Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.This module provides a Drupal UI method for setting the user password reset link timeout variable (user_password_reset_timeout in D7 and password_reset_timeout in D8). Use cases for changing the value include decreasing the value for security requirements and increasing the value to allow users more time to reset their password.
While you can set this variable in settings.php and with drush vest (see details here), some may find it handy to have a Drupal UI way to make this configuration change.
Usage:
- Configure this setting at /admin/config/people/accounts under the "Password reset" heading
- The maximum value for the the value is 31536000 (1 year). The Drupal default is 86400 (24 hours). Be aware of security implications for your site if you decide to extend the length of the timeout.
- Changing the value will affect any unused password reset links
Note: Requires at least Drupal 7.15 since the user_password_reset_timeout variable was introduced in Drupal 7.15.
Supporting organizations:
Project information
Minimally maintained
Maintainers monitor issues, but fast responses are not guaranteed.- Maintenance fixes only
Considered feature-complete by its maintainers. - Project categories: Access control, Developer tools
2,408 sites report using this module- Created by shrop on , updated
Stable releases for this project are covered by the security advisory policy.
Look for the shield icon below.
