AI OnAI Off

Reset Password feature

Pankaj Nainwal
Pankaj Nainwal
Vote:
 

Hi,

I want to implement reset password feature in a website.

User should receive a link to reset the password, the link sohould contain some unique identifier. Once the password is changed using the link then the link should be disabled.

Are ther any resources / blogs available which shows how to implement this in EpiServer

Thanks
Pankaj

#119058
Mar 19, 2015 18:53
Tobias Nilsson
Tobias Nilsson
Vote:
 

Hi Pankaj,

Here's an article to show you how to reset the password:

https://msdn.microsoft.com/en-us/library/d94bdzz2%28v=vs.110%29.aspx

On the same page you can use the EPiServer DDS to store the username a generate a unique identifier (GUID) and a expiration date. If the user does not have a reset GUID, ask the user for username (and maybe a security question) and send a mail to the registered email containing the link to the reset password page and the generated GUID. If a user browses the page with a GUID, check the DDS to see if there is any users who has that GUID and where the expiry date has not passed. If a record is found, reset the password for the user.

Would that work?

/T

#119060
Mar 19, 2015 19:02
Pankaj Nainwal
Pankaj Nainwal
Vote:
 

Hi Toni,

I have this flow in mind, what I want is some reference where this has been implemented using Asp.Net Membership class.

I guess I have found what I was lookig for.

http://www.dominikgorecki.com/2014/01/implementing-password-reset-in-mvc-4-ef-code-first-using-simple-membership-part-2/

Thanks
Pankaj

#119063
Edited, Mar 20, 2015 7:50
This thread is locked and should be used for reference only. Please use the Episerver CMS 7 and earlier versions forum to open new discussions.
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.