Closed tdewolff closed 10 years ago
This feature is essential. We should even consider doing this before the first release.
never meant to close in the first place xD
For this we need the user's email address. We could omit the username and use the email address to log in and identify a user instead.
Pretty much implemented, uses Bcrypt for hashing the token so that even when hackers can read the DB they can't recover passwords. Only needs an email to be send, we need an email library.
Needed: