#30423: Make PasswordResetTokenGenerator's timeout extendable. --------------------------------+------------------------------------------ Reporter: Antoine Humeau | Owner: Antoine Humeau Type: New feature | Status: closed Component: Uncategorized | Version: master Severity: Normal | Resolution: wontfix Keywords: | Triage Stage: Unreviewed Has patch: 1 | Needs documentation: 0 Needs tests: 0 | Patch needs improvement: 0 Easy pickings: 0 | UI/UX: 0 --------------------------------+------------------------------------------ Changes (by felixxm):
* status: assigned => closed * version: 2.2 => master * resolution: => wontfix Comment: Thanks for the ticket, however `PasswordResetTokenGenerator` is not a universal token generator. I wouldn't use it for other tokens. You can use `TimestampSigner` to create one time login links (see [https://docs.djangoproject.com/en/2.2/topics/signing/#module- django.core.signing Cryptographic signing]) or subclass `PasswordResetTokenGenerator` (probably you should override also `_make_hash_value()`). Related with #19871. -- Ticket URL: <https://code.djangoproject.com/ticket/30423#comment:3> Django <https://code.djangoproject.com/> The Web framework for perfectionists with deadlines. -- You received this message because you are subscribed to the Google Groups "Django updates" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-updates+unsubscr...@googlegroups.com. To post to this group, send email to django-updates@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/django-updates/065.65a73b532c046b29d39c297c5c51870a%40djangoproject.com. For more options, visit https://groups.google.com/d/optout.