locked
code sent with forgotten password link RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote
    User-2012457684 posted

    Does anyone know where it is storing the code that is sent with the reset password and for that matter also the email confirmation?

    I am trying to use a reset password function outside of OWIN and am curious where it is being stored.  

     

    Monday, February 18, 2019 5:14 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote
    User475983607 posted

    mj1223

    Does anyone know where it is storing the code that is sent with the reset password and for that matter also the email confirmation?

    I am trying to use a reset password function outside of OWIN and am curious where it is being stored.  

     

    You mean Identity not OWIN right?  OWIN is a specification.  Anyway, the Identity API has this logic which is cached in a cookie.

    Monday, February 18, 2019 6:07 PM
  • Question
    Sign in to vote
    0
    Sign in to vote
    User-2012457684 posted

    Since this is all in an API,  how do I access that cookie?

    Monday, February 18, 2019 6:16 PM
  • Question
    Sign in to vote
    0
    Sign in to vote
    User475983607 posted

    mj1223

    Since this is all in an API,  how do I access that cookie?

    ASP Identity has token providers which allows the API to issue and validate tokens such as email confirmation.  Just getting access to the cookie is not enough there is also a link involved which has the token.  The API validates that the token belongs to the user and the token purpose matches the user.

    Use the Identity API if you want to use these features.  Otherwise, you need to write your own API.

    Monday, February 18, 2019 6:36 PM