[Koha-bugs] [Bug 18616] The "Add forgot password link to OPAC" should allow patrons to use their library card number in addition to username
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Jul 19 12:49:02 CEST 2017
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=18616
--- Comment #16 from Fridolin SOMERS <fridolin.somers at biblibre.com> ---
(In reply to Fridolin SOMERS from comment #15)
> (In reply to Katrin Fischer from comment #14)
> > I feel like this would make this crucial feature much more useful as not all
> > libraries are not using the userid, but the cardnumber as primary
> > identification for the uses. Could be seen as an oversight of the initial
> > implementation.
> >
> > Could you consider backporting this, Fridolin?
>
> Yep since 16711 is in stable I will test this small patch
Whoooo, if borrower already has a password recovery.
After entering only login/cadnumber and submitting the page shows its email in
form and in link "Get new password recovery link".
Bug 18653 has not corrected this.
So in my opinion, login/cadnumber AND email should be mandatory to allow
password recovery. It is too dangerous for privacy and SPAM attacks.
Someone loosing its login/cadnumber or forgetting which email he gave must
directly contact the library.
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list