Paper Lantern for cPanel accounts is being retired this year. Find out more »
cPanel & WHM Version 102 has been released, and brings a slew of great updates. Take a look at what is included, and then upgrade today!

Webmail Sessions do not expire during password resets

Simon Blackler shared this idea 6 months ago
Transitioned to Case

At the moment once a password reset is performed in webmail, the session does not expire. This causes further attempts to browse the account and view the inbox to give errors such as "Authentication plain: Authentication failed".

This will occur until a user logs out and logs back in.

Please can this be corrected so that either the existing session re-auths with the entered password (if possible) or that once the user has reset this, they are then logged out and taken back to the login page to re-auth with their new credentials.

Replies (1)

photo
2

Hey there! I've created case CPANEL-40301 for our team to look into this as this seems more like something we should fix than a new feature. Thanks for letting us know about this!

Leave a Comment
 
Attach a file