Captcha is great and the implimentation here is very well done, however (ya had to know this was a cummin...):
Follow these steps to see Captcha go away:
- Goto "Forgot Password Page",
- Enter Correct Captcha Code,
- Enter an Invalid Email or User name and click submit. You get the Not Real Person type message,
- Note that there is no Captcha displayed nor any "Enter Confirmation...",
- Enter a Valid Username OR email and click submit - voila - email sent and all is well,
- Return to Login page, go back to Forgot Password - oopssssss.
Captcha is now gone, for the entire browser session - not just the logged in user. Logout, then forgot password again - no captcha. Enter valid email/username and submit - all is well.
Login then out. Browse to a different web page or other site that is NOT project related.
Go back to the Login Page, click on Forgot Password. All is well again.
I've tried to clear cookies and all manner of things. One of our clients found this by mistake.
Not that it's a big deal - I just tell our people that they've already proven that a Human was visting not a BOT. They love that one.
Anywhich who, I'm wondering what piece is remembering that the Captcha code was correct and valid.
This is way too much fune <img src='https://asprunner.com/forums/file.php?topicimage=1&fieldname=question&id=11147&image=1&table=forumtopics' class='bbc_emoticon' alt=':P' />.
Man, I gotta get a life... <img src='https://asprunner.com/forums/file.php?topicimage=1&fieldname=question&id=11147&image=2&table=forumtopics' class='bbc_emoticon' alt=':)' />
Roger.