As an administrator of a small DSS instance (not using a third part SSO solution) I would like the forgot password option to work via email token sent to email address on record, so that in the middle of my night my users don’t have to send me an email message and wait until I can respond to their need for a password reset, thus improving 7x24x365.25 end user support.
- This should be done by a one time use login token.
- The token should have a reasonably short life time
- I should be notified about the request for password reset
- These requests should be logged.