Brandon and I just made a discovery! thanks in part to Gaia’s deep linking, we were able to implement one of the alternative options that I discussed in the previous post. Instead of sending the GET string to the newPasswordSet.php page, it will be sent directly to the passwordChange page in the quietus consulting application. Then it can call the appropriate php file after they input the new password, and then either authorize them and reset their password, or tell them they aren’t allowed to reset this user’s password (the encrypted password authentication doesn’t match up)
We need designs for (but can make up the design ourselves, based on the login page…) a page to input the email to which the reset password info will be sent, and a page where the user can input their new password (two fields, new password and re-type password)
This is more of a memo than anything, letting people know what’s in the works.
