First of all, thank your for the module; it works great. However, I added a functionality for providing your password reset feature for certain roles only by creating a permission. If the user's role does not have said permission, the user will not see the secret question/answer field on the user edit page and would use the default e-mail password reset functionality after entering the username on user/password page.
The user would also be using the default e-mail password reset if no secret question/answer was set (such as when a user have switched roles).
I've also reduced the number of queries during the password reset process, i.e. I only do a single 'user_load' and store it using 'form_set_value', where as 'password_reset_uid_get' was being called at least 3 times (more if secret answer was incorrect) and then doing a 'user_load' on step 3.
Are you interested in this? If you are, I'll gladly upload the patch.
Comments
Comment #1
pdrake commentedI would be interested in this. If you're willing to upload the patch it would be appreciated.
Comment #2
Zen commentedPlease upload the patches for each change in separate issues. Thanks :)
-K
Comment #3
torgospizzaWondering if anyone else looked at doing this, or if the OP is gone for good..?
Comment #4
pdrake commentedStill around. I'll try to get each of these into a separate patch in the not-too-distant future.
Comment #5
pbrough commentedThis patch is useful in extending the function of the system
http://drupal.org/node/1145232
But I do think that some additional settings should be avaliable on the system including the number of security questions that can be requested.
Comment #6
Zen commentedPlease roll any patches against 7-dev.
-K