A Standalone Self Service Web Application for Changing Passwords in Existing Applications
Keep getting requests from users to reset their password because they forgot them?
Have an application that does not have password reset functionality?
Password Manager may be the solution!
- Lets users change and reset their passwords without the involvement of administrators.
- Users have to go to a link sent to their email address to reset their forgotten passwords.
- Generate strong passwords with the press of a button.
- Enforce minimal password strength for new passwords.
- Many configuration options to fine tune the application.
- PHP 5.3.2+ on the webserver.
- Your application stores emails and password hashes in the database. And usernames as well if your system does not use email addresses as usernames.
- Your application either uses bcrypt, sha256, or sha512 to hash passwords or does hashing in the database.
- The PHP module for the database you wish to use must be installed on the webserver:
- pdo_pgsql for PostgreSQL
- sqlsrv for Microsoft SQL Server
- oci8 for Oracle Database
- pdo_mysql for MySQL/MariaDB
- Access to a mail server for sending emails.
Note: The application has currently NOT been tested with Microsoft SQL Server databases. In theory, it should work, because the simple select/update and function syntaxes are similar. Though I would appreciate it if anyone can confirm that it does.
- Download the latest version of the application from the GitHub repository.
- Fill the config.php file with your configuration details.
- If using functions for database interactions, create them in the database.
- Definition examples of the functions used by the applications can be found here.
- Upload the application's files to the webserver.
- Optional but suggested: move the config.php file outside of the webserver's public directory and store the absolute filesystem path to it in the configlink.php file.
Password Manager is released under the MIT license.