Changes between Initial Version and Version 1 of Ticket #11869, comment 2
- Timestamp:
- Jul 10, 2014, 9:11:35 PM (10 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #11869, comment 2
initial v1 12 12 > As I am writing this, I see in [http://trac-hacks.org/wiki/AccountManagerPlugin/Modules#Lostpasswordprocedure Lost password procedure] that "The temporary password is stored in !ResetPwStore, a special !SessionStore". Does this mean I need to configure a SessionStore to get this behaviour to work properly? Please direct me to the appropriate documentation if so. 13 13 14 First, !ResetPwStore is a dedicated store, no need to configure it explicitly. Just make sure the ! SessionStore component is enabled, but this is not your problem.14 First, !ResetPwStore is a dedicated store, no need to configure it explicitly. Just make sure the !ResetPwStore component is enabled, but this is not your problem. 15 15 16 16 It is rather Http Basic Auth that doesn't know anything about an alternative password store. So the new password in !ResetPwStore is never challenged and password reset - new style - simply doesn't work by design in this authentication setup, just password management. Sorry, but password store chaining, a per-requisite for password reset, is bound to the use of !AccountManager's own login module and cannot work with the Http Basic Auth method.
