Comments on: Reset Lost Passwords in CakePHP http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp get all his digital goodness 24/7 Mon, 08 Mar 2010 15:08:48 +0000 http://wordpress.org/?v=abc hourly 1 By: Mark-a-Spot » Blog Archive » Tools im Einsatz http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-1289 Mark-a-Spot » Blog Archive » Tools im Einsatz Thu, 04 Feb 2010 21:37:04 +0000 http://edwardawebb.com/?p=209#comment-1289 [...]  Basierend auf diesem Tutorial wurde eine Passwort-Reset-Komponente zum Laufen gebracht. Sie ähnelt dieser 1.1er Variante, die [...] [...]  Basierend auf diesem Tutorial wurde eine Passwort-Reset-Komponente zum Laufen gebracht. Sie ähnelt dieser 1.1er Variante, die [...]

]]> By: neel http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-1279 neel Mon, 11 Jan 2010 08:25:35 +0000 http://edwardawebb.com/?p=209#comment-1279 Nice tutorial. I am a newbie and want to learn the basics of cakephp. I am currently working on a Cakephp project. your tutorial help me alot to create the forgot password page. Nice tutorial. I am a newbie and want to learn the basics of cakephp. I am currently working on a Cakephp project. your tutorial help me alot to create the forgot password page.

]]> By: lyn http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-1100 lyn Mon, 04 May 2009 02:25:28 +0000 http://edwardawebb.com/?p=209#comment-1100 hello, can you help me how to make a reset password using the cakephp 1.1? I am trying to modify the code using the 1.1 but it doesn't work. Thanks hello, can you help me how to make a reset password using the cakephp 1.1? I am trying to modify the code using the 1.1 but it doesn’t work.

Thanks

]]> By: Nikhil http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-797 Nikhil Tue, 14 Apr 2009 08:12:43 +0000 http://edwardawebb.com/?p=209#comment-797 Thanks!!! I was thinking having a temp user database integrated with the token db. But that didn't fizzle out too well however. The solution of activated/non activated users seems to be great. I will try it out. Thanks again for the enlightenment ;). Will keep you updated on the same. Thanks!!! I was thinking having a temp user database integrated with the token db. But that didn’t fizzle out too well however. The solution of activated/non activated users seems to be great. I will try it out. Thanks again for the enlightenment ;) . Will keep you updated on the same.

]]> By: Eddie http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-781 Eddie Mon, 13 Apr 2009 20:51:52 +0000 http://edwardawebb.com/?p=209#comment-781 @Nikhil That is no problem, the basic ticket method can be used for any action. I use it on another site as a 1-time invitation between users. It all depends on where and how you call the Ticket component's methods. Seems there are a few options. You can add a 'Activated' field to your user's table, and only allow activated users to sign in. Or you can add the password as a hashed value to the the tickets table. this value can then be dropped directly into the user's table once they use the ticket. @Nikhil
That is no problem, the basic ticket method can be used for any action. I use it on another site as a 1-time invitation between users. It all depends on where and how you call the Ticket component’s methods.
Seems there are a few options. You can add a ‘Activated’ field to your user’s table, and only allow activated users to sign in. Or you can add the password as a hashed value to the the tickets table. this value can then be dropped directly into the user’s table once they use the ticket.

]]> By: Nikhil http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-777 Nikhil Mon, 13 Apr 2009 19:17:03 +0000 http://edwardawebb.com/?p=209#comment-777 hello... Thats a very interesting tutorial you have there... I am trying to use it for my user registration forms.. Where in I want to validate the user information using a token/ticket.. however I have run into small problems (the below material may be slightly off - topic) .. it will be very nice if someone helps me out here What I have done is kind of integrated the newpassword and useticket function... In new password you make sure the user is logged in and then capture the data to reset the password... however... in my case the user is not logged in .. he can only log in if the token is verified... then how do i go abt it... capturing the earlier entered data... well I am stuck there... thanks in advance for any help rendered... hello…

Thats a very interesting tutorial you have there… I am trying to use it for my user registration forms.. Where in I want to validate the user information using a token/ticket.. however I have run into small problems (the below material may be slightly off – topic) .. it will be very nice if someone helps me out here

What I have done is kind of integrated the newpassword and useticket function… In new password you make sure the user is logged in and then capture the data to reset the password… however… in my case the user is not logged in .. he can only log in if the token is verified… then how do i go abt it… capturing the earlier entered data…

well I am stuck there… thanks in advance for any help rendered…

]]> By: Eddie http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-318 Eddie Thu, 26 Feb 2009 23:59:51 +0000 http://edwardawebb.com/?p=209#comment-318 @Joel Pearson Thanks for your feedback. The first comment refers to all tickets created for that action, which is saved as a hashed value. THis is in case a user requests multiple resets, the first use kills all the tickets. THe second area was overlooked, and limit should explicitly be set for a higher value, or no limit at all. I will update these areas when i have a chance @Joel Pearson
Thanks for your feedback.
The first comment refers to all tickets created for that action, which is saved as a hashed value. THis is in case a user requests multiple resets, the first use kills all the tickets.
THe second area was overlooked, and limit should explicitly be set for a higher value, or no limit at all.
I will update these areas when i have a chance

]]> By: Joel Pearson http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-295 Joel Pearson Mon, 23 Feb 2009 03:48:28 +0000 http://edwardawebb.com/?p=209#comment-295 Looking at your voidTicket function the comment seems weird. Because you say you will delete "ALL" tickets for "this email" but you pass the hash, which can only ever delete 1 ticket, because it is a unique column. Did you mean for the voidTicket to delete all tickets that have the same data (ie email address)? Because the hash doesn't have anything directly to do with the email address. If there are multiple tickets with the same data (email) only one of them is going to be deleted. /* * actually for logical reason well be indiscrimnate and clean ALL tockets for this email */ function voidTicket($hash){ $this->controller->Ticket->deleteAll(array('hash' => $hash)); } Also why does purgeTickets() have a "LIMIT 1"? So only 1 ticket is purged every time you run that function? If so maybe it should be called purgeTicket (note the s has gone). If it does only delete one at a time, is that just for performance reasons? function purgeTickets(){ $this->controller->Ticket->deleteAll('Ticket.expires <= now() LIMIT 1'); } Otherwise this looks pretty handy. Looking at your voidTicket function the comment seems weird.

Because you say you will delete “ALL” tickets for “this email” but you pass the hash, which can only ever delete 1 ticket, because it is a unique column.
Did you mean for the voidTicket to delete all tickets that have the same data (ie email address)? Because the hash doesn’t have anything directly to do with the email address. If there are multiple tickets with the same data (email) only one of them is going to be deleted.

/*
* actually for logical reason well be indiscrimnate and clean ALL tockets for this email
*/
function voidTicket($hash){
$this->controller->Ticket->deleteAll(array(‘hash’ => $hash));
}

Also why does purgeTickets() have a “LIMIT 1″? So only 1 ticket is purged every time you run that function? If so maybe it should be called purgeTicket (note the s has gone). If it does only delete one at a time, is that just for performance reasons?

function purgeTickets(){
$this->controller->Ticket->deleteAll(‘Ticket.expires <= now() LIMIT 1′);

}

Otherwise this looks pretty handy.

]]> By: Eddie http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-277 Eddie Fri, 20 Feb 2009 22:00:12 +0000 http://edwardawebb.com/?p=209#comment-277 @Kofi That is not necessary unless you omit the $components directive. Furthermore that would add a good deal of overhead to re-instantiate the class every time it is used rather than once while loading the controller. @Kofi

That is not necessary unless you omit the $components directive.

Furthermore that would add a good deal of overhead to re-instantiate the class every time it is used rather than once while loading the controller.

]]> By: kofi http://edwardawebb.com/programming/php-programming/cakephp/reset-lost-passwords-cakephp/comment-page-1/#comment-275 kofi Fri, 20 Feb 2009 17:14:43 +0000 http://edwardawebb.com/?p=209#comment-275 @Joe, Rexford and anyone having issues with the resetpassword view not displaying after hitting submit. You have make sure the Users controller is aware of the Ticket model and a Ticket instance exists in each controller action. Make sure to add the following lines: App::import('Model','Ticket'); $this->Ticket = new Ticket(); before the: if ($this->Ticket->save($data) ) call in the resetpassword action. You should repeat this in each method where a Ticket action is issued; specifically in the voidTicket($hash) and checkTicket($hash) methods in the TicketMaster Component. App::import('Model','Ticket'); $this->component->Ticket = new Ticket(); hope that helps. @Joe, Rexford and anyone having issues with the resetpassword view not displaying after hitting submit.

You have make sure the Users controller is aware of the Ticket model and a Ticket instance exists in each controller action. Make sure to add the following lines:

App::import(‘Model’,'Ticket’);
$this->Ticket = new Ticket();

before the:
if ($this->Ticket->save($data) )

call in the resetpassword action. You should repeat this in each method where a Ticket action is issued; specifically in the voidTicket($hash) and checkTicket($hash) methods in the TicketMaster Component.

App::import(‘Model’,'Ticket’);
$this->component->Ticket = new Ticket();

hope that helps.

]]>