Keep getting requests from users to reset their password because they forgot them?
Have an application that does not have password reset functionality?
Password Manager may be the solution!
- Lets users change and reset their passwords without the involvement of administrators.
- Users have to go to a link sent to their email address to reset their forgotten passwords.
- Generate strong passwords with the press of a button.
- Enforce minimal password strength for new passwords.
- Many configuration options to fine tune the application.
- PHP 5.3.2+ on the webserver.
- Your application stores emails and password hashes in the database. And usernames as well if your system does not use email addresses as usernames.
- Your application either uses bcrypt, sha256, or sha512 to hash passwords or does hashing in the database.
- The PHP module for the database you wish to use must be installed on the webserver:
- pdo_pgsql for PostgreSQL
- sqlsrv for Microsoft SQL Server
- oci8 for Oracle Database
- pdo_mysql for MySQL/MariaDB
- Access to a mail server for sending emails.
Note: The application has currently NOT been tested with Microsoft SQL Server databases. In theory, it should work, because the simple select/update and function syntaxes are similar. Though I would appreciate it if anyone can confirm that it does.
- Download the latest version of the application from the GitHub repository.
- Fill the config.php file with your configuration details.
- If using functions for database interactions, create them in the database.
- Definition examples of the functions used by the applications can be found here.
- Upload the application's files to the webserver.
- Optional but suggested: move the config.php file outside of the webserver's public directory and store the absolute filesystem path to it in the configlink.php file.
Password Manager is released under the MIT license.