Hes saying the user logs in with their normal password and takes no other action on the reset. The reset is still valid until the expiration.