Closed kevinmichaelchen closed 6 years ago
The PasswordReset table should contain a UUID primary key (which doubles as the code), a used boolean, a usable boolean, and a expiration timestamp. The expiration should be set to no more than 30 mins after the email is sent.
The PasswordReset table should contain a UUID primary key (which doubles as the code), a used boolean, a usable boolean, and a expiration timestamp. The expiration should be set to no more than 30 mins after the email is sent.