Jonathan Posted March 11, 2015 Report Posted March 11, 2015 A simple link in the admin interface, preferably with a confirmation popup modal to prevent accidental use that would reset the user's password, email it to them, and obviously store no copy. Customers tend to say "I forgot my password" or whatever and obviously they don't understand the "forgot password" link so an easy way to just do this for them and email it in a more "secure" way than generating, copy/pasting, and having unecessary eyes seeing it would be rather beneficial. Quote
Jonathan Posted March 11, 2015 Author Report Posted March 11, 2015 Alternatively it could just email the reset link to them. This would probably actually be preferred. Esentially just a trigger for the forgot password email/process from the admin side. This prevents the password from ever being in plain text except when the client enters it into blesta. hpno 1 Quote
Paul Posted March 11, 2015 Report Posted March 11, 2015 Personally I would prefer sending the password link. It's time sensitive and allows them to set their own password, which is preferable. Plus, sending a password in email is not secure. I would be open to this. I have had to, on several occasions opened up the client password reset page and entered a customers username to force one of these to them after they had trouble doing so on their own. Thoughts from anyone else? Blesta Addons, Michael and hpno 3 Quote
Jonathan Posted March 11, 2015 Author Report Posted March 11, 2015 Personally I would prefer sending the password link. It's time sensitive and allows them to set their own password, which is preferable. Plus, sending a password in email is not secure. I would be open to this. I have had to, on several occasions opened up the client password reset page and entered a customers username to force one of these to them after they had trouble doing so on their own. Thoughts from anyone else? The more I think about it the more I like this idea rather than my initial proposal. Quote
mrrsm Posted March 11, 2015 Report Posted March 11, 2015 I like your idea Paul, being able to force send the password reset from the admin client page would be preferable. Blesta Addons 1 Quote
Blesta Addons Posted March 13, 2015 Report Posted March 13, 2015 Personally I would prefer sending the password link. It's time sensitive and allows them to set their own password, which is preferable. Plus, sending a password in email is not secure. I would be open to this. I have had to, on several occasions opened up the client password reset page and entered a customers username to force one of these to them after they had trouble doing so on their own. Thoughts from anyone else? Good IDEA. +1 Quote
serge Posted March 13, 2015 Report Posted March 13, 2015 maybe my oposition can be solved by just using the second authentification factor method. but if email account is hacked, reset password, from a link or not is not so good in my eyes. I do preffer just do it from database direct access Quote
CCWHUK2 Posted March 29, 2015 Report Posted March 29, 2015 +1 We reset our local client passwords quite often and it would be good to be able to do this within the admin area like other billing systems would be great. Quote
Jonathan Posted March 29, 2015 Author Report Posted March 29, 2015 +1 We reset our local client passwords quite often and it would be good to be able to do this within the admin area like other billing systems would be great. Yeah we do this 10+ times per day for folks who can't/won't find the PW reset link themselves. Quote
Paul Posted July 3, 2015 Report Posted July 3, 2015 You got it - CORE-1725 Jonathan, PauloV, Michael and 1 other 4 Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.