##// END OF EJS Templates
password-reset: strengthten security on password reset logic....
password-reset: strengthten security on password reset logic. - generate token that has special password reset role - set 10 minut expiration on the token - add some sleep to prevent bruteforcing attacks - use implicit messages to prevent user email discovery attacks
marcink -
r1471:9ea7077d default
Show More
Name Size Modified Last Commit Author
/ rhodecode / authentication
plugins
tests
__init__.py Loading ...
base.py Loading ...
interface.py Loading ...
registry.py Loading ...
routes.py Loading ...
schema.py Loading ...
views.py Loading ...