Your best option is to reset the user's password and send him the new one. Put a 24 hour expiration on it, so he has to change it soon.
ThePhile doesn't support expiration dates, but you can change it and send him the new one.
As you probably know, there's no way to unencrypt passwords used in ThePhile because they are a 1-way hash.
Eric
|