Project

General

Profile

Task #6465

Expire the password reset link [datacenterlight, dynamicweb]

Added by Nico Schottelius over 2 years ago. Updated about 2 years ago.

Status:
In Progress
Priority:
High
Assignee:
Target version:
-
Start date:
02/15/2019
Due date:
% Done:

0%

Estimated time:
PM Check date:
07/15/2019

Description

According to a customer report the reset link can be reused. The following changes are necessary:

  • Expire after a certain time (I suggest 24h)
  • Expire after one use

If feasible, I suggest to focus on ramping up the new user service, implement the change in there and then adjust dynamicweb to use the new user service. This will probably also include to register users in LDAP.

Mondi, if you have time we can work on it this weekend.


Related issues

Related to queue - Task #5789: Some issues to be cleared about userserviceNew10/09/2018

Actions

History

#1

Updated by Nico Schottelius over 2 years ago

  • Subject changed from Expire the password reset link to Expire the password reset link [datacenterlight, dynamicweb]
#2

Updated by Jason Kim over 2 years ago

  • PM Check date set to 02/17/2019
#3

Updated by Mondi Ravi over 2 years ago

  • Status changed from New to Seen
#5

Updated by Mondi Ravi over 2 years ago

  • Related to Task #5789: Some issues to be cleared about userservice added
#6

Updated by Mondi Ravi over 2 years ago

  • Status changed from Seen to In Progress
#7

Updated by Jason Kim over 2 years ago

  • PM Check date changed from 02/17/2019 to 02/21/2019
#8

Updated by Mirjana Rupar about 2 years ago

Mondi Ravi, update the status of the task, please.

#9

Updated by Jason Kim about 2 years ago

  • PM Check date changed from 02/21/2019 to 07/15/2019
  • Priority changed from Immediate to High
  • Due date deleted (02/18/2019)

Prioritization: immediate --> high

Also available in: Atom PDF