Feature #1249

Highlight password-change options for people using automated passwords

Added by Matt Gold over 10 years ago. Updated almost 10 years ago.

Priority name:
Category name:
BuddyPress (misc)
Target version:
Start date:
Due date:
% Done:


Estimated time:
5.00 h


When members change their passwords, they are sent an automated password from the system. In a WP site running without BP, the first time users log in with an automated password, they see a message on the dashboard that says something to the effect of "hey, you're using an automated password. To change it to something you'll remember, click here" - and then they are taken to the change password page.

I think we need something like this for BuddyPress.

Two thoughts about implementation:

1. Have some kind of message or pop-up similar to the way in which WP handles this on the dashboard

2. Include a link to the password-change page itself within the password-recovery email so that people can click on the link after logging in

3. Both

My vote would go for #1, since I think that's most intuitive and not very intrusive.


#1 Updated by Matt Gold over 10 years ago

  • Subject changed from Highlight password-change options to people using automated passwords to Highlight password-change options for people using automated passwords

#2 Updated by Boone Gorges over 10 years ago

  • Priority name changed from Normal to Low
  • Target version changed from 1.3 to 1.4

Sounds good. Agreed with #1.

Bumping to 1.4 as this milestone is crowded and I want to get a move on.

#3 Updated by Boone Gorges about 10 years ago

  • Assignee changed from Boone Gorges to Dominic Giglio

Dom, will you research this a bit? If it ends up being simple to throw together a quick plugin (like, a couple dozen lines), just do it. If it's more complicated than that, please report back and we can talk about options.

#4 Updated by Dominic Giglio about 10 years ago

  • Estimated time set to 5.00 h

#5 Updated by Dominic Giglio almost 10 years ago

Matt, Boone,

I'm a little confused by this issue. I've changed my password on the Commons, both from the login page / home page dropdown and by clicking on the "lost your password?" link on the profile settings page and both send an email with a link to a page that lets you choose a new password. Is there someplace else that causes a randomly generated password to be issued to one of our users?

Maybe when this issue was originally opened WordPress randomly generated passwords for a user who'd forgotten their password and since then an update to core has improved this functionality? I do remember dealing with a randomly generated password in the past on one of my own sites, but that was quite a while ago.

Please let me know if I'm missing something here, otherwise I think this issue can be closed.

#6 Updated by Boone Gorges almost 10 years ago

  • Status changed from Assigned to Rejected

I think you're right, Dom. I'm going to close this issue. Matt, please reopen if you can provide more details.

#7 Updated by Boone Gorges almost 10 years ago

  • Target version deleted (1.4)

Also available in: Atom PDF