Quote:
Originally Posted by xplorer
Please could you explain the reason of such a mod? Why do you need customer's passwords? I believe there is a more secure solution than displaying customer's passwords in the store back end.
|
Not sure why you think this is so un-secure? It just saves me (and many others) from the extra step of viewing the source of the page when viewing a customer's profile and reading the password in the source. It's already been sent across the internet to your webpage (hopefully an admin uses https so it's atleast encrypted across the connection rather than sent in plain text).
Even though we deal with people who actually own x-cart, sometimes we have to add things to a customer's cart for them for some reason or another. It's also convenient for giving a customer their password when you are on the phone with them and they do not want to do the email password recovery.
Just my 2 cents.
Thanks!
Carrie