Hi friends!
This release comes with two important changes:
-
The garbage collection process (i.e. deleting old, expired password reset request records) previously would delete all old records. Now it only deletes expired records older than 1 week. This helps people to get a better "Your link is expired" text if they click a reset link multiple times - #103 thanks to @kbond.
-
If a user has requested a password reset too many times and has been "throttled", a
TooManyPasswordRequestsExceptionis thrown. That class now has 2 new methods that you can use to get more information:getAvailableAt(): \DateTimeInterface- getRetryAfter(): int
Have fun!