Imported Fromfrom: http://groups.google.com/group/in-portal-dev/browse_thread/thread/95fa9e02e5d65a4a#
I propose to change how Forgot Password feature works in In-Portal.
Currently it works this way: 1.
- user clicks "Forgot Password" link on login page
...
- user enters his email or login
...
- user presses "Send Password" button
...
- user receives email with confirmation link
...
- when user clicks on that link, then he is brought to confirmation page
...
- when user clicks "Yes" on that confirmation page, then new password is
...
- generated and sent to it by email (not too secure)
This way user nees needs to perform 6 steps to restore his password (he also needs
to needs to go to his profile to change it to whatever he want later). Not too user
friendly user friendly I think.
I propose to simplify this scheme this way: 1.
- user clicks "Forgot Password" link on login page
...
- user enters his email or login
...
- user presses "Send Password" button
...
- user receives email with confirmation link
...
- when user clicks on that link, then he is brought to password change
...
- form
- user enter his new password (2 times) and immediately got logged in
This way user gets his password changed quickly and new password isn't sent
by sent by email.
Another issue, when password is send by email is when "Auto-generate User
Passwords" option is used (this way user don't enter his password during
registration). In this case user gets his password after registration by
email.
I propose to send "forgot password" like link to his email and then he can
change his password to what ever whatever he wants.
Related Tasks
| Jira Legacy | ||||
|---|---|---|---|---|
|
http://www.in-portal.com
http://www.alex-time.com
|