I want to implement reset password feature in a website.
User should receive a link to reset the password, the link sohould contain some unique identifier. Once the password is changed using the link then the link should be disabled.
Are ther any resources / blogs available which shows how to implement this in EpiServer
Here's an article to show you how to reset the password:
On the same page you can use the EPiServer DDS to store the username a generate a unique identifier (GUID) and a expiration date. If the user does not have a reset GUID, ask the user for username (and maybe a security question) and send a mail to the registered email containing the link to the reset password page and the generated GUID. If a user browses the page with a GUID, check the DDS to see if there is any users who has that GUID and where the expiry date has not passed. If a record is found, reset the password for the user.
Would that work?
I have this flow in mind, what I want is some reference where this has been implemented using Asp.Net Membership class.
I guess I have found what I was lookig for.