Jetspeed
  1. Jetspeed
  2. JS1-4

Forgotten-password functionality?

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Resolution: Fixed
    • Affects Version/s: 1.3a1
    • Fix Version/s: None
    • Component/s: Login
    • Labels:
      None
    • Environment:
      Operating System: All
      Platform: All

      Description

      Has anyone added forgotten-password functionality? Examples being: email login
      info to account's email address ask secret question, then display password
      generate new password different combinations of the above

        Activity

        Mark Thomas made changes -
        Workflow Default workflow, editable Closed status [ 12561643 ] jira [ 12582819 ]
        Mark Thomas made changes -
        Workflow jira [ 27260 ] Default workflow, editable Closed status [ 12561643 ]
        Serge Knystautas made changes -
        Field Original Value New Value
        issue.field.bugzillaimportkey 4142 17265
        Hide
        Chris Kimpton added a comment -

        The basic facility has been done.

        A bug representing the outstanding items has been raised.

        http://nagoya.apache.org/bugzilla/show_bug.cgi?id=5803

        Show
        Chris Kimpton added a comment - The basic facility has been done. A bug representing the outstanding items has been raised. http://nagoya.apache.org/bugzilla/show_bug.cgi?id=5803
        Hide
        todd tredeau added a comment -

        Password functionality looks great. There is a problem with the "fit" on the
        main page when you add it to your options. The text underneath seems to push the
        login and password boxes apart. Suggestion, lose the buttions, opt in the
        "hightlighted" text fields, similar to other options, and make the Login /
        Forgot password on the screen fit where "Create New Account" is. ie:

        Login
        Create New AccountForgot Password
        Chances ar Login is not going to be used anyway, enter will work, if the user is
        going to click, they can click there.. it shrinks the page width, looks and fits
        better.

        Show
        todd tredeau added a comment - Password functionality looks great. There is a problem with the "fit" on the main page when you add it to your options. The text underneath seems to push the login and password boxes apart. Suggestion, lose the buttions, opt in the "hightlighted" text fields, similar to other options, and make the Login / Forgot password on the screen fit where "Create New Account" is. ie: Login Create New AccountForgot Password Chances ar Login is not going to be used anyway, enter will work, if the user is going to click, they can click there.. it shrinks the page width, looks and fits better.
        Hide
        todd tredeau added a comment -

        This functionality should be more of a password re-generator than sending out
        your password. For instance, when I enable LDAP, either I would have re-write
        the generator, or in the best case, a forgotten password selection should
        trigger the generation of a new password, including re-assigning it in LDAP etc,
        as our ldap does not store passwords in a re-producable manner. IE:

        Forgotten password? >> ADMIN FUNCTION >>> reassign >>>> USER >> send new >> SHOW
        ON SCRREN? >> replace in DATABASE / LDAP >> then sucessfull >> COMMIT > SEND..

        todd

        Show
        todd tredeau added a comment - This functionality should be more of a password re-generator than sending out your password. For instance, when I enable LDAP, either I would have re-write the generator, or in the best case, a forgotten password selection should trigger the generation of a new password, including re-assigning it in LDAP etc, as our ldap does not store passwords in a re-producable manner. IE: Forgotten password? >> ADMIN FUNCTION >>> reassign >>>> USER >> send new >> SHOW ON SCRREN? >> replace in DATABASE / LDAP >> then sucessfull >> COMMIT > SEND.. todd
        Hide
        Chris Kimpton added a comment -

        taken on from Santiago

        Show
        Chris Kimpton added a comment - taken on from Santiago
        Hide
        Santiago Gala added a comment -

        I'm working on this one.

        I am testing currently. Small changes due to exception when the user did not exist.

        I'll commit briefly.

        Show
        Santiago Gala added a comment - I'm working on this one. I am testing currently. Small changes due to exception when the user did not exist. I'll commit briefly.
        Hide
        Chris Kimpton added a comment -

        Created an attachment (id=779)
        Here is a tar/gzipped file with a proposed patch

        Show
        Chris Kimpton added a comment - Created an attachment (id=779) Here is a tar/gzipped file with a proposed patch
        Hide
        Chris Kimpton added a comment -

        I am working on this - or at least a basic facility to have an extra button to
        get the password resent if the user enters there username.

        Chris Kimpton.

        Show
        Chris Kimpton added a comment - I am working on this - or at least a basic facility to have an extra button to get the password resent if the user enters there username. Chris Kimpton.
        Hide
        Paul Spencer added a comment -

        o Assigned to jetspeed-dev

        o Restated enancement as:
        1) Allow the user to request a password, either the current password or a
        "one time use password" be sent to the user's email address. This would
        be use when the user has forgotten his password. The current behavior
        require the Jetspeed Administrator to reset the password. The Jetspeed
        administrator should be able to enable/disable this new functionalty.

        2) Allow the user to request the secret-key be resent. This would be used
        if the secret-key, which is sent during account creation, to be resent if
        the origional email was lost.

        Show
        Paul Spencer added a comment - o Assigned to jetspeed-dev o Restated enancement as: 1) Allow the user to request a password, either the current password or a "one time use password" be sent to the user's email address. This would be use when the user has forgotten his password. The current behavior require the Jetspeed Administrator to reset the password. The Jetspeed administrator should be able to enable/disable this new functionalty. 2) Allow the user to request the secret-key be resent. This would be used if the secret-key, which is sent during account creation, to be resent if the origional email was lost.
        Steve Belt created issue -

          People

          • Assignee:
            Chris Kimpton
            Reporter:
            Steve Belt
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development