Reset by SMS

Configuration file: self-service-password/conf/config.inc.php

How it works?

First, the user will enter his login. With this login, SSP will try to get information, like name and mobile phone number.

If information is found, the user can check it and confirm the sent of reset code trough SMS.

A mail is sent to a Email to SMS gateway. This gateway will then send the message to the mobile phone. The user should then enter the code on SSP page, and can then change its password.

SMS provider

You first have to choose a Email to SMS provider. Search the web to find one, many have a free trial so you can test the feature. You can try for example https://www.smsglobal.com/.

Activation

You can enable or disable this feature with $use_sms:

$use_sms = true;

Mobile attribute

Set here which LDAP attribute hold the user mobile phone:

$sms_attribute = "mobile";

Message

The values set here depend on the Email to SMS provider. Some require a specific string in mail subject, other use a specific mail body. Just adapt the configuration to these requirements.

# Send SMS mail to address
$smsmailto = "{sms_attribute}@service.provider.com";
# Subject when sending email to SMTP to SMS provider
$smsmail_subject = "Provider code";
# Message
$sms_message = "{smsresetmessage} {smstoken}";

Token

You can set the token length:

$sms_token_length = 6;