Jump to content

Password reset generation


Recommended Posts

I'm extending my ajax login system for my site and whmcs integration. I'm including a way to reset your password the same way WHMCS does it but was wondering if it's important how the temporary key is created?


I have already created most of the login system and it's working quite well... I am now just at the point of generating the new key but wondered if it matters how it's actually created. Should it be created using some part of the current hashed password held on an account or is it ok to generate a random string to be passed to the database?

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated