[Vtigercrm-developers] Change password procedure does not work optimally

socialboostdk socialboostdk at gmail.com
Tue Jul 1 07:15:08 GMT 2014


When a user requests a new password, I've noticed to problems:

1) The user HAS to be able to remember both username + email (which is not
likely in all cases, ie. it should be enough to remember one of them or it
should be possible to retrieve the username using email also).

2) The URL to reset password is broken in gmail.

The first about username + email I think is self-explanatory, but the URL
to reset needs a little further explanation.

Basically the URL consists of the domain, "shorturl.php" and an ID.

In the ID there is often (always?) a period (".") in, which breaks the
string in gmail.

Ie. when I click the URL i get a very ugly "Link you have used is invalid
or has expired. ." notification back.

If i instead copy the whole string (incl the part on the right of the
period (".")) then it works.

So, my suggestion would be to simply avoid having period (".") in the ID
all together?


An example mail would be:

Hi christian,
This email was sent to you as you submitted the request to change password
for Simply CRM.
Please follow this link to reset your password.

http://vtiger.campgain.com.com/shorturl.php?id=53b25ba49a6658.87162670

Thanks,
VTiger CRM
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.vtigercrm.com/pipermail/vtigercrm-developers/attachments/20140701/6d41daf4/attachment.html>


More information about the vtigercrm-developers mailing list