Software /
code /
prosody-modules
File
mod_password_reset/README.markdown @ 5243:d5dc8edb2695
mod_http_oauth2: Use more compact IDs
UUIDs are nice but so verbose!
The reduction in entropy for the nonce should be fine since the
timestamp is also counts towards this, and it changes every second
(modulo clock shenanigans), so the chances of someone managing to get
the same client_secret by registering with the same information at the
same time as another entity should be negligible.
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Sat, 11 Mar 2023 22:46:27 +0100 |
parent | 5081:660160fe97fa |
line wrap: on
line source
--- labels: - 'Stage-Alpha' summary: 'Enables users to reset their password via a link' rockspec: build: copy_directories: - password_reset ... Introduction ============ This module allows users to reset their password via a simple link to a web page. Reset links may be generated by an admin through their XMPP client using the ad-hoc command that this module provides. Alternatively other modules may reuse this module to generate links and e.g. send them via email to the user directly. A link is only valid for a single reset, and expires after a duration (24 hours by default). This module depends on Prosody's internal webserver. Compatibility ============= ----- ------- 0.10 Works ----- ------- trunk Works ----- -------