Password Recovery

Web Applications have the possibility to configure a password recovery mechanism to allow users to recover passwords using their email address.

Configuration

To allow recovery of passwords on your system two criteria must be met:

  1. The password recovery email server is configured in WebAdmin passwordRecoveryAdmin
  2. At least one Identity Provider is the Quidgest Identity Provider
    QuidgestIdentityProvider

Notes

  • It always says it sent an email, even if the address doesn’t exist in the database
  • The link with the token expires after 1 hour
  • If the user isn’t in the system, a different email is sent, saying that there was an attempt to recover a password with that email

Email templates

There are two html email templates:

  • Email with link to password recovery for users in the application
  • Email saying that doesn’t exist a user with this email
    For each language there is a template with the language suffix
    Templates available in:
    {appPath}\GenioMVC\Content\Email