Member password reminder: Membership provider does not support password retrieval or reset.
Hi,
I have a simple .NET membership log-in control on my site and want to include a password reminder facility too. However, when I implement a standard .NET password recovery user control I get the following error when submitting:
Membership provider does not support password retrieval or reset.
Passwords are hashed and you cannot recover hashed password. You could write implement password recovery that resets the password to something random and new and that can be sent out.
Ah, thanks Ismail/Benjamin. Thinking about it, wasn't there a package which provided membership controls? I vaguely remember using it, but can't find it in the package repo.
Its quite old and it wont handle the hashed password. You could hack the code for the password recover and change it to password reset, unless in your web.config password is not set to hashed then you could recover but given you get error message it must be hashed.
Member password reminder: Membership provider does not support password retrieval or reset.
Hi,
I have a simple .NET membership log-in control on my site and want to include a password reminder facility too. However, when I implement a standard .NET password recovery user control I get the following error when submitting:
Can anyone suggest how to get this working?
Thanks
+1 need that for my next site as well
I'm investigating updating the membership provider and will keep people posted accordingly.
The current codebase supports custom membership providers but not in a robust way, and needs to.
Benjamin
Dan,
Passwords are hashed and you cannot recover hashed password. You could write implement password recovery that resets the password to something random and new and that can be sent out.
Regards
Ismail
Ah, thanks Ismail/Benjamin. Thinking about it, wasn't there a package which provided membership controls? I vaguely remember using it, but can't find it in the package repo.
Dan,
Its quite old and it wont handle the hashed password. You could hack the code for the password recover and change it to password reset, unless in your web.config password is not set to hashed then you could recover but given you get error message it must be hashed.
Regards
Ismail
I am working on password retrieval at the moment and changing the web.config setting to the following worked for me:
<add name="UmbracoMembershipProvider" type="umbraco.providers.members.UmbracoMembershipProvider" enablePasswordRetrieval="true" enablePasswordReset="true" requiresQuestionAndAnswer="false" defaultMemberTypeAlias="TestType" />
is working on a reply...