You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
ffb84283c2
The improvements are: - Die with an explicit message when a user is trying to reset his lost password and the option is disabled in config - Redirect user to main page after password change using relative URL - Don't leak info whether user exists or has recovery info defined - Throttle password reset requests to prevent brute force attacks - Show phone/alt email fields in mailbox/admin edit form only when the password reset option is enabled - Make database upgrade code compatible with other databases types - Use the existing password generator to generate OTP. It is now stored in database, unique to each user, valid only for 1 hour and can only by used once. |
7 years ago | |
|---|---|---|
| .. | ||
| AdminHandler.php | 7 years ago | |
| AdminpasswordHandler.php | 10 years ago | |
| AliasHandler.php | 8 years ago | |
| AliasdomainHandler.php | 10 years ago | |
| CliDelete.php | 10 years ago | |
| CliEdit.php | 10 years ago | |
| CliHelp.php | 10 years ago | |
| CliScheme.php | 10 years ago | |
| CliView.php | 10 years ago | |
| Config.php | 11 years ago | |
| DomainHandler.php | 8 years ago | |
| FetchmailHandler.php | 8 years ago | |
| MailboxHandler.php | 7 years ago | |
| PFAHandler.php | 7 years ago | |
| VacationHandler.php | 8 years ago | |