801 reset password
Created by: Tirokk
Authored by roschaefer Merged
🍰 Pullrequest
Implement a basic password reset flow. I did not follow a security best practice here: You should ask the user for her username. That way, the account is safe even if an attacker has access to the email inbox. Reason for not implementing was that our users cannot choose their own slug at the moment. Therefore I believe we would make the whole flow pretty unusable if we ask for sth. that the user never changed and probably does not remember.
Issues
- Close #801 (closed)
Todo
-
None