I am running 8.0.4 with about 80 existing users in our system. We closed the system for awhile as we made some changes and we are now ready to release the next version of our site.
One of the changes will be switching from Username to Email as the account identifier for login. I've made the Administration changes to the system and our users are able to log in using their email now. Thank you!
When a user forgets his or her password, though, the password reset link does not appear to work correctly. The email is sent. The link is correct (matching the token in the Users table). The expiration date is set to one day in advance (again confirmed in the User table). But, when the user attempts to use the link, the following error occurs every time:
The password reset link has expired and is no longer valid.
Any suggestions? Am I configuring something wrong, or is this a possible bug? How would I confirm either?