Password Recovery

MAdams · #1 (**permalink**) April 26th, 2010, 11:03 AM

I am new to ASP.Net and have been going through the book trying to figure out why my email does not include the new password after a user has requested a reset. I am using the PasswordRecovery control, with hashed passwords. I am assuming the control is suppose to send the new password automatically?? I get it to change the password and send the email, but does not include the new password. I think the web config is set up properly

Code:

<system.net>
     <mailSettings>
         <smtp deliveryMethod="Network" from="no_reply@kresa.org">
           <network defaultCredentials="true" host= "exchange.Kresa.org"
              password="" userName="" />     
         </smtp>   
     </mailSettings> 
   </system.net>

Any help would be appreciated.

Imar · #2 (**permalink**) May 1st, 2010, 04:28 AM

Hi there,

So what does the e-mail include? Can you show an example? And how does your code for the recovery control look?

Imar

MAdams · #3 (**permalink**) May 3rd, 2010, 04:40 PM

Hi,
I fixed one problem....I had custom text for the email message which was overriding the message that included the password. So, I get the password now in the email. But when I return to the login screen, it will not accept the new password.

Any ideas??
Thanks

Imar · #4 (**permalink**) May 3rd, 2010, 04:53 PM

Maybe you're using a password from an earlier attempt and it's been reset by now?

---------------------------------------------------------------------------------------------------------------------
Imar Spaanjaars
http://Imar.Spaanjaars.Com
Follow me on Twitter.

Everyone is unique, except for me.
Author of Beginning ASP.NET 4 : in C# and VB, Beginning ASP.NET 3.5 : in C# and VB, and ASP.NET 2.0 Instant Results.
While typing this post, I was listening to: Paradise Circus by Massive Attack (From the album: Heligoland) What's This?

MAdams · #5 (**permalink**) May 6th, 2010, 07:58 AM

No, I don't think that is it. I change the password, I instantly get the email, I navigate to that- cut and past the new password and enter it on the login screen and it tells me the password is not correct. I thought maybe it was a cookie issue, but I have cleared those and restarted the browser. I am stumped.

Imar · #6 (**permalink**) May 6th, 2010, 08:03 AM

Me too. This has always worked for me....

Imar

Imar · #7 (**permalink**) May 6th, 2010, 08:04 AM

Oh, maybe the account is blocked in the database?

Imar

MAdams · #8 (**permalink**) May 6th, 2010, 08:05 AM

How would it be blocked and how would I fix that?

Imar · #9 (**permalink**) May 6th, 2010, 08:21 AM

It can be blocked when you use an invalid password too many times.

Take a look at columns such as IsLockedOut and LastLockoutDate of the aspnet_Membership table.

Does this book not talk about this as well?

Imar

MAdams · #10 (**permalink**) May 6th, 2010, 09:14 AM

Lock out doesn't seem to be the problem. I am able to sign in then change the password and after the first attempt it doesn't let me use the new hashed password from the email message.

The book hasn't been very helpful at all on this subject. There needs to be a troubleshooting section for people like me that will have some kind of problem with it.

Need to download code?

Navigation