[SalesForce] Are HTML based password reset templates reliably rendered

1. If you have power users that are determined enough they might still be able to navigate to the template by shortening the URL from

   /email/author/emailauthor.jsp?retURL=/{!Opportunity.AccountId}&
   rtype=003&p2_lkid={!Opportunity.AccountId}&
   template_id=00X60000001euod
   

   to

   /00X60000001euod
   

   (no idea if it'd give them "insufficient privileges").

2. The behaviour described in your "Update 1" sounds to me like some kind of security flaw that SF might decide to fix in future. I'm not sure I'd count on something like this in a production-ready functionality. Maybe simply raise a Case with support whether it's intended behaviour?

3. If it's acceptable to just fire the email as is (without user being able to preview & modify the body) maybe you can experiment with adding &save=1 to the URL. Still - a determined user might inspect the source of the button and learn the template id.

4. You could also consider a "do it yourself" solution with a bit of Apex? Both single and mass email objects have setTemplateid() method you could use. You can query the EmailTemplate object for IDs.

We found that this error was being caused, by the referenced records not being shared. We figured this out by turning all related objects referenced in the template to public read sharing, which fixed the issue. Then we back tracked through the objects and created sharing rules to share with the appropriate user.

EDIT We queried the UserRecordAccess Object to determine if our community users had access to the records referenced in the templates which helped us to narrow down the objects which weren't shared or didn't have read access for that community profile.