Feature #1249
closed
Highlight password-change options for people using automated passwords
Added by Matt Gold about 13 years ago.
Updated over 12 years ago.
Category name:
BuddyPress (misc)
Description
When members change their passwords, they are sent an automated password from the system. In a WP site running without BP, the first time users log in with an automated password, they see a message on the dashboard that says something to the effect of "hey, you're using an automated password. To change it to something you'll remember, click here" - and then they are taken to the change password page.
I think we need something like this for BuddyPress.
Two thoughts about implementation:
1. Have some kind of message or pop-up similar to the way in which WP handles this on the dashboard
2. Include a link to the password-change page itself within the password-recovery email so that people can click on the link after logging in
3. Both
My vote would go for #1, since I think that's most intuitive and not very intrusive.
- Subject changed from Highlight password-change options to people using automated passwords to Highlight password-change options for people using automated passwords
- Priority name changed from Normal to Low
- Target version changed from 1.3 to 1.4
Sounds good. Agreed with #1.
Bumping to 1.4 as this milestone is crowded and I want to get a move on.
- Assignee changed from Boone Gorges to Dominic Giglio
Dom, will you research this a bit? If it ends up being simple to throw together a quick plugin (like, a couple dozen lines), just do it. If it's more complicated than that, please report back and we can talk about options.
- Estimated time set to 5.00 h
Matt, Boone,
I'm a little confused by this issue. I've changed my password on the Commons, both from the login page / home page dropdown and by clicking on the "lost your password?" link on the profile settings page and both send an email with a link to a page that lets you choose a new password. Is there someplace else that causes a randomly generated password to be issued to one of our users?
Maybe when this issue was originally opened WordPress randomly generated passwords for a user who'd forgotten their password and since then an update to core has improved this functionality? I do remember dealing with a randomly generated password in the past on one of my own sites, but that was quite a while ago.
Please let me know if I'm missing something here, otherwise I think this issue can be closed.
- Status changed from Assigned to Rejected
I think you're right, Dom. I'm going to close this issue. Matt, please reopen if you can provide more details.
- Target version deleted (
1.4)
Also available in: Atom
PDF