[feature-proposal] Forgot password improvements
Ewout ter Haar
ewout at usp.br
Tue Nov 5 20:45:50 BRST 2013
On Tue, Nov 5, 2013 at 7:46 PM, Rodrigo Souto <rodrigo at colivre.coop.br> wrote:
> The user A has a cpf 123 and the user B as an rg 123. There is the
> plugin X that includes de verification by cpf and the plugin Y that
> includes the verification on rg. When the user A try to recover his
> password, he might, depending on the inner logics, be confused with the
> user B.
>
If the logic than sends two reset-emails, one to user A and one to
user B, the worst that can happen is that user B will be annoyed, or
confused.
Maybe not too bad a price to pay for increased usability?
Another question is the risk for large amount of database queries. I
guess that even with 100k users a lookup in a few table columns would
not be very onerous, right?
Ewout
More information about the Noosfero-dev
mailing list