You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently the password reset works by resetting the password immediately to a new random 8-char string and emailing this to the user. So even if they then remember the old password it won't work.
A better option would be for this to function as many other sites do for password resetting, so a (time limited) link is sent by email to reset the password and forces the user to enter a new password (removing the 'temp password' as now), but in the meantime they can still use their original password if they remember it.
Very likely there will be django plugins that will handle this - just needs some investigation and testing as to the best option
The text was updated successfully, but these errors were encountered:
Currently the password reset works by resetting the password immediately to a new random 8-char string and emailing this to the user. So even if they then remember the old password it won't work.
A better option would be for this to function as many other sites do for password resetting, so a (time limited) link is sent by email to reset the password and forces the user to enter a new password (removing the 'temp password' as now), but in the meantime they can still use their original password if they remember it.
Very likely there will be django plugins that will handle this - just needs some investigation and testing as to the best option
The text was updated successfully, but these errors were encountered: