id	summary	reporter	owner	description	type	status	priority	milestone	component	resolution	keywords	cc	parents
72	"""Lost password?"" functionality (""Change password"" functionality possibly embedded in case)"	joar	Caleb Davis	"{{{
#!rst
A user needs to be able to reset and recover his/her password.

When doing so, my initial plan is to


-  Generate a new password \* Generate a password hash for the
   newly generated password \* Overwrite the old hash with the new
   hash \* Set some kind of ""user\_has\_forgotten\_password"" or
   ""requested\_to\_change\_password"" value so that the user is pushed
   towards changing his/her password, thus avoiding any security
   issues related to the transfer of the password in plain text to the
   user.
-  Email the password to the user \* Ask the user to change his/her
   password \* Reset the ""requested\_to\_change\_password"" flag \*
   Update the generated password with the new password



}}}"	defect	closed	minor	0.1.0	programming	FIXED