Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
tutorial:adm:modules_pwdreset [2023/11/09 11:57]
polakb 		tutorial:adm:modules_pwdreset [2023/11/09 11:57] (current)
polakb
Line 11: Line 11:
 Users can restore their forgotten password via the password reset module. User can start the process on CzechIdM´s login page by clicking on "Forgotten password" link. In next step user it is required to enter an account identifier. Users can restore their forgotten password via the password reset module. User can start the process on CzechIdM´s login page by clicking on "Forgotten password" link. In next step user it is required to enter an account identifier.
  
-{{  .:reset_form_eng.png   }}+{{  .:reset_form_eng.png  }}
  
 For now, the identity's email or login are supported and admin can use a configuration property to select which of these (or both) can be used. User then confirms password reset request by clicking on submit button. CzechIdM then generates validation token and stores it in the password reset request along with the time of creation. Validation token is then being sent to user via notification. Administrator can edit the notification using standard CzechIdM notification functionality. Notification is sent to topic "passwordResetRequestCreated" with SUCCESS level. For now, the identity's email or login are supported and admin can use a configuration property to select which of these (or both) can be used. User then confirms password reset request by clicking on submit button. CzechIdM then generates validation token and stores it in the password reset request along with the time of creation. Validation token is then being sent to user via notification. Administrator can edit the notification using standard CzechIdM notification functionality. Notification is sent to topic "passwordResetRequestCreated" with SUCCESS level.
  
-{{  .:email_pwd_eng.png   }}+{{  .:email_pwd_eng.png  }}
  
 After clicking on the link, which contains verification token in GET parameters, user is asked to fill in new password. If the password change succeeds (password validation is OK and user can change their own password), then the user can log in to CzechIdM with a new password. After clicking on the link, which contains verification token in GET parameters, user is asked to fill in new password. If the password change succeeds (password validation is OK and user can change their own password), then the user can log in to CzechIdM with a new password.
  
-{{  .:set_pwd_eng.png   }}+{{  .:set_pwd_eng.png  }}
  
 ===== Password generating ===== ===== Password generating =====
Line 75: Line 75:
 ===== FAQ ===== ===== FAQ =====
  
-  * 
 ==== How to allow password reset in CAS? ==== ==== How to allow password reset in CAS? ====
  
 For CAS docker set env variables: For CAS docker set env variables:
 <code> <code>
 +
 - CAS_CUSTOM_FRONTEND_PASSWORDRESET_DISPLAY=true - CAS_CUSTOM_FRONTEND_PASSWORDRESET_DISPLAY=true
 - CAS_CUSTOM_FRONTEND_PASSWORDRESET_LINK=<idm url>/#/password-reset - CAS_CUSTOM_FRONTEND_PASSWORDRESET_LINK=<idm url>/#/password-reset
  • by polakb