Create a simple option of resetting admin password

Description

Many users have problems with accessing their Openfire when they forget/lose their admin password. There are various workarounds for that (rerunning the setup, editing database), but this is rather complicated and doesn't work all the time. There should be an easier trigger for that. As we use 'admin' as a default password for new installations, resetting should also use 'admin' for a password. It should be taken into consideration that in some cases this is not really possible (when AD integration is in use and admin account is actually a user in AD, so its password can't be reset from within Openfire).

Environment

None

Linked work items

relates to

OF-257

Send existing/new password of a user to his email from the admin console

Activity

Guus der Kinderen
January 9, 2019 at 1:53 PM

Suggestion: allow for an element named <oneTimeAccessToken> to be defined in openfire.xml.

If Openfire detects that this element is present, it shows a different login screen, where one can log in using this token. As soon as it is used, the token should be automatically removed from openfire.xml

The benefit of this approach is that it's temporary (no lingering credentials in configuration), and does not interfere with the existing authentication setup (and/or override existing accounts). It'd work for all setups, including LDAP.

Resize issue view side panel

Fixed

Details

Assignee

Dave Cridland

Reporter

wroot

Labels

adminadmin_consolegsoc-teaser

Components

Fix versions

4.3.1

Affects versions

4.1.6

Priority

Minor

Created February 7, 2017 at 12:49 PM

Updated November 15, 2023 at 4:22 PM

Resolved January 18, 2019 at 6:50 PM