Allow to resend reset password
The web user can reset their password only once every timeout. But sometimes the email does not arrive on the mail box (because of spam filter or greylisting etc.). So the user request an new reset email that we silently ignore (to prevent abuse). But I think we should allow to resend the same email a few time (like 3 or 5) before ignoring the requests.