'Forgot Password' throttling
-
31-10-2019 - |
Question
I have a 'forgot password' system set up that sends an email with a reset link to the user. M question is: How can I prevent abuse of this system? How can I make sure that people don't use this to spam peoples inboxes but still have it usable for the people that need it?
No correct solution
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow