liquid_feedback_frontend

annotate app/main/index/reset_password.lua @ 9:0ee1e0c42d4c

find changesets by author, revision, files, or words in the commit message
Version beta5

Minor security fix: Added missing security filter for admin section. Reading of member listing including login names was possible for all users. Write access has not been possible though.

Changing of name and login is possible while a history of these changes is written and accessible by all users.

Statistics shown in area list

Trimming of user input also converts multiple whitespaces to single space character.
author bsw
date Mon Jan 04 12:00:00 2010 +0100 (2010-01-04)
parents 8d91bccab0bf
children 58647c8a0339
rev   line source
bsw/jbe@6 1 slot.put_into("title", _"Reset password")
bsw/jbe@6 2
bsw/jbe@6 3 slot.select("actions", function()
bsw/jbe@6 4 ui.link{
bsw/jbe@6 5 content = function()
bsw/jbe@6 6 ui.image{ static = "icons/16/cancel.png" }
bsw/jbe@6 7 slot.put(_"Cancel password reset")
bsw/jbe@6 8 end,
bsw/jbe@6 9 module = "index",
bsw/jbe@6 10 view = "index"
bsw/jbe@6 11 }
bsw/jbe@6 12 end)
bsw/jbe@6 13
bsw/jbe@6 14
bsw/jbe@6 15 local secret = param.get("secret")
bsw/jbe@6 16
bsw/jbe@6 17 if not secret then
bsw/jbe@6 18 ui.tag{
bsw/jbe@6 19 tag = 'p',
bsw/jbe@6 20 content = _'Please enter your login name. You will receive an email with a link to reset your password.'
bsw/jbe@6 21 }
bsw/jbe@6 22 ui.form{
bsw/jbe@6 23 attr = { class = "vertical" },
bsw/jbe@6 24 module = "index",
bsw/jbe@6 25 action = "reset_password",
bsw/jbe@6 26 routing = {
bsw/jbe@6 27 ok = {
bsw/jbe@6 28 mode = "redirect",
bsw/jbe@6 29 module = "index",
bsw/jbe@6 30 view = "index"
bsw/jbe@6 31 }
bsw/jbe@6 32 },
bsw/jbe@6 33 content = function()
bsw/jbe@6 34 ui.field.text{
bsw/jbe@6 35 label = "Login",
bsw/jbe@6 36 name = "login"
bsw/jbe@6 37 }
bsw/jbe@6 38 ui.submit{ text = _"Request password reset link" }
bsw/jbe@6 39 end
bsw/jbe@6 40 }
bsw/jbe@6 41
bsw/jbe@6 42 else
bsw/jbe@6 43
bsw/jbe@6 44 ui.form{
bsw/jbe@6 45 attr = { class = "vertical" },
bsw/jbe@6 46 module = "index",
bsw/jbe@6 47 action = "reset_password",
bsw/jbe@6 48 routing = {
bsw/jbe@6 49 ok = {
bsw/jbe@6 50 mode = "redirect",
bsw/jbe@6 51 module = "index",
bsw/jbe@6 52 view = "index"
bsw/jbe@6 53 }
bsw/jbe@6 54 },
bsw/jbe@6 55 content = function()
bsw/jbe@6 56 ui.tag{
bsw/jbe@6 57 tag = 'p',
bsw/jbe@6 58 content = _'Please enter the email reset code you have received:'
bsw/jbe@6 59 }
bsw/jbe@6 60 ui.field.text{
bsw/jbe@6 61 label = _"Reset code",
bsw/jbe@6 62 name = "secret",
bsw/jbe@6 63 value = secret
bsw/jbe@6 64 }
bsw/jbe@6 65 ui.tag{
bsw/jbe@6 66 tag = 'p',
bsw/jbe@6 67 content = _'Please enter your new password twice.'
bsw/jbe@6 68 }
bsw/jbe@6 69 ui.field.password{
bsw/jbe@6 70 label = "New password",
bsw/jbe@6 71 name = "password1"
bsw/jbe@6 72 }
bsw/jbe@6 73 ui.field.password{
bsw/jbe@6 74 label = "New password (repeat)",
bsw/jbe@6 75 name = "password2"
bsw/jbe@6 76 }
bsw/jbe@6 77 ui.submit{ text = _"Set new password" }
bsw/jbe@6 78 end
bsw/jbe@6 79 }
bsw/jbe@6 80
bsw/jbe@6 81 end

Impressum / About Us