ArmyAirForces
-
Total Posts
:
665
-
Reward points
:
10500
-
Status: offline
|
Forgot password / forgot username
Thu. Sep 3, '09 12:58 AM
( permalink)
1. Allow user to retrieve account details by submitting their email address. This would work in cases where the user has forgotten their username. 2. Instead of resetting password, just send the user their existing log in details. The current mechanism, according to several of my forgetful (or infrequent) users is fairly frustrating.
|
|
|
|
Samuel
-
Total Posts
:
11850
-
Reward points
:
180550
- Joined: May 23 '01
-
Status: offline
|
Re:Forgot password / forgot username
Thu. Sep 3, '09 12:50 PM
( permalink)
Hi, unfortunately, we do not store password in the db so the only way to regain the ability to log in is to reset the password by supplying the email only. We do not need user to remember his username as it will be sent to along with password as well.
ASPPlayground.NET ~ see our Version 4 plans here
|
|
|
|
ArmyAirForces
-
Total Posts
:
665
-
Reward points
:
10500
-
Status: offline
|
Re:Forgot password / forgot username
Thu. Sep 10, '09 10:38 AM
( permalink)
Users are forgetful creatures. If they've forgotten their user name what is their course of action? They're not going to know that they'll be sent their user name via the "Forgot your password?" link. Regarding passwords. I know the current system doesn't allow it. I guess the question is why? The discussion I had with a few users raised a fairly valid point. What is the benefit--to the user--of doing it the current way?
|
|
|
|
WayneM
-
Total Posts
:
483
-
Reward points
:
8800
- Joined: Oct 26 '05
- Location: Tobyhanna, PA
-
Status: offline
|
Re:Forgot password / forgot username
Thu. Sep 10, '09 1:34 PM
( permalink)
I've had a few users e-mail me because they could not remember their login name, and I had to look them up by e-mail address to find out. It would be nice to have this automated at some point. Passwords get into privacy issues because some people use the same one for everything. I don't want to have a user accuse me of using their password to hack into their bank account - its better to never have a way to know in my opinion. Resetting it is simple enough to do.
|
|
|
|
Samuel
-
Total Posts
:
11850
-
Reward points
:
180550
- Joined: May 23 '01
-
Status: offline
|
Re:Forgot password / forgot username
Thu. Sep 10, '09 1:39 PM
( permalink)
Wayne is correct regarding the reason we only keep the hash of the password, instead of the password itself in the db. I will add Username reminder in the feature consideration list. Thanks for the suggestion!
ASPPlayground.NET ~ see our Version 4 plans here
|
|
|
|
ArmyAirForces
-
Total Posts
:
665
-
Reward points
:
10500
-
Status: offline
|
Re:Forgot password / forgot username
Thu. Sep 17, '09 1:08 PM
( permalink)
WayneM
Passwords get into privacy issues because some people use the same one for everything. I don't want to have a user accuse me of using their password to hack into their bank account - its better to never have a way to know in my opinion. Resetting it is simple enough to do.
Well that's an aspect that never occurred to me.
|
|
|
|
IceDog
-
Total Posts
:
32
-
Reward points
:
3385
- Joined: Dec 28 '08
-
Status: offline
|
Re:Forgot password / forgot username
Fri. Sep 18, '09 1:39 PM
( permalink)
ArmyAirForces
WayneM
Passwords get into privacy issues because some people use the same one for everything. I don't want to have a user accuse me of using their password to hack into their bank account - its better to never have a way to know in my opinion. Resetting it is simple enough to do.
Well that's an aspect that never occurred to me.
I think about it all the time. How many websites have we created accounts with? How many of those websites hash their passwords? How good are the ethics of the administrator?
|
|
|
|