First of all, thank your for the module; it works great. However, I added a functionality for providing your password reset feature for certain roles only by creating a permission. If the user's role does not have said permission, the user will not see the secret question/answer field on the user edit page and would use the default e-mail password reset functionality after entering the username on user/password page.

The user would also be using the default e-mail password reset if no secret question/answer was set (such as when a user have switched roles).

I've also reduced the number of queries during the password reset process, i.e. I only do a single 'user_load' and store it using 'form_set_value', where as 'password_reset_uid_get' was being called at least 3 times (more if secret answer was incorrect) and then doing a 'user_load' on step 3.

Are you interested in this? If you are, I'll gladly upload the patch.

Comments

pdrake’s picture

pdrake commented

I would be interested in this. If you're willing to upload the patch it would be appreciated.

Zen’s picture

Zen commented
Category: task » feature
Status: Active » Needs work

Please upload the patches for each change in separate issues. Thanks :)

-K

torgospizza’s picture

torgospizza
he/him
Primary language English
Location Portland, OR
commented

Wondering if anyone else looked at doing this, or if the OP is gone for good..?

pdrake’s picture

pdrake commented

Still around. I'll try to get each of these into a separate patch in the not-too-distant future.

pbrough’s picture

pbrough commented

This patch is useful in extending the function of the system
http://drupal.org/node/1145232

But I do think that some additional settings should be avaliable on the system including the number of security questions that can be requested.

Zen’s picture

Zen commented
Version: 6.x-1.1-beta2 » 7.x-1.x-dev

Please roll any patches against 7-dev.

-K