Need help please, trying to reset customer password I am using zencart v 1.5.5. I put in the new password but I still can't login with the customers email and the new password it set up.
Printable View
Need help please, trying to reset customer password I am using zencart v 1.5.5. I put in the new password but I still can't login with the customers email and the new password it set up.
Need help please, trying to reset customer password I am using zencart v 1.5.5. I put in the new password but I still can't login with the customers email and the new password it set up.
If you simply need to log in as a particular user, Encrypted Master Password is the best. Far better than changing their password for your access.
Are you beating the user to the punch on login?
Are you getting a need to change password at login?
Did you try copy/paste instead of typing?
For some reason, customers and me have had issues typing the reset password but copy/paste has worked every time (at least in our cases with versions lower than 1.5.5)
Don't know why but at the time it didn't matter as long as it worked.
The user couldn't remember his password so he did a forgot password but is not getting the emails. So I tried to reset password for him and then tried to login to check it and it won't work.
no I haven't tried to copy/paste I will try that. Thanks
I had a similar issue. No password resets would work. I had to increase to the customers_password field to VARCHAR(255) because I didn't do the database upgrade properly. The new password hashes were getting cutoff.
If you upgraded zencart from an older version, make sure to run the database-upgrade provided by running zc_install/index.php
I had an issue where customer could not change there passwords.
But my site is different in that I have the COWOA plugin installed.
I figured out in the database the table "customers" there is a section called "COWOA_account". I changed the current status from 1 to 0 and that solved my issue. Just to give you some more information I currently use a guest checkout and and login. So basically if the customer creates an account he can not use the guest checkout. I am not sure if this will work for you but i figured i give my two sense.
Bump!
I have users resetting their passwords,
copying the new password provided,
then attempting to log in and being
refused access.
Can anyone else confirm that there's
something going on in the password
reset code that's not resetting the
user's password as it's indicating it's
supposedly doing?
We're on 1.5.1.
Dr Doug
Replying to my own BUMP.
When I do the password reset, it works fine.
What could possibly be happening in a different
user's environment that would prevent them
from double clicking, copying, pasting, and
confirming their temporary password with
the web site? It seems pretty basic to me,
but then maybe I'm too close to the problem
again.
Dr Doug
I still can't get my customers password reset, even when I reset it and copy and paste the new password it still does not work. How do I get help with this?
before replying, please confirm the length of field:
customers_password
in table:
customers
with regards to dr doug, i think the length problem could be still be coming into play.... customer password reset works fine for me, using both email and master password encrypt. which suggests to me an improper DB update, or possibly not having the right scripts when updating.... just a guess.
best.
When my customers complain about not being able to reset, then copy and paste a new password, I'll login using my own account and do the same thing they're doing. If I'm able to copy and paste a new password in the process of resetting my own password, but they can't, then the problem is on their side.
Is that a cop out? No, I don't think so.
Every so often, I'll get an email from the office saying "Sally from downtown can't get her credit card to work, and I was wondering if you could go in and take a look at it," and yet I've had three dozen other orders from across the country go through just fine. It makes sense to me that if three dozen people DON'T have a problem and she does, then she's the one who has the computer that has the problem.
Is the problem arising from the copy and paste? Is it from the virus she picked up from the rogue arcade game she or her son installed last week? Is it from the anti-virus program that switched a bit somewhere in the registry and didn't let anyone know? Is it because she hit CAPS lock and that's preventing the paste from happening?
I look at the overall success that everyone else is having and I chalk it up to something on her end that I'll never be able to deduce. So I'll give her my usual response about
- Quit and restart the browser,
- Restart the computer,
- Trying a different browser,
- Trying a different computer,
- Trying a different browser on a different computer,
- Trying a trusted friend's computer.
Just do SOMETHING other than what she's been doing because whatever the hidden cause is we'll never find it and it's not going to suddenly stop and magically go away.
Well, actually, it can.
Every now and then, it won't work, and then it suddenly will, and customers don't realize how frustrating it is for me to hear that, at first, it's not working, then, after driving home and trying again on their home computer--IT WORKS JUST FINE! That's what I'm talking about above. Her time is valuable, but so is mine, and so I try to look at things from 30,000 feet when I'm figuring out what to do.
Worse comes to worse, I'll suggest and then delete her account and have her start over. Usually that works.
I hope this helps.
Dr Doug
My customer has tried to reset it and is not getting the email to reset. I have tried resetting it and logging in to their login and it will not work whether I type in the password or copy and paste. I have a couple of customers this is currently happening to right now. Finally I deleted the customer so they can setup their login again, but they shouldn't have to do that and lose their order history they had under their login. So I just don't know what to do to fix this.
Do you have any old plugins/mods from prior to v155 installed on your v155 site? There were changes to the password-handling infrastructure in v151, v152, v153, v154, all based on modernizing that infrastructure to be more mature and to match what's happening in the PHP language itself.
The proper functioning of password capability is dependent on:
- all the PHP files being original, and not tampered with by plugins/mods that change how the core functions work (the password-related functions have been changed, and if you're using old stuff to generate new passwords, things aren't going to work)
- no leftover "old" files being present on the server (some older files were deleted by newer versions, but if you didn't delete them then they might be causing grief)
- no leftover "old" files from old plugins built for older versions
- proper database table schema ... ie: the password field needs to be long enough to store the newer passwords, and proper character set to match the site
- modern PHP versions. The newer the better. Requires the correct matching ZC version, but really the newest Zen Cart version is the best choice.
If you have any password-related plugins installed, or things that change how customer activity or checkout works, those could be suspect, particularly if they were build for older versions and thus the code you've installed for them actually is giving you old Zen Cart code, not the current stuff, hence causing things to break.
Old thread, I know. But, I wanted to add what was causing a problem with one of our customers.
Everything seemed to work until the new password was entered in the site. Didn't make a difference who did it, it would not work. Checked database and almost stopped when I saw that it was, in fact, set at 255 for the customer_password field.
What I found was that the character set was still at latin1 versus utf8. Both config files were properly set to utf8 and several tables were converted as well. Just seems that customer_password was one that was not.
Using the Convert db2utf8 mod, I found that several more fields were not updated when the database upgrade was done.
Also, I don't know if it could have been part of the problem, but one of the tables added by a mod had a prefix that the other tables did not. The Convert db2utf8 mod showed all these before using it on the database. Since conversion, all seems to be working.
Murphy was an optimist.:P
Dr Byte
I recently rebuilt an old site and ensured that the plugins and modules were as up to date as available. I do have a lot of custom coding to do with dual pricing etc.
my client is currently unable to login to admin with his account. He used the forgot password and got the email. However, when he tried to login using the temp password, it did not work. I tried and still nothing. So I thought i'd login with my master login and that too failed. I checked the db and cannot even find my master login. noticed the same issue as the previous poster about pwrd field being 255 character long.
the error log says: client denied by server configuration. How should I proceed? this is a little above my skill set.
the error message indicates a permissions problem.
i would double check the owner/permissions on all of the files that you have uploaded to the server.
best.
In almost all cases, that error is caused by "deny" rules in .htaccess ... typically caused by you putting their IP address into a list of IPs to block.Quote:
Originally Posted by newagekat
Sometimes it's a little more complex where security rules imposed by your hosting company, or by software upgrades on the server core software, implement blocks based on something in the URL of the page or other complex detection patterns used to attempt to protect against malicious users.
not receiving email for password reset
HELP!
Zombie thread revival!
But i had exactly the same issue, was looking at all other reasons for not getting forgotten password emails, and turned out to be this! Ran the tool, worked straight away.
J
Quote:
Originally Posted by dbltoe