Password Reset

How does resetting the password work from the point of view of a registered customer?

1. The login screen contains a Forgot Password? link.
2. Clicking this opens a prompt for the email address to which the reset instructions must be sent.
3. The customer enters their email address.
4. An email is sent which contains a link.
5. The customer clicks the reset link in the email and is sent to a screen that prompts for a new password.
6. The customer enters the new password and clicks Change Password.
7. The login screen is shown, so that the customer can log in immediately using the new password.

Note that the reset link in the email is valid only for a specified number of seconds. If the customer follows the link in the email after that time has passed, a Reset password link has expired screen is presented, which suggests the customer try again. This screen is part of the theme.