security pages will result in subsequent files being named with a numerical suffix (register.php, register2.php and so on). While I had been deleting the previous files prior using the wizard again to avoid the numerical suffix, I was missing the fact that a new forgotpassword_email.php file was being added to the webassist directory (webassist/securityassist/emai/) each time I used the wizard, so I ending up having five forgotpassword_email.php files, each with an incremented numerical suffix.

Deleting those files (locally and on the server) and running the wizard again solved the problem. The forgot password link is now properly sending a link by email to the reset page.

Sign in to reply to this post

Jason ByrnesWebAssist

ok, glad to hear it is working.

Sign in to reply to this post

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now.  Build a store, a gallery, or a web-based email solution.

Want your website pre-built and hosted?

Close Windowclose

Rate your experience or provide feedback on this page

Account or customer service questions?
Please user our contact form.

Need technical support?
Please visit support to ask a question





Ease of use


security code refresh image

We do not respond to comments submitted from this page directly, but we do read and analyze any feedback and will use it to help make your experience better in the future.

Close Windowclose

We were unable to retrieve the attached file

Close Windowclose

Attach and remove files

add attachmentAdd attachment
Close Windowclose

Enter the URL you would like to link to in your post

Close Windowclose

This is how you use right click RTF editing

Enable right click RTF editing option allows you to add html markup into your tutorial such as images, bulleted lists, files and more...

-- click to close --

Uploading file...