A user has forgotten their password. There doesn’t seem to be an obvious way to issue a password reset email to them. In the aleph commandline client I can only see
createuser
deleterole
So I’m guessing that I have to reset the password directly in postgresql.
I can see existing passwords use pbkdf2:sha256:. What is the magic incantation I need? So far I’ve got
UPDATE role SET password_digest = ??? WHERE id=5
Recommendations would depend on whether you are using an external SSO solution like Keycloak or are relying on the user management that is built into Aleph.
I’m going to assume that you are using Aleph, I would try using the createuser prompt to update the users password. As long as you use createuser with an existing users email address details will be updated rather than recreated.
Information on the createuser cli command can be found in our developer documentation here: Installing Aleph – Aleph Just make sure that you’re in an appropriate shell.
Start by verifying that everything works as expected by creating a new user and testing the change password process. Thus.
Now login with the same user again using the updated password. If this works then you can be confident that you can update you users password. I’ve tested this locally with the latest version of Aleph (3.15) and it all works as expected.