Kentico 7. Password reset issue

Killian Walsh asked on July 2, 2018 11:45

Hi, I know this is an old version of the CMS now but a client has been having issue recently with password reset functionality. Users will choose to reset their password from the front end of the site, receive the email and click the link. They will see a message on screen saying "this link is no longer valid". However the valid period (12 hours) has not expired. The event log show an error as follows: (stack trace is empty)

Source: Reset password control
Event code: VALIDATIONFAIL
Description: Message: Request identifier hasn't been found.

This seems very similar to an issue posted here: https://devnet.kentico.com/forums/f65/fp23/t39763/reset-password-errors but there is no resolution posted on that thread.

Can anyone shed some light on what might be the cause? Thanks

Correct Answer

Juraj Ondrus answered on July 2, 2018 12:59

Isn't it possible that the users have some link checking software which checks the link and makes it invalid? The link is valid to be used only once. Certain types of web filtering software may interfere with password reset links. If an automatic tool accesses the password reset page before it is opened by the actual user's client, the password recovery request will be invalid.

0 votesVote for this answer Unmark Correct answer

   Please, sign in to be able to submit a new answer.