documentation:1.0:resetpassword

Reset password by mail

LL::NG can propose a password reset form, for users who loose their password (this kind of application is also called a self service password interface).

Kinematics:

  1. User enters his email in the password reset form
  2. LL::NG try to find the user in users database
  3. A mail with a token is sent to user
  4. The user click on the link in the mail
  5. LL::NG validate the token and set a random password
  6. The random password is sent to user
If LDAP backend is used, and LDAP password policy is enabled, the pwdReset flag is set to TRUE, so that the user is forced to change his password on next connection.

The reset password link must be activated, see portal customization.

Then go in Manager, General Parameters » Advanced Parameters » Password management:

  • SMTP Server: IP or hostname of the SMTP server
  • SMTP User: SMTP user if authentication is required
  • SMTP Password: SMTP password if authentication is required
  • If no SMTP server is configured, the mail will be sent via the local sendmail program. Else, Net::SMTP module is required to use the SMTP server
  • The SMTP server value can hold the port, for example: mail.example.com:25
  • If authentication is configured, Authen::SASL and MIME::Base64 modules are required
  • Page URL: URL of password reset page (default: [PORTAL]/mail.pl)
  • Mail sender: address seen in the "From" field (default: noreply@[DOMAIN])
  • Success mail subject: Subject of mail sent when password is changed (default: [LemonLDAP::NG] Your new password)
  • Success mail content (optional): Content of mail sent when password is changed
  • Confirmation mail subject: Subject of mail sent when password change is asked (default: [LemonLDAP::NG] Password reset confirmation)
  • Confirmation mail content (optional): Content of mail sent when password change is asked
  • Regexp for password generation: Regular expression used to generate the password (default: [A-Z]{3}[a-z]{5}.\d{2})
By default, mail content are empty in order to use HTML templates:
  • portal/skins/common/mail_confirm.tpl
  • portal/skins/common/mail_password.tpl

If you define mail contents in Manager, HTML templates will not be used.