WebAppSec/Secure Coding Guidelines: Difference between revisions

Jump to navigation Jump to search

WebAppSec/Secure Coding Guidelines (view source)

Revision as of 23:18, 27 August 2010

1 byte removed ,  27 August 2010
→‎Password Reset Functions
Line 39: Line 39:
The password reset page will accept the username and then send an email with a password reset link to the stored email address for that account.
The password reset page will accept the username and then send an email with a password reset link to the stored email address for that account.


The following message should be returned to the user regardless if the username or email address is valid.
The following message should be returned to the user regardless if the username or email address is valid:


   An email has been sent to the requested account with further information. If
   An email has been sent to the requested account with further information. If
Stephend
Confirmed users
9,511

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/249156"

Navigation menu