On 24 Jun 2010, at 18:28, David Zhu wrote:
In authlogic, I set the password field to "crypted password"
Is there a way to display a password, even if its "crypted"? What if
the user forgets the password and needs to recover it? How can I
recover a crypted password?
You don't "recover" it. You reset it. User types in username,
clicks
"reset password". You lookup email address of user in DB and email
them a link with a secret token which allows them to choose a new
password. The secret token is kinda like a one-time-password which
only lets them change their password. You've prolly seen this sort
of
thing with many websites?
Right, is it difficult to write out that "secret token"? hmm I'm
having trouble picturing how the code should look like
Google is your friend:
http://www.binarylogic.com/2008/11/16/tutorial-reset-passwords-with-authlogic/
Best regards
Peter De Berdt
--
You received this message because you are subscribed to the Google Groups "Ruby on
Rails: Talk" group.
To post to this group, send email to rubyonrails-t...@googlegroups.com.
To unsubscribe from this group, send email to
rubyonrails-talk+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/rubyonrails-talk?hl=en.
