Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen

HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Password Reset/Recovery functionalityPassword Reset/Recovery functionality
Previous
 
Next
New Post
5/8/2014 10:07 AM
 

Using DNN 7.2.2 is it possible to have the old password recovery functionality rather than the new password reset link?

How?

(I had thought that setting  enablePasswordRetrieval="true" enablePasswordReset="false" would have done the trick but that seems not to be the case.




Joe Craig
Patapsco Research Group, Ellicott City, MD
DotNetNuke Development and Services (http://patapscorg.com)
 
New Post
5/8/2014 11:01 AM
 

Joseph,

it is much more secure to have the password reset instead of sending passwords in clear text over the internet via email.

Anyway: your way should be correct, as when you change the setting in the web.config file, the value displayed in Site Settings :: User Account Settings is changed as well. Most propably you have left the passwordFormat="Hashed" attribute in the web.config file, therefore no "undecoding" of the password is possible, you should use "Encrypted" (or maybe vice versa). But if you change this, I fear that all the passwords for the users that registered since do not work anymore.

Best wishes
Michael


Michael Tobisch
DNN★MVP
dnn-Connect.org - The most vibrant community around the DNN-platform
 
New Post
5/8/2014 11:10 AM
 
MIchael,

Thank you for your comments. I understand, and welcome the password reset link. However, I was asking the question on behalf of someone who doesn't want to do that.

More to the point, my way doesn't work, and I am using encrypted passwords. When I set the parameters as mentioned in my post, I get a message: Password retrieval is disabled on this site.

Is this a bug?



Joe Craig
Patapsco Research Group, Ellicott City, MD
DotNetNuke Development and Services (http://patapscorg.com)
 
New Post
5/8/2014 11:19 AM
 

Joseph,

I don't think so - maybe it has to do with the password format setting, but I don't have too much experience with that yet. There are some (closed) issues on the tracking system (search for "password retrieval" and "password reset") that explain the (intended) behaviour in the comments (a bit, at least).

Best wishes
Michael 


Michael Tobisch
DNN★MVP
dnn-Connect.org - The most vibrant community around the DNN-platform
 
New Post
5/13/2014 5:55 PM
 

We set the default for passwords to be hashed in 7.1.0 (see http://www.dnnsoftware.com/wiki/page/...) - if your site is using hashed then you cannot retrieve passwords.

If you are using an old install that is using encrypted passwords, you can (in theory) go in and edit

EMAIL_PASSWORD_REMINDER_BODY and EMAIL_USER_REGISTRATION_PUBLIC_BODY text and edit it to no longer use the new PasswordResetToken value e.g.

Link to reset password: http://[Portal:URL]/default.aspx?ctl=...]

but instead to use the "old" password token e.g.

Your password is [Membership:Password]

Note: in general we don't recommend for the reasons covered in the wiki


Buy the new Professional DNN7: Open Source .NET CMS Platform book Amazon US
 
Previous
 
Next
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Password Reset/Recovery functionalityPassword Reset/Recovery functionality


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.

Content Layout

Subscribe to DNN Digest

DNN Digest is our monthly email newsletter. It highlights news and content from around the DNN ecosystem, such as new modules and themes, messages from leadership, blog posts and notable tweets. Keep your finger on the pulse of the ecosystem by subscribing.  


Copyright 2017 by DNN Corp Terms of Use Privacy
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out