Last post Apr 20, 2008 11:28 PM by albertpascual
Apr 20, 2008 10:31 PM|FrostedCore|LINK
I'm using a different way to recover user password first in the recover page I use the recover password control to investigate the identity, then after he answer the user name
and answer, I override the send mail, and I send him link instead of new password and this is really great way, the link I send him, is the web site root, and ResetPassword page, that page take as a parameter the user ID, so this is problem #1, I need to encrypt
the url, so in Recover page before sending him the I get the id encrypt it and concatinate it with ResetPassword page, and then mail it
Problem #1, Encrypt and Decrypt the URL
When he click the link, he will directed to the page, the page will decrypt the url, and I get the ID, then form more security, the user have to answer the question again,
so i use his ID, to get his name and question, place it in step 1 in wizard control, user will answer the question, now I want to check if his answer is correct or not
Problem #2 Membership class don't provide the Password answer to check it, however there a method to get password, and it take the answer, but I don't want the user see step
#2 unless he provide the correct answer, also this method will success only if my password not hashed?!, I can't find a way to validate his answer!!
Any idea please, on how to encrypt the url and how to get Password Answer?
Apr 20, 2008 11:09 PM|albertpascual|LINK
To encrypt and decrypt the URL you can use this:
Hope this helps for your #1
Apr 20, 2008 11:27 PM|FrostedCore|LINK
Really brilliant, thanks
and for #2 i solve it as follow,
Thanks a lot
Apr 20, 2008 11:28 PM|albertpascual|LINK
No problem and you got the second answer, thanks for posting it so other people looking for that can find solutions.