When you manually create new users in COYO, you assign a password at the start. Both for you as an admin as well as for your users, there are just three things to bear in mind from the COYO side:
- The password must be at least six characters long.
- At least one of the six characters must be a number.
- An interval for renewing the password has not been integrated.
The COYO REST API can be used to change and/or expand the rules for creating a password. You can find out how to do that here.
Password forgotten – what now?
As is common nowadays, COYO also has a function for resetting the password. Using the button "Password forgotten", your users can be sent a link to reset their password.
The link sent by e-mail is valid for one hour. A new link needs to be requested after that.
If a user is ever unable to change their password, please check the user’s permissions. To do this, go into the Administration in COYO and choose the role in the user administration that is assigned to the respective user.
Then check in "Users" whether the permission to edit the user settings is activated ("Manage user profile").
We recommend the permission setting in the screenshot so that your users can manage themselves. You can read more about the default settings for a user role here.
How are passwords saved in COYO?
The passwords of local users are stored encrypted in the database. It’s not possible to decrypt the passwords. The passwords of users from user directories are not saved. The query goes directly to the local user directory.