id summary reporter owner description type status priority milestone component resolution keywords cc parents 72 """Lost password?"" functionality (""Change password"" functionality possibly embedded in case)" joar Caleb Davis "{{{ #!rst A user needs to be able to reset and recover his/her password. When doing so, my initial plan is to - Generate a new password \* Generate a password hash for the newly generated password \* Overwrite the old hash with the new hash \* Set some kind of ""user\_has\_forgotten\_password"" or ""requested\_to\_change\_password"" value so that the user is pushed towards changing his/her password, thus avoiding any security issues related to the transfer of the password in plain text to the user. - Email the password to the user \* Ask the user to change his/her password \* Reset the ""requested\_to\_change\_password"" flag \* Update the generated password with the new password }}}" defect closed minor 0.1.0 programming FIXED