Feature #20209

fe_users.email should be unique if "forgot password" is used in fe_login

Added by Nabil Sayegh over 10 years ago. Updated over 3 years ago.

Should have
Target version:
Start date:
Due date:
% Done:


PHP Version:
Sprint Focus:


The email attribute of fe_users is used to identify the tuple, so it should be unique.

ALTER TABLE fe_users ADD unique (email);
(issue imported from #M10728)

Related issues

Related to TYPO3 Core - Bug #20210: fe_login: Forgot Password should not send passwords if they are hashed (md5) Closed 2009-03-19
Related to TYPO3 Core - Epic #84262: [FEATURE] Update felogin to extbase Under Review 2012-07-10


#1 Updated by Alexander Opitz over 6 years ago

  • Status changed from New to Needs Feedback
  • Target version deleted (0)

The issue is very old, does this issue exists in newer versions of TYPO3 CMS (4.5 or 6.1)?

#2 Updated by Alexander Opitz about 6 years ago

  • Status changed from Needs Feedback to Closed

No feedback for over 90 days.

#3 Updated by Jonas Eberle almost 5 years ago

  • Status changed from Closed to New

Yes, this issue still exists. (Typo3 CMS 6.2)
I would say the same holds true for usernames.

#4 Updated by Susanne Moog over 4 years ago

  • Sprint Focus set to PRC

#5 Updated by Jigal van Hemert over 4 years ago

Because it's possible to have several websites in a single installation we can't use the db (within DBAL limitations) to enforce the uniqueness.
In the username property the TCA is already configured to only allow unique username in a folder.

So, instead of changing the db configuration, I'd change the TCA configuration.

#6 Updated by Riccardo De Contardi over 3 years ago

  • Category set to felogin

#7 Updated by Jan Stockfisch over 1 year ago

  • Related to Epic #84262: [FEATURE] Update felogin to extbase added

Also available in: Atom PDF