Password Reset Emails Timeout Setting?

bobc02

• September 19, 2019 17:57

When I create a new email address, and select the alternate email option, the new users do get the "Welcome to your new account " email. But, often, the link expired. How can I increase the expired link timeout? I've looked in several places, including Tweak Settings > Email, but not seeing anything for timeout. Thanks,

• 

  cPanelLauren

  • October 02, 2019 19:00

  The time limit set there is not modifiable - how long are they waiting to modify the password? Or better how soon are you seeing the link expire?

  0
• 

  bobc02

  • October 02, 2019 20:35

  It was expired within 24 hours. Two users waited until the next day to respond, and the links expired by then.

  0
• 

  cPanelLauren

  • October 09, 2019 19:00

  Hi @bobc02 I discussed this with some of the product devs and they're actually thinking that the session more than likely timed out before the user clicked the link, unfortunately in that case without knowing exactly what happened in the background it's hard to tell why/how to avoid it.

  0
• 

  bobc02

  • October 09, 2019 19:24

  Hi @cPanelLauren When you say "session more than likely timed out", is this the timeout for the password reset session? Or, some other session? What is the value of the timeout? Thanks.

  0
• 

  cPanelLauren

  • October 15, 2019 15:10

  Hello @bobc02 That'd be the PHP session which I believe would include the whostmgr session associated with the reset link - it's unlimited but I was actually thinking if garbage collection (session.gc) ran during that time it would have cleared that session from tmp dependent on the age.

  0
• 

  bobc02

  • October 15, 2019 19:59

  Hi @cPanelLauren, I'm not doing anything in cPanel, other than adding a new email account. So I don't really know anything about garbage collection. I keep cPanel up, and go about my business. The next day I hear from my user that they tried to set their password, but the link expired. My work-around is to get the user on the phone, then go through the account setup. They get the verification email while we're on the phone, and the link has not yet expired, so it works. But, this is too cumbersome. If you had a temp email address to provide me, I could add an account using it as an alternate. Then you'd get the email that my user's get with the expired link, if you wait a few hours. Thanks,

  0
• 

  cPanelLauren

  • October 15, 2019 20:52

  Hi @bobc02 I can't do that over the forums but what I would suggest so that we can test this would be to open a ticket. You can do this with the instructions in my signature. Please update this thread with the ticket ID should you go that route, so that we can update here what the issue was and the solution. Thanks!

  0
• 

  pmjg

  • March 27, 2020 12:29

  Hello, I Have same problem, someone already found any solutions about this? Thanks!

  0
• 

  pmjg

  • March 27, 2020 12:34

  I did some tests and the only thing I found was: if the user clicks on the link a few times and does not create the password, he will be blocked for 1 hour. But the total useful life of the link has not yet been discovered.

  0

Please sign in to leave a comment.