Login icon indicating copy to clipboard operation
Login copied to clipboard
verified publisher icon modxcms

Feature Request: Expire time for password reset mails hardcoded into forget/reset password

Open patrickatwsrn opened this issue 2 years ago • 0 comments

There doesn't seem to be a way to set an expiration time for password recovery links.

From what I have learned, there seems to be a two hour limit. Which might be so short or to long for some use cases.

There is a discussion about this from 2022 with a solution, but it requires hacking changes into

  • core/components/login/controllers/web/ForgotPassword.php
  • core/components/login/controllers/web/ResetPassword.php

Source: https://community.modx.com/t/logins-resetpassword-how-long-do-you-have-before-it-expires-cache-dependent/4950/2

It would be great to have system setting or even a parameter for this setting.

Regards,

Patrick

patrickatwsrn avatar Nov 13 '23 09:11 patrickatwsrn