Search Engine: Elastic

Article ID: 115463, created on Jan 29, 2013, last review on Oct 3, 2015

  • Applies to:
  • Odin Business Automation Standard 4.5


A customer fails to reset his or her password due to the error:

Invalid authorization code. Please check spelling and try again.

Procedure to reset customer's password consists of the following steps:

  1. Customer clicks the link 'Forgot your password' and specifies his or her e-mail address.
  2. OBAS sends authorization code and confirmation link to the specified e-mail address.
  3. Customer confirms the e-mail address by clicking the link: http://OBASHostname/cp/login.cgi/act,reset/email,email@domain.tld/?auth_code=VIifqn3If/UuSkTquoA2KkzMOp
  4. Customer sets a new password.  When customer sets a new password the above error can take place. 


This error means that either a wrong authorization code was entered or the code had already been used, which means that the customer had already set a new password but repeated an attempt to enter a new password with the same authorization code. 


The customer should request a new authoruzation code for the account and set a new password.

Additional information

The following entry in the /var/log/hspc/hspc.log file indicates that customer has already set a new password. Once new password is set, current authorization code will not work anymore. 

[2012/10/29 15:47:10] [INFO] [18392] [HSPC::MT::Core::Person::save] Try update person, person_id = 2742. Success with person_id = 2742.

Check also if the "Password has been changed for person" event is enabled under Top > Configuration Director > Event Manager > Events. If it is disabled a customer will not recieve a confirmation e-mail about password changing and probably would continue attempts to set a new password using the same authorization code.

400e18f6ede9f8be5575a475d2d6b0a6 caea8340e2d186a540518d08602aa065 624ca542e40215e6f1d39170d8e7ec75 70a5401e8b9354cd1d64d0346f2c4a3e

Email subscription for changes to this article
Save as PDF