07-26-2023, 11:32 PM
Problem is as follows:
I have a rule which redirects users to a landing page after login. It works fine.
However, if a user forgets their password, they are sent a link to the one-time-login page. They click the button and (because of my rule) are sent to their landing page.
The problem of course is that they cannot then change their password because the normal password change (in the user profile) requires you know your password to change it.
So how would I modify my redirect rule to say:
"Redirect to landing page, unless the logging-in user is coming from the one-time-login screen" or "Redirect to the landing page, unless the target URL starts with /user/reset/* (can you wildcard??)"
Thanks in advance for any tips
I have a rule which redirects users to a landing page after login. It works fine.
However, if a user forgets their password, they are sent a link to the one-time-login page. They click the button and (because of my rule) are sent to their landing page.
The problem of course is that they cannot then change their password because the normal password change (in the user profile) requires you know your password to change it.
So how would I modify my redirect rule to say:
"Redirect to landing page, unless the logging-in user is coming from the one-time-login screen" or "Redirect to the landing page, unless the target URL starts with /user/reset/* (can you wildcard??)"
Thanks in advance for any tips