Zero Edge Any company who has "force reset password" as a fail safe after typing the incorrect password too many times is a company with lazy programmers.

👨🏻‍💻 Moroni What do you think is the best option?

Zero Edge If its critical, lock out for a set period of time.. You could also do a lock out with the option to early unlock if you reset password. Never force reset password for too many failed attempts. I kind of think this is security theater anyway.. How many hacks are actually from brute forcing the login page?