2010/10/12 Fritz <[email protected]>: > Hello, > > First, let me say thank you very very much for putting this together -- I > was going to have to code this from scratch, but you have saved me hours of > my life. > > second, i'm getting reset tokens via email but it seem that they are not > expiring. > > e.g > > first token received 5 hours ago is still valid and can reset the password, > is there a way to set this limit? is it a global threshold in php.ini? >
Hi, thanks for your mail ! Token is a PHP session so you can configure global session lifetime in php.ini: http://www.php.net/manual/en/session.configuration.php#ini.session.gc-maxlifetime I opened a feature here to handle this in the configuraiton: http://tools.ltb-project.org/issues/290 Clément. _______________________________________________ ltb-users mailing list [email protected] http://lists.ltb-project.org/listinfo/ltb-users
