Hi, I am exploring the Android Client App of OpenMRS as my GSoC 19 Project, would like to discuss My idea of Security Improvement
-
User taps the forget password
-
He will be asked for the username and for email
-
Once verification of username name and email done by the Rest Service, It sends an email to the user with a 4-6 digit key.
-
On submitting the 4-6 digit Key the user, verification is done through the Rest API.
-
On verification user is provided with Change Password page.
I’m expecting your suggestions for this idea 
Mentor: @f4ww4z
Cc: @csmuthukuda @dkayiwa
Thanks.