#212 Implement PasswordReset without sending Email


The current RecoverPassword.aspx page resets the user password automatically after the user successfully answers the security question and then sends the user the new password (in the clear) in an email. Then the user should login with the new automatically generated password and change that supplied password to a user selected password.

This process does not work when the web server is not able to send email to the user.


  • John Davidson

    John Davidson - 2008-11-08


    Created a new page PasswordReset.aspx that implements a wizard control to verify a user using their security question and then update their password to a new password of their choosing without send an email.

    Added a configuration item PasswordResetUrl to flexwiki.config with a default of '~/RecoverPassword.aspx' so that the login control on Login.aspx can point to either the standard password recovery facility or new custom password reset.

  • John Davidson

    John Davidson - 2008-11-08
    • status: open --> closed-fixed

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

No, thanks