Timeline for How should I design a password reset flow when the PasswordService depends on UserRepository (email vs ID)?
Current License: CC BY-SA 4.0
8 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| 9 hours ago | vote | accept | aymen | ||
| Nov 7 at 21:06 | history | protected | gnat | ||
| Nov 7 at 16:10 | answer | added | captncrunch | timeline score: 2 | |
| Nov 6 at 8:21 | comment | added | Bart van Ingen Schenau | What does the password reset flow look like from a users perspective? Once the OtpService has validated the OTP, how does the system know what to do next? What is the essential difference between your first two options? | |
| Nov 5 at 20:25 | comment | added | freakish | I assume you use OTPs for password reset flow? You send it to user by email or something? If so, then all you need to do is create a connection between the OTP and email, and add "getUserByEmail" to UserRepository. That's the cleanest solution IMO. I don't see any reason to couple OtpService with user data. | |
| Nov 5 at 15:47 | review | Close votes | |||
| Nov 8 at 18:30 | |||||
| S Nov 5 at 15:17 | review | First questions | |||
| Nov 7 at 7:42 | |||||
| S Nov 5 at 15:17 | history | asked | aymen | CC BY-SA 4.0 |