Jump to content

Password sent to customers in plain txt


Recommended Posts

I wish I knew how to fix this. I have some really angry customers. Heck even the password reset sends a plain test password. Sure I can edit the registration email template but how do I fix the password reset?

Link to comment
Share on other sites

  • 1 month later...
  • 2 weeks later...
  • 4 weeks later...

What I have done is the following:



1) Prevented password being sent in 'Welcome' email to customers upon registration.


I have deleted this part from the HTML code in account.html:

<br >Password: <strong>{passwd}</strong>


And deleted this from the account.txt:

Password: {passwd}


You can find these files in the /mails/xx folder (xx being your language code). Modify these files and upload them back again.


I added to both txt and HTML e-mail files a notification that passwords are not sent out for security reasons.


You should also be able to remove these password queries in your BO->Tools->Translations->E-mail template translations. But I don't like working with the built-in editor as it messes up my HTML code. The trick proposed in the previous (older) topic was to comment out the code, but perhaps that doesn't work with the built-in e-mail editor (possibly it removes comment tags from HTML code).



2) When customers forget their password, they can apply for a new one. They will then receive an e-mail (password.html or password.txt) with a new and randomly generated password. I have added text in this e-mail, urging them to change the new password in one of their own choice as soon as possible.

  • Like 1
Link to comment
Share on other sites

  • 11 months later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...