Password is not reset if link is sent

  • Resolved technoid28

    (@technoid28)


    6 years, 3 months ago

    If we use the new option to send the Password Reset Link, the password is not really reset. That is, if the receiver of the email simply ignores the mail they receive, they can go on using their old password! There is no forced reset. This makes this new feature useless for forcing a reset. We are on the latest version of WordPress and sent the reset thru the user menu.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter technoid28

    (@technoid28)

    More background on this issue. We use s2member for user management. When we use s2member and go into a user’s data entry to reset a single user’s password, the password is set to a new auto-generated password, nullifying the old one. This is important. Then the user receives an email with a link that they can use to set a new password of their choosing. Your plugin sends the link. But it does not nullify the old password. So a user can simply ignore the mail and continue to use their old password. Not good! This should be fixed.

    Plugin Author KrishaWeb

    (@krishaweb)

    Thanks for rectifying this issue.
    It has been fixed now!

    • This reply was modified 6 years, 2 months ago by KrishaWeb.
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Password is not reset if link is sent’ is closed to new replies.

Tags