Bassa icon indicating copy to clipboard operation
Bassa copied to clipboard

Published 20 hours ago verified publisher icon scorelab

Add forgot password feature.

Open phoenixking25 opened this issue 6 years ago • 12 comments

Add forgot password feature.

Expected Behavior

  • There should be a button on ui which send password reset email to the respective user which redirects to password reset form

Current Behavior

  • There's no such feature.

Expected Solution

  • Add a hyperlink(forgot password) on login screen which opens a forgot password form to ask email.
  • Send email email sending reference to the user about resetting the password of frontend on which redirects the user to open the reset form. In this we need to add a extra column in user table for the key user data storage reference that we need to confirm that the link is verified.
  • On opening the reset form checks the link through url by making query to the user data at the api. if the link is verified get the user new password and change the existing password and send the mail to user notifying that his/her password has got successfully reset.

phoenixking25 avatar Oct 02 '18 19:10 phoenixking25

Nice catch! You working on this?

vibhorgupta-gh avatar Oct 02 '18 19:10 vibhorgupta-gh

nope! you can do this.

phoenixking25 avatar Oct 02 '18 19:10 phoenixking25

Great! I'm working on this then

vibhorgupta-gh avatar Oct 02 '18 19:10 vibhorgupta-gh

Sure.

phoenixking25 avatar Oct 02 '18 19:10 phoenixking25

@VibhorCodecianGupta if you haven't started this issue i want to put this task in my GCI task.

phoenixking25 avatar Oct 03 '18 03:10 phoenixking25

@vivonk add GCI label on it. i want to enlist this in my gci tasks.

phoenixking25 avatar Oct 03 '18 11:10 phoenixking25

@pheonixking25 before I add this to GCI label, could you explain also that how to implement this feature in actual. Like where the changes are required as the very new comers can't decide on it own.

vivonk avatar Oct 03 '18 15:10 vivonk

@vivonk check now.

phoenixking25 avatar Oct 03 '18 18:10 phoenixking25

@agentmilindu please see whether it's something that GCI participants will able to do in specific time

vivonk avatar Oct 03 '18 18:10 vivonk

@vivonk @phoenixking25 I think we have to divide this issue into several tasks if we are adding this to GCI.

  1. Add a hyperlink "Forgot password" on the login screen, Clicking the link opens a Forgot Password form to ask the email.
  2. When the form is submitted, send an email to the user with Password Resetting Link.
  3. Create a Password Resetting page, this is the page where the users land when the Password Resetting Link is clicked. Password Resetting token should be taken from the link and stored in a hidden input field along with a CSRF token.
  4. When the Password Resetting form is submitted, validate the tokens and reset the passwords to the new password.
  5. Send the mail to the user notifying that his/her password has got successfully reset.

Some tasks are hard and some are medium hard, but we have to publish the task in doable order. For example, 4th one cannpt be done untill 3rd is done. We have to mindull on these too. We can create the tasks and publish in order.

agentmilindu avatar Oct 07 '18 04:10 agentmilindu

Ok will publish this in that order.

phoenixking25 avatar Oct 07 '18 04:10 phoenixking25

Hey @vivonk Is this issue resolved, if not can I pick this issue?

@phoenixking25 @VibhorCodecianGupta ?

ganeshpatro321 avatar Feb 25 '19 18:02 ganeshpatro321