I'm new to magento. Currently i'm creating a ecommerce webstore using magento. As you know magento will send a reset password link if anyone forgets his/her passwords. I want the system generated password has to be send to the users not as password resetlink.
Plz help me to achieve this....
Thanks in advance.
The current 2 step password reset feature was introduced in 1.6, so you could look at porting the password reset code from an older version of Magento into your site. We've looked at doing the opposite (back-porting the new method to older Magento sites) and it's do-able. The current method is much better from a security perspective, so while what you want is possible, it's probably not advisable.
Related
I came back on stackoverflow after long time.I really need a help in migrating the pinnacle cart to magento1.x.I am migrating the customer data but I want customer can login in magento site with same credentials without reset the password.
Is it possible that customer can use the same credentials of pinnacle cart to Magento after migration.
any quick help will be appreciated.
Just need a little advice. I have a website based on CodeIgniter and using TankAuth and PHPass. I want to recode the website with another framework (Symfony 2).
Is there any way to allow user to log with their existing password or do I absolutely need to ask them to set a password again ?
Thank you very much :)
The best is to reset all the password and warn users through email or ask them to change the password with the new system.
It would be a tremendous user experience bless to have a universal login across various apps of my website. For now, I have a storefront of Magento and a community of IPS board. And I'm trying to integrate them into one universal login for my users.
IPS board offers a variety of login methods and one of them is External Database that enables me to integrate it with an external database for user details.
Fantastic! So I can link IPS with Magento's database for unified user credentials.
However, thus far I can only find the email field that is customer_entity.email.
My questions are:
What is the password hash field (table.field) in Magento?
How does Magento generate password hash? MD5? SHA1? What is the salt (I guess it's different by installation but where can I find it)?
As you can see from the attached images, I need the details of where and how Magento stores password to enable IPS to use Magento's database as external database for user login details.
Attached:
Any idea or suggestion on how to get this done would be greatly appreciated!
Customer's password is stored in customer_entity_varchar, it is an eav attribute. You can't use IPB external database functionality. You should use Mage::getModel('customer/customer')->authenticate($logi, $password); to authenticate customers in your code.
You can find the encryption key in /app/etc/local.xml. I haven't looked at the user table but my guess would be the hash field is the encrypted password.
Encryption functionality is in Mage_Core_Model_Encryption so if you can gain access to Magento from your IPS board, you could do something similar to:
$password = 'whatever'; //your logic provides this password
require_once('app/Mage.php'); //path to your Magento app/Mage.php
Mage::app(); //we can now use magento functionality
$decrypted = Mage::getModel('core/encryption')->decrypt($password);
You'll need to work out where best to put this logic in order to integrate it, but it's a start at least.
I have had a third-party developer install & custom code a magento site for me. What are things I must take care of to ensure I can run the site independently of him. I understand its important to have my email as the admin user, get the encryption key etc.
What else is important here?
Thanks.
-TM
Access to your hosting account is all you need, as it will give you acces to your files and database.
As a novice developer at best, I have been tasked with implementing Facebook connect with my Magento 1.4.1.1 website. I have read extensively online and don't find much help with my problem, and I see many people have the same issue so perhaps everyone can learn.
I inserted the SDK script into my header, set up my channel, and my Facebook app. Everything seems to work nicely right now, however I am lost on converting the Facebook login into an actual Magento login. I understand that my code speaks with Facebook and authorizes my website, But I don't understand how to pull user permissions into my Magento database and store the information. Currently you click the "Login with Facebook" button, it pops up asking for the permissions. I don't know how to save this information to my database and allow the user to connect and login successfully.
I think I may need to add some more code somewhere telling Magento how to store this information?
Any advice or links would be greatly appreciated.
You can use free extension Facebook Connect and Like Free from BelVG company.