The temporary login feature seems like the best bet, how-ever making it a 64 character random string is overkill, something like 6 lower-case letters + numbers, or just a few numbers would be fine. The key to this security approach is basically anyone can remember a few numbers/letters, and it will only last a minutes at most to allow a user to reset their password to something else. This approach is exactly how a lot of 2 factory authentication apps work (short term 6 digit code)
Allowing people to reset their password over the phone is meh, as you said that means tech people know the user's password.
You should never break security protocols for any client, regardless of how much money they have.
A few years ago the FBI publicly made a fuss over Apple not creating them backdoor security keys for iPhones so they can hack into a terrorist device. The reasoning is simple, 1 backdoor in the wrong hands means everyone's security is worthless. Apple would not create the backdoor keys as their pure existence is a risk not worth having.
I'm sure your not Apple, and the client isn't the FBI, so in comparison your talking about pocket change, but still just as much risk to end user data.
Stick to your guns, do your job, and keep the platform secure. Your not paid to say yes, your paid to say no. You can get strong armed into doing this feature, and how far you take your stance is up to you, but I personally do not agree with the feature of allowing a user to change their password over the phone.
Thanks for the detailed reply ! I'm totally on your side about this. As I told above, I'll go on writing to client telling about red flags and propose him a system where we can generate a 6 char one time login link with a short validity period. If after all he doesn't want, I may have no others choice than doing as he request, even if it make me uncomfortable to do it but I don't have much decisional power so let's see how it goes.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
The temporary login feature seems like the best bet, how-ever making it a 64 character random string is overkill, something like 6 lower-case letters + numbers, or just a few numbers would be fine. The key to this security approach is basically anyone can remember a few numbers/letters, and it will only last a minutes at most to allow a user to reset their password to something else. This approach is exactly how a lot of 2 factory authentication apps work (short term 6 digit code)
Allowing people to reset their password over the phone is meh, as you said that means tech people know the user's password.
You should never break security protocols for any client, regardless of how much money they have.
A few years ago the FBI publicly made a fuss over Apple not creating them backdoor security keys for iPhones so they can hack into a terrorist device. The reasoning is simple, 1 backdoor in the wrong hands means everyone's security is worthless. Apple would not create the backdoor keys as their pure existence is a risk not worth having.
I'm sure your not Apple, and the client isn't the FBI, so in comparison your talking about pocket change, but still just as much risk to end user data.
Stick to your guns, do your job, and keep the platform secure. Your not paid to say yes, your paid to say no. You can get strong armed into doing this feature, and how far you take your stance is up to you, but I personally do not agree with the feature of allowing a user to change their password over the phone.
Thanks for the detailed reply ! I'm totally on your side about this. As I told above, I'll go on writing to client telling about red flags and propose him a system where we can generate a 6 char one time login link with a short validity period. If after all he doesn't want, I may have no others choice than doing as he request, even if it make me uncomfortable to do it but I don't have much decisional power so let's see how it goes.