Forgotten Password

Users forgetting passwords is a common problem for sites that support user accounts. It is an essential feature that users must be able to securely reset their password without the involvement of a site administrator.

Since the flexi auth library securely hashes all user passwords, it is not possible to check what the users forgotten password is and then inform them.
Therefore, the library includes a function that will email a link to the user that includes a unique token. When the user clicks the link, the user is directed to a page that validates whether the token is valid, provided it is, the flexi auth library can then be configured to allow the user to manually reset their password, or to automatically email the user a new password.

This demo is setup to send the user an email with a link, when they click the link, they are directed to a page where they can manually change their password.

Forgotten Password

  • Note: By default, this demo is set so that the password must be reset within 15 minutes of the 'forgotten password' email being sent.
Copyright © 2024, Rob Hussey, All Rights Reserved.
flexi auth was designed and developed by