Password reset without entering email (ASP.NET Identity)
NickName:eulercode Ask DateTime:2014-12-09T05:12:35

Password reset without entering email (ASP.NET Identity)

Current ASP.NET Identity password reset (through email verification) requires a user to enter e-mail and a new password to be reset. However, in most cases of a password reset, only a new password is required. How could this be done?

I found that the user id is found by getting the email, e.g.:

var user = await UserManager.FindByNameAsync(model.Email);

Is it possible to get the user id directly from the CallbackUrl of the password reset as it contains the user id? or is there any better alternative approach?

Copyright Notice:Content Author:「eulercode」,Reproduced under the CC 4.0 BY-SA copyright license with a link to the original source and this disclaimer.
Link to original article:https://stackoverflow.com/questions/27367023/password-reset-without-entering-email-asp-net-identity

Answers
RandomUs1r 2014-12-08T21:16:51

How I've handled this in the past is correlating the reset password URL to the reset password function with a timeout. \n\nWorkflow:\n\nUser clicks forgot password > email is sent with a link containing a GUID > Owner of email clicks on link > asp.net page reads GUID from URL > page checks if request is still within timeout limit > user enters a new password & confirms it.",

Products recommended by Amazon
More >>>
SanDisk 128GB microSDXC-Card, Licensed for Nintendo-Switch - SDSQXAO-128G-GNCZN
SanDisk 128GB microSDXC-Card, Licensed for Nintendo-Switch - SDSQXAO-128G-GNCZN
 HUANUO Dual Monitor Stand - Adjustable Spring Monitor Desk Mount Swivel Vesa Bracket with C Clamp, Grommet Mounting Base for 13 to 27 Inch Computer Screens - Each Arm Holds 4.4 to 14.3lbs
HUANUO Dual Monitor Stand - Adjustable Spring Monitor Desk Mount Swivel Vesa Bracket with C Clamp, Grommet Mounting Base for 13 to 27 Inch Computer Screens - Each Arm Holds 4.4 to 14.3lbs
 AMD Ryzen 5 5600X 6-core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler
AMD Ryzen 5 5600X 6-core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler
 Timberland Men's 6-Inch Premium Waterproof Boot
Timberland Men's 6-Inch Premium Waterproof Boot
More about “Password reset without entering email (ASP.NET Identity)” related questions
Password reset without entering email (ASP.NET Identity)

Current ASP.NET Identity password reset (through email verification) requires a user to enter e-mail and a new password to be reset. However, in most cases of a password reset, only a new password is

Show Detail
ASP.net Identity reset password without a reset token

I want to use asp.net Identity reset password without a reset token. Just enter username and new password. Is this possible? I am using webforms.

Show Detail
Reset ASP.NET Identity password fails

I'm using ASP.NET MVC5 Identity and want users to be able to reset their password just by entering their email. There is only a fixed number of users and they are already set up, including an email

Show Detail
ASP.NET Identity reset password

How can I get the password of a user in the new ASP.NET Identity system? Or how can I reset without knowing the current one (user forgot password)?

Show Detail
ASP.NET MVC 5 Identity change password as administrator without email

If you have an ASP.NET MVC 5 site configured without email confirmation, how can a password reset be performed by an administrator? I can write a console app which resets the password in the datab...

Show Detail
Webforms ASP.NET Identity system reset password

How can I get the password of a user in the new ASP.NET Identity system using webforms? Or how can I reset without knowing the current one (user forgot password)?

Show Detail
ASP.NET Identity 2.1 - Password Reset Invalid Tokens

ASP.NET Identity is returning an 'Invalid token.' response when resetting a password for users. I've tried the following: URL Encode the code before sending email URL Encode & Decode the code

Show Detail
Token invalid on reset password with ASP.NET Identity

I've implemented ASP.NET Identity in my MVC application by copying the code from the VS 2013 templates. The basic thing is working, but I couldn't get the Reset Password to work. When I show the "f...

Show Detail
Token invalid on reset password with ASP.NET Identity

I've implemented ASP.NET Identity in my MVC application by copying the code from the VS 2013 templates. The basic thing is working, but I couldn't get the Reset Password to work. When I show the "f...

Show Detail
How to Reset Password without entering email field

I'm creating a reset password with the help of the internet I'm able to make it function, but it needs to input an email address in the email field. I want to hide the email field and only the pass...

Show Detail