This module changes the behaviour of the password forgot function so that the person requesting a new password has to confirm the passwor change, before the new password is active. When the person clicks the link, he/she is logged in and does not need to login again with the new password!
For the confirmation message a new email template is added, that can be configured via the Admin panel, Settings, Email Templates.
Other options of this module include:
- Disable "Email not found" message (the message is a potential privacy leak)
- Option to let user create a new password instead of generating a new password (automatic generation of passwords is more secure)
- Redirect page (currently supported are account, profile and profile edit)
Installing the package is simple, just upload the package using the FTP option in Modules, Add & Manage. Select the module from the list of "Not installed modules" and click install.
By default the "Email not found" message is disabled, a temporary password is generated and the redirect page is "profile edit".
* This module also works with Dolphin 7.0.x, however does require one manual changes to the .htaccess file