TYPO3 Core

The problem has been described in #21943 already:

- You ask to reset your password, and click the link to enter new password twice
- You get a confirmation message everything is fine, you may now log in
- You do the login and get an "error message" telling you that the link you clicked is invalid and that you should repeat the reset password procedure

If you happen(ed) to click anywhere else in the website at this stage, you would see that you are actually properly authenticated but as a user you see that error message and contact your TYPO3 administrator instead.

Steps¶

0. Ensure your felogin plugin is configured to take "referrer" as first redirect option after successful login
1. Click on password reset link
2. Password reset form is presented. Here info:

3. Change is successful, it redirects to login page at the end of \TYPO3\CMS\FrontendLogin\Controller\PasswordRecoveryController::changePasswordAction()
4. After successful login, I'm redirected to the password change as it's part of the referer: