My Sugar instance is on https host. When user tries to reset its password Sugar sends him a reset link starting with 'http'. As I understand link url is generated in modules/Users/GeneratePassword.php where 'http' part of $url variable is hardcoded:
PHP Code:
$url="http://".$GLOBALS['_SERVER']['HTTP_HOST'].$GLOBALS['_SERVER']['PHP_SELF']."?entryPoint=Changenewpassword&guid=$guid"
I simply change 'http' to 'https' to achive my goal. But are there any methods to make such customization upgrade-safe?