Forgot and Reset Password with React + Node JS

Рет қаралды 44,651

Жыл бұрын

It's crucial to add a forgot/reset password feature to your React app that will allow users to securely reset their passwords when they forget them or when their passwords are found in data breaches.
Source: github.com/ksekwamote/passwor...
Buy Me Coffee: www.buymeacoffee.com/ksekwamote
Website: kutlosek.xyz

Пікірлер: 38

@ranianourelhouda6146 6 ай бұрын

Thanks a lot, you really helped me ❤️

@gergelyattila9546 5 ай бұрын

I have a question. We are modifying the OTP when clicking on reset password, but what if another user click on reset password after we did. Will it change to a new random code for the first user? Or it will stay the same? Like is the OTP const static/global

@petlover4153 8 ай бұрын

I am a new subscriber when I watched this VDO

@sdfsfsfd437 Жыл бұрын

Thanks a lot! Very useful video! 💯👍

@koding_101 Жыл бұрын

Thank you very much , my absolute pleasure.

@FGA-47 Жыл бұрын

Thanks man that was really helpful ❤❤❤❤

@koding_101 Жыл бұрын

My pleasure , glad to be of assistance

@twinkles13 4 ай бұрын

You are modifying OTP using useState hook. So wouldn't it be accessible from developers window? It could be seen by the user easily.

@cyberscurityandsoftwaredev 5 ай бұрын

Thank you!

@leog1676 Жыл бұрын

Awesome video my friend, thank you.

@koding_101 Жыл бұрын

My absolute pleasure , feel free to suggest more videos.

@ForbiddenInstincts Жыл бұрын

Thanks for video I had a question about if you're using a database. How would it know what user is trying to update their passwords once they get their otp code?

@Gulliver626 10 ай бұрын

U can use the identificator and email in your table. And put a variable whit a token like a sesion, but not a sesion, who verify what user is changing his pass.Sorry for my english

@Haizenbergo Жыл бұрын

Thanks for this very useful video! Could you show how to realize sign in with google? It will be very interesting.

@koding_101 Жыл бұрын

Absolutely , that one of the videos i plan on doing , subscribe to the channel so you dont miss out on that.

@nicknameis Жыл бұрын

When I type email on the Login page, context is changing which is causing a full rerender and I can't type a full email - only letter per render.

@argjendsejfullai8304 5 ай бұрын

i can help you if you send me the code

@wolverine_d_king9422 Жыл бұрын

Can you plz build a website with login,register and forgot password functionality with both frontend and backend and can also sign up and sign in with GOOGLE AND GITHUB. . PLZ 🙏

@koding_101 Жыл бұрын

Yes, one of the applications I plan on building is a simple social media application and it will include all these features or functionalities.

@talhahaider2186 Жыл бұрын

Thanks sir ❤❤

@koding_101 Жыл бұрын

Sure thing , anytime

@alisbahzulfiqar3562 3 ай бұрын

Error: Invalid login: 535-5.7.8 Username and Password not accepted. This is the error which I am receiving at the time of clicking the button of forget button

@daGunnpreet Жыл бұрын

Can I unlock my Oneplus 8 pro screen look of 6 digit pin without losing my data ? Pls reply

@chirayu.batra1 11 ай бұрын

replied

@sibanandanayak22 Жыл бұрын

can u shar github linke for this project please

@koding_101 Жыл бұрын

Check the description box

@morganmugo5181 4 ай бұрын

Always provide a readme for your repos.

@acmeacademiccouncilofmecha7569 5 ай бұрын

This is not an effective way to solve the issue. You should send a brand new link on user's email and onlicking the same a brand new page will appear asking for new password. The link should have some validity time say one hour.

@crackedboy701 Жыл бұрын

i started watching this video of yours kzbin.info/www/bejne/g3vLpIl6pb6th9U then came here and then everything is so different. can you make a playlist that started from the beginning to this? because it's so confusing

@koding_101 Жыл бұрын

I understand your confusion and I apologize for that. I will do my best to help you navigate through the different videos and make it easier for you to follow along. I recommend starting with the video that you mentioned, which is a good introduction to automatically sending emails with JavaScript. From there, you can check out my playlist on KZbin with the link below where I have organized my videos in a logical sequence. bit.ly/3Z4LUPP

@youngming7752 Жыл бұрын

I'm concerned about security here. Since we are entering a 4 digit code to reset a password, a brute force attack can reset any password in a short time.

@koding_101 Жыл бұрын

Yes, That's a great point , what i would suggest as a further improvement to this would be to give the password a timeline , say 4 minutes and then once the 4 minutes has elapsed , the 4 digit code expires. You can also limit the number of tries.

@youngming7752 Жыл бұрын

@@koding_101 Yes but brute forcing a 4 digit code takes seconds. Increasing the code length and adding characters would fix the issue, even tho it impacts the user experience in a negative way. I would prefer a reset link that's being sent to the email

@koding_101 Жыл бұрын

Good on you for noticing this important cybersecurity point.

@koding_101 Жыл бұрын

You know what , i just did a bit of research on it and you are exactly right , most professionals do however recommend a 6 digit code, because a 6 digit pin has 1 million combinations which is not practical to bruteforce. , and i've actually noticed that being a trend in many major corporations.