I know this has been discussed everywhere for quite some time, but I’ve not yet been able to determine if there is a viable means of intercepting an Internet password change to inject some custom logic when the new password is submitted?
Please don’t shoot me if I’m missing something obvious!
Let me explain…
Yes, I know that we can build our own forms, and IBM provide us with excellent examples in the domcfg database.
I have built my own form in a totally separate database, and configured all of the relevant design elements for public access.
I then linked to that form in the domcfg database, and everything links perfectly to produce a custom ‘ChangePasswordForm’.
The only problem with that solution is that it does not allow the use of any WebQuerySave logic execution at all.
However, if I simply link to the custom database/form from a web hotspot, everything works perfectly and the custom logic executes just fine.
I can even use Jake Howlett’s logic to validate and submit the password change http://www.codestore.net/store.nsf/unid/BLOG-20051212 properly through the adminP process (works perfect!).
OK then, you say, why not simply provide a link to change the user’s password on your home page.
That’s exactly right, and that does work, but…
If the user’s password expires, or the administrator forces a password change on next login, the form is displayed and the custom logic is thrown out the window.
I even tried creating a ‘redirect’ page in my custom database, and linked to that page from the domcfg database.
That had disasterous effects, as the browser client kept cycling between the ‘change password’ page and the link page (because each time the ‘change password’ page was shown, the server wanted to prompt me to change my password again).
So, the question remains…
Is there any way at all to inject custom logic into the password change process?
I certainly hope so - After all these years, I would have thought someone brighter than I would have thought of an ingenious solution?!
Cheers!