How to implemenet Password Resets

I have an existing applicati开发者_Go百科on that i want to implement password resets after 30 days. But i dont want the user to use the same password as the last 5 times.

How do i go about doing this or is there any links i can follow.

Please help

Thanks,

you can save a history of the last 5 passwords to prevent the user from reusing them and save the last password change date. once user perform login check if 30 days are over and if so redirect him to a page to reset his password.

You could create a small table having 5 columns so that you can store the last 5 passwords used. Each column will then contain the hash of the password, not the password itself.