Alright, so the account page is now (seemingly) correctly allowing you to edit changes in the database directly in the fields. I removed the password and password conf fields because those shouldn't be included in casual profile updating (You couldn't read them anyway). This did some funky thang to the zip code css positioning but I figured I would let you handle da css cause I am bad at it.
What I am thinking is that right below the stuff we have on the account page now there will be a from section for reseting your password that has 4 inputs:
old password
new password
new password confirmation
change password submit button
On a similar note I have gone ahead and started the process for requesting a password to be changed and that looks a lil sumthin like this (this is only for if you forgot yours but changing it on purpose is even easier).
How reseting a password works:
User requests for password to be reset from loggin page by providing their email
Automated email is sent with a link that will reset their password for them. That link will look like this: http://localhost:8888/resetpassword.phpid=1&reset_code=82ab3169d0a3774. The reset_code value is the last 15 chars of their previous password sha1. They must click this link for the password to be actually reset.
User clicks link and is automatically logged in and redirected to account.php#reset_password?temp=L3Uss8Uz. User is then asket to change their password to something more memorable than: L3Uss8Uz
I haven't drafted up the email theat will be sent yet but I made a little test and its working (again seemingly) .
Im going to be gone rafting this weekend so the repo is all yours! I think the biggest thing to focus on is a front end form for reseting the password manually (i.e. changing from a current password to a new one) on the account page. The second thing is making a "forgot password" link on the sign in page that either redirects to a page where they can enter in their email or (probably preferably) has some nice looking javascript that reveals a previously hidden input where they can do so.
After that just run with whatever todos you feel inclined. It would be cool to have the whole account page done soon (with badges and all etc.).
Alright, so the account page is now (seemingly) correctly allowing you to edit changes in the database directly in the fields. I removed the password and password conf fields because those shouldn't be included in casual profile updating (You couldn't read them anyway). This did some funky thang to the zip code css positioning but I figured I would let you handle da css cause I am bad at it.
What I am thinking is that right below the stuff we have on the account page now there will be a from section for reseting your password that has 4 inputs:
On a similar note I have gone ahead and started the process for requesting a password to be changed and that looks a lil sumthin like this (this is only for if you forgot yours but changing it on purpose is even easier).
How reseting a password works:
I haven't drafted up the email theat will be sent yet but I made a little test and its working (again seemingly) .
Im going to be gone rafting this weekend so the repo is all yours! I think the biggest thing to focus on is a front end form for reseting the password manually (i.e. changing from a current password to a new one) on the account page. The second thing is making a "forgot password" link on the sign in page that either redirects to a page where they can enter in their email or (probably preferably) has some nice looking javascript that reveals a previously hidden input where they can do so.
After that just run with whatever todos you feel inclined. It would be cool to have the whole account page done soon (with badges and all etc.).
Sound good?