password-reset.title=Password reset password-reset-simple.email_send=An email has been send to {0} please check your inbox. password-reset-simple.password_incorrect=Not the correct password please try again. password-reset-simple.email_failed=There was an error while sending the e-mail. Is WebWolf running? password-reset-simple.email_mismatch=Of course you can send mail to user {0} however you will not be able to read this e-mail in WebWolf, please use your own username. password-questions-wrong-user=You need to find a different user you are logging in with 'webgoat'. password-questions-unknown-user=User {0} is not a valid user. password-questions-one-successful=You answered one question successfully please try another one. email.send=An e-mail has been send to {0} password-reset-no-user=Please supply a valid e-mail address. password-reset-solved=Congratulations you solved the assignment, please type in the following code in the e-mail field: {0} password-reset-not-solved=Sorry but you did not redirect the reset link to WebWolf password-reset-hint1=Try to send a password reset link to your own account at {user}@webgoat.org, you can read this e-mail in WebWolf. password-reset-hint2=Look at the link, can you think how the server creates this link? password-reset-hint3=Tom clicks all the links he receives in his mailbox, you can use the landing page in WebWolf to get the reset link... password-reset-hint4=The link points to localhost:8080/PasswordReset/.... can you change the host to localhost:9090? password-reset-hint5=Intercept the request and change the host header. password-reset-hint6=For intercepting the request you have to use a proxy. Check the HTTP-Proxies Lesson in the general category if you're unfamiliar with using proxies.
Important: There seem to be problems when modifying the request header with ZAP. We recommend to use Burp instead. login_failed=Login failed login_failed.tom=Sorry only Tom can login at the moment