Recover Password - Validation Key

[Guest dgsmra]

I searched for this, but didn't see anything other than the password recovery error in the bug tracker. When a customer clicks the recover password link and receives an email, the email includes a link to a page that allows them to create a new password. That page requires a validation key, but a validation key isn't included in the email they received, so the customer can't reset the password. Is the validation key necessary? If so, how can it be included in the email to the customer? It does look like the validation key is included as part of the link that is sent in the email, but customer doesn't know to copy the key out of the link and the key doesn't automatically populate in the password reset form.

Thank you for any help!

[Dirty Butter]

What version are you using? Has this ever worked for you? I tested this just now on both of our 5.1.1 stores, and it worked perfectly, automatically populating the validation key.

[Guest dgsmra]

I guess I should have mentioned I'm running 5.1.0. I just upgraded from 4, so I haven't upgraded to 5.1.1 yet. I also wasn't sure if the validation key should automatically populate or not, because I just noticed this today and I'm not sure if it worked when I first upgraded to 5.1. I'm using a commercial skin, so I'll go back and check the coding. Thanks for your help!

[Ben224]

Hi,

I am running 5.1.1 and have the same problem. It was working initially but now no longer functions for no apparent reason.

Can anyone offer a solution. Or at least a way of taking the validation key out of the URL and into the body of the email so that the customer is able to cut and paste the key?

Thanks

[Ben224]

Further to my previous post. I have looked back at validation emails I sent to myself prior to running my store in SSL mode and they still work fine. The issue appears to be with the validation key which is now attached to a secure https URL.

The HTTPS seems to be causing the issue. Can anyone advise.

Thank you.

Sorry I should have also mentioned that I cut and paste the full URL into my browser and removed the "s" from https so that the URL begins with http and I can confirm that the validation key is successfully automatically set in the form field. On that basis I can conclude that there is a bug that needs to be addressed with https and validation key processing.