Send password to user

[Manaus]

Hello,

I need to send the password to the $user, but $user->password returns blank. Is this a security concern? Should I use the tmp_pass workaround?

Thanks

[Soma]

Password is encrypted for a reason. You can't read/decrypt it.

[adrian]

If you need to offer a user a forgot password reset, there is this module included in the core:

http://modules.processwire.com/modules/process-forgot-password/

If you need to do it for frontend users, then this post from our fearless leader should get you going:

http://processwire.com/talk/topic/1716-integrating-a-member-visitor-login-form/?p=15919

[Frank Vèssia]

What I did in few websites is to store the password right after the registration process in a field called clear_pass. It's not the best solution for security reasons but I needed a readable password for my users, of course you can do this if you have your own registration page.

[horst]

 It's not the best solution for security reasons but ...

That's correct, it's not the best but the badest solution!

http://plaintextoffenders.com/

[Soma]

Password are overrated.

[horst]

Password are overrated.

Ok, give me a few from your accounts around the web.

[netcarver]

@Manaus,

I need to send the password to the $user...

What's the use case driving this necessity? Storage of plaintext passwords or even reversibly encrypted passwords is a definite concern. PW stores a salted hash of the password for a good reason.