Posted by seanr on October 26, 2009 at 7:44pm
Jump to:
| Project: | Password policy |
| Version: | 5.x-1.x-dev |
| Component: | Code |
| Category: | bug report |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | closed (fixed) |
Issue Summary
When a user who's account has expired tries to use the reset password tool (assuming they forgot the old one), they are sent to the expired password form instead, which asks them to enter their old password as well as the new one. Since they reset it, they obviously won't have it. ;-)
Comments
#1
Turns out the client had a second module that was being used for the password expiration feature.