I have been tearing my hair out getting this thing to do what I want it to and I think I've finally succeeded.
This is the most secure password lookup mod I can think of.
When a user logs in, he enters just his username and email address. The script sends him a random password to the email address. This assures you that the email address he entered is a real one.
The password should arrive very quickly and the user logs in.
If the user loses his password, he enters his email address again and the script generates a new password.
All passwords are encrypted on the system.
There are several optional components to the mod which you can add if you wish.
The first pulls the email address from the password file so that the user does not need to enter it again when he adds a record.
The second allows the user to change his email address. You can also set things up so that the user's email address in his record(s) will also be changed.
The third allows the user to change his password.
The admin display is also modified so that you can change the password or email address for a user yourself. Again, when an email address is changed in the password file, the user's email address is also changed in the .db file.
You can test the functions (except admin) by going to
http://www.jpdeni.com/cgi-bin/password/db.cgi
You can pick up the mod at
http://www.jpdeni.com/dbman/secure_lookup.txt
Please let me know if you have any problems. I have tried to make the mod as easy to use as I could and I have tested it. But there could be something I didn't think of.
------------------
JPD
[This message has been edited by JPDeni (edited July 13, 1999).]
This is the most secure password lookup mod I can think of.
When a user logs in, he enters just his username and email address. The script sends him a random password to the email address. This assures you that the email address he entered is a real one.
The password should arrive very quickly and the user logs in.
If the user loses his password, he enters his email address again and the script generates a new password.
All passwords are encrypted on the system.
There are several optional components to the mod which you can add if you wish.
The first pulls the email address from the password file so that the user does not need to enter it again when he adds a record.
The second allows the user to change his email address. You can also set things up so that the user's email address in his record(s) will also be changed.
The third allows the user to change his password.
The admin display is also modified so that you can change the password or email address for a user yourself. Again, when an email address is changed in the password file, the user's email address is also changed in the .db file.
You can test the functions (except admin) by going to
http://www.jpdeni.com/cgi-bin/password/db.cgi
You can pick up the mod at
http://www.jpdeni.com/dbman/secure_lookup.txt
Please let me know if you have any problems. I have tried to make the mod as easy to use as I could and I have tested it. But there could be something I didn't think of.
------------------
JPD
[This message has been edited by JPDeni (edited July 13, 1999).]