Force User Password Change?

[TennShadow]

With the recent hacks is there a way I can force all users to change their password on next login?

thanks,

Keith

[Kyle]

It is possible, the question... do you want to really force them or let them bypass? Or I can do both with the config setting?

[TennShadow]

It is possible, the question... do you want to really force them or let them bypass? Or I can do both with the config setting?

Kyle,

Thanks for the reply. What do you mean "let them bypass"?

I just wanted to be overly cautious and force all users to change their passwords just in case data was stolen. From what I can tell only the index.php file was replaced on our site. I deleted all the rogue files from what I can tell.

[Kyle]

Kyle,

Thanks for the reply. What do you mean "let them bypass"?

I just wanted to be overly cautious and force all users to change their passwords just in case data was stolen. From what I can tell only the index.php file was replaced on our site. I deleted all the rogue files from what I can tell.

Bypass like if they don't want to change their password. But I'll put this as a setting, if you don't want to really force.

Give me today to work on this and I'll post the module in my forum.

[TennShadow]

Thanks Kyle. That would be helpful.

[Kyle]

Module is in the final stages, just only need to do some testing and touch ups.

How it works

When you first login, the module will check a table with the module to see if the pilot has changed their password.

If, not, then it will redirect them to the module page, logs them out, and shows them the change password page.

It will keep showing the page till they change their password

The thing, you will only need to add a line of code in your Login.php.

I should have it out by late tonight.