server/core/lostpassword/controller
Lukas Reschke db4cb1dd4d Expire token after 12h and if user logged-in again
As an hardening measure we should expire password reset tokens after 12h and if the user has logged-in again successfully after the token was requested.
2015-08-22 20:42:45 +02:00
..
lostcontroller.php Expire token after 12h and if user logged-in again 2015-08-22 20:42:45 +02:00