db4cb1dd4d
As an hardening measure we should expire password reset tokens after 12h and if the user has logged-in again successfully after the token was requested. |
||
|---|---|---|
| .. | ||
| lostcontroller.php | ||
db4cb1dd4d
As an hardening measure we should expire password reset tokens after 12h and if the user has logged-in again successfully after the token was requested. |
||
|---|---|---|
| .. | ||
| lostcontroller.php | ||