Reset password tool on expired account requires current password

seanr - October 26, 2009 - 19:44

Project:	Password policy
Version:	5.x-1.x-dev
Component:	Code
Category:	bug report
Priority:	normal
Assigned:	Unassigned
Status:	closed

Jump to:

Most recent comment

When a user who's account has expired tries to use the reset password tool (assuming they forgot the old one), they are sent to the expired password form instead, which asks them to enter their old password as well as the new one. Since they reset it, they obviously won't have it. ;-)

» Login or register to post comments

#1

seanr - November 4, 2009 - 21:14

Status:

active

» closed

Turns out the client had a second module that was being used for the password expiration feature.

Login or register to post comments

Drupal is a registered trademark of Dries Buytaert.