Right on. This is what I have set up. If user forgot password they simply enter their email and it sends out a confirmation, no changes made to any records. The email is checked for an account, if found send out the email, no account tell user to register.
Email link contains a unique 1 time only url to confirm the email if valid then direct to page to allow them to change password and login in and delete the confirmation record. The forgot password page also has resend option if they did not get the email. It deletes the previous unique validate URL and creates a new one so the original email is no longer any good. Thanks Dave -----Original Message----- From: BrendonKoz [mailto:brendon...@hotmail.com] Sent: November-14-09 12:52 AM To: CakePHP Subject: Re: If User changes info? The 2nd part of my explanation was so that if they forget it, but then remember it they can still login. It's an extra failsafe in case the re-activation email gets lost in the shuffle. On Nov 12, 4:48 pm, "Dave" <make.cake.b...@gmail.com> wrote: > I am using auth so I like the idea of comparing the values that way. > > Not quite sure I follow the logic in the additional field for "forgot > password". If they forgot their password they would not be logged in. > My forgot function allows them to enter their email and if found will > send a confirmation/reset token to that address when they click on the > link it allows them to select a new password and login. > > All I am doing here is when a user is editing their profile if they > change their email address I want to check before saving that if they > did change the email an confirmation email get sent and they simply > have to confirm it before being able to log back in. > > Will work with the Auth compare as it seems logical. > > Thanks, > > Dave > > > > -----Original Message----- > From: BrendonKoz [mailto:brendon...@hotmail.com] > Sent: November-12-09 4:48 PM > To: CakePHP > Subject: Re: If User changes info? > > If you're using the Auth Component, by default it stores all User > field values in the user's session. You could compare the session > value with the submitted value in the beforeSave method. > > andrzejborkowski's suggestion could be better, however, depending on > the instance. If you're using a "forgot password" option, using a > secondary field to store the new password (rather than overwriting the > original instantly), it won't lock the user out until they activate > the new password when checking the re-activation email. > > On Nov 12, 12:30 pm, "andrzejborkow...@gmail.com" > <andrzejborkow...@gmail.com> wrote: > > u should add `email_temp` field in users table and overwrite `email` > > after click information email i this is best method.. > > > On 12 Lis, 17:49, "Dave" <make.cake.b...@gmail.com> wrote: > > > > What is the best way to determine if a user changes a specific > > > field when updating account? > > > > I want to suspend the account when a user changes their email > > > address and send out a confirmation email that they will have to > > > confirm the address. I could make a separate form but that seems > > > like over kill to make a new form just for 1 field. > > > > I was thinking beforeSave() compare the new data field with the > > > record if it matches no change so carry on....if its different > > > then do what i need to do , send email...? > > > > Anyone have ideas? Simple approach? > > > > Thanks, > > > > Dave- Hide quoted text - > > > - Show quoted text - > > -- > > You received this message because you are subscribed to the Google > Groups "CakePHP" group. > To post to this group, send email to cake-...@googlegroups.com. > To unsubscribe from this group, send email to > cake-php+unsubscr...@googlegroups.com. > For more options, visit this group athttp://groups.google.com/group/cake-php?hl=. > > No virus found in this incoming message. > Checked by AVG -www.avg.com > Version: 9.0.707 / Virus Database: 270.14.60/2496 - Release Date: > 11/12/09 > 04:08:00- Hide quoted text - > > - Show quoted text - -- You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to cake-...@googlegroups.com. To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cake-php?hl=. No virus found in this incoming message. Checked by AVG - www.avg.com Version: 9.0.707 / Virus Database: 270.14.60/2496 - Release Date: 11/13/09 14:52:00 -- You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to cake-...@googlegroups.com. To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cake-php?hl=.
