Every now and then, I get a complain from my users that password reset link is expired for them and they get confused. and I dont exactly know what is the reproduction steps. I thought maybe they send the password reset email twice at once and mistakenly click on the old (first email) link. But when I did this, both links worked correctly. When exactly the link expires?
While I’d say that an expired password reset link is not really a big issue (you can just request a new one), I do agree that it would make sense to include some expiry information in the relevant email templates. I was unable to find out that information though.
The default is 48 hours. You can change the validity period with the email token valid hours site setting.
私のユーザーの一人がこの問題を抱えているようです。彼はパスワードのリセットを試みましたが、成功せず、私にメールを送りました:
メールを待って、すぐにリンクを使いましたが、これまでのところ、どちらも情報が古く期限切れだと返信されました。
彼のコンピュータの時刻は合っていますか?サーバーの時刻は合っていますか?