Read more

Best Practice: Creating User Accounts Without Sending the Password

Dominik Schöler
March 23, 2020Software engineer at makandra GmbH

In applications without a sign-up, user accounts are usually created by an admin. This imposes two challenges:

  • How to transmit the password securely and
  • How to make the user change the initial password immediately
Illustration web development

Do you need DevOps-experts?

Your development team has a full backlog? No time for infrastructure architecture? Our DevOps team is ready to support you!

  • We build reliable cloud solutions with Infrastructure as code
  • We are experts in security, Linux and databases
  • We support your dev team to perform
Read more Show archive.org snapshot

There is a simple solution: create the account with a secret password, then ask the user to use the password reset with his user name.

Posted by Dominik Schöler to makandra dev (2020-03-23 14:04)