Last post Jul 31, 2019 10:41 AM by Mikesdotnetting
Jul 31, 2019 09:09 AM|daleman|LINK
Right now, I'm using VS 2017, .net core v2.x & standard template for Authentication. I am trying to prevent user from using any of their old passwords when user is trying recovery password.
Is there any idea how to start doing this idea ? or any link related with this idea.
Jul 31, 2019 10:41 AM|Mikesdotnetting|LINK
I am trying to prevent user from using any of their old passwords when user is trying recovery password.
There is nothing in the standard template to cater for this requirement. If you really want to implement this, you can copy the existing password hash into a separate table, and query that against the password the user is trying to reset to. The table can
be called OldPasswords, and only needs the UserId as a key, and the hashed password.