34 lines
1.6 KiB
Text
34 lines
1.6 KiB
Text
|
|
=== Forgot Password
|
|
|
|
If you enable it, users are able to reset their credentials if they forget their password or lose their OTP generator.
|
|
Go to the `Realm Settings` left menu item, and click on the `Login` tab. Switch on the `Forgot Password` switch.
|
|
|
|
.Login Tab
|
|
image:{project_images}/login-tab.png[]
|
|
|
|
A `forgot password` link will now show up on your login pages.
|
|
|
|
.Forgot Password Link
|
|
image:{project_images}/forgot-password-link.png[]
|
|
|
|
Clicking on this link will bring the user
|
|
to a page where they can enter in their username or email and receive an email with a link to reset their credentials.
|
|
|
|
.Forgot Password Page
|
|
image:{project_images}/forgot-password-page.png[]
|
|
|
|
The text sent in the email is completely configurable. You just need to extend or edit the theme associated with it.
|
|
See the link:{developerguide_link}[{developerguide_name}] for more information.
|
|
|
|
When the user clicks on the email link, they will be asked to update their password, and, if they have an OTP generator
|
|
set up, they will also be asked to reconfigure this as well. Depending on the security requirements of your organization
|
|
you may not want users to be able to reset their OTP generator through email. You can change this behavior by
|
|
going to the `Authentication` left menu item, clicking on the `Flows` tab, and selecting the `Reset Credentials` flow:
|
|
|
|
.Reset Credentials Flow
|
|
image:{project_images}/reset-credentials-flow.png[]
|
|
|
|
If you do not want OTP reset, then just chose the `disabled` radio button to the right of `Reset OTP`.
|
|
|
|
NOTE: Be sure to leave Update Password enabled on the Required Actions tab. Otherwise, Forgot Password does not work.
|