Forgotten Password

I've installed concrete5 all working fine, except I went to test out the forgotten password and nothing is sent. I've checked junk folders nothing, I've tested this on more than one emai address. Does anyone know if there is a setting I need tolook at our anything similar?

View Replies:
Remo replied on at Permalink Reply
open phpMyAdmin or whatever you use to access your mysql database and have a look at "Logs", there'll find the content of the mail that hasn't been sent
novelnova replied on at Permalink Reply
Cheers for the help
driordan replied on at Permalink Reply
Same problem. Lost password isn't sending e-mail. After clicking Reset and Send, the forgot_password page stalls.
When I go to the database with phpMyAdmin, there are no messages with login information.

Now what?
driordan replied on at Permalink Reply
I finally did get e-mails with the reset password (after about 2 hours). I used the last one and couldn't get in.

I used the password hash described elsewhere on this site with the password that was e-mailed and compared it to the one in the database. They match. But I cannot get in.

frz replied on at Permalink Reply
well, its odd that these emails would take 2 hours to get to you. concrete5 is just using your server's mail app, so I think that has to be a webhost configuration issue. Have you checked your spam folders?

If you're getting the admin password eventually, I wonder if perhaps you've clicked it a few times and the password is being reset while you're still using an earlier version..

Entering the hash you see in the database as your password isn't going to work.

Looking at the log table in your database would be a faster way to get there

In an upcoming release we've changed the way this works so clicking the link on forgot password doesn't actually reset it, but rather sends you a link TO reset it..
driordan replied on at Permalink Reply
I checked the log table. There are two entries, both of which are from me testing the contact form. There are no entries for the password resetting. Also, I got the contact form e-mail in about two minutes (being forwarded twice). So I don't think it's a hosting problem.

The problem with the password that I do get is that it doesn't work. I didn't use the hash; I compared it to a hash of what the e-mail said was the password. I.e., I got, let's say, 2e328 as the password. I took the salt from the config file and used an online hashing. The result was the same as the hashed password in the users table. So, 2e328 was the admin password. And it didn't work.

I've since, requested another new password, waited for the e-mail, and tried the new one. I cannot log into the site.

So the thing right now is just getting in once again.
ryan replied on at Permalink Reply
in /config/site.php set this as your password salt:
define('PASSWORD_SALT', 'ixaNeRvwIr6zkoUbyt9COQ3fcmq8LlhYBV7jJP1ZE5gDW4XGKTSAus0M2pnFH');

then update your users table for whatever user you log in with, I'm assuming admin for this:

UPDATE users
SET uPassword = '4d8c823b1a1e58a12e3836e23b7372c0'
WHERE uName = 'admin'

Then login with username "admin" and password "admin". If your site is configured to use the email as the login name, login in with your email & admin as the pass.

That should work to get you in.
greef replied on at Permalink Reply
thanks, it helped me :)
AccountDisabled replied on at Permalink Reply
Resetting your password manually is fun the first few times. After that check out Concrete5 Instant Admin at

All you need is FTP access and Concrete5 Instant Admin will create a new admin account for your without delay. Then once your admin powers are restored you can easily change things back to normal.

motukaonline replied on at Permalink Reply
Thanks so much for sharing. I had started going to the longest process of ftp, find db password, open phpmyadmin, copy salt, find hash generator tool, paste salt, type password, submit, get hash, copy, go to phpmyadmin and paste, click save then login.
ryan replied on at Permalink Reply 1 Attachment
Once you get in, check that logging sent email is enabled in Dashboard -> Sitewide Settings -> Debug
driordan replied on at Permalink Reply
I did as you suggested: changed the salt, updated uPassword, used admin/admin for login. It brings back the login screen. There are no error messages; it just goes back to the login screen.
driordan replied on at Permalink Reply
Thanks for your help. I've gotten back in. Strange...
canalcop replied on at Permalink Reply
I have a similar problem
I know its validating the password cos I dont get the invalid pw message in red. However it just refreshes the login screen and doesent launch the dashboard