import club.wpia.gigi.util.AuthorizationContext;
import club.wpia.gigi.util.RandomToken;
import club.wpia.gigi.util.ServerConstants;
+import club.wpia.gigi.util.ServerConstants.Host;
public class PasswordResetPage extends Page {
@Override
public SuccessMessageResult submit(HttpServletRequest req) throws GigiApiException {
- try (GigiPreparedStatement passwordReset = new GigiPreparedStatement("UPDATE `passwordResetTickets` SET `used` = CURRENT_TIMESTAMP WHERE `used` IS NULL AND `created` < CURRENT_TIMESTAMP - interval '1 hours' * ?;")) {
+ try (GigiPreparedStatement passwordReset = new GigiPreparedStatement("UPDATE `passwordResetTickets` SET `used` = CURRENT_TIMESTAMP WHERE `used` IS NULL AND `created` < CURRENT_TIMESTAMP - interval '1 hours' * ?::INTEGER;")) {
passwordReset.setInt(1, HOUR_MAX);
passwordReset.execute();
}
throw new GigiApiException("New passwords differ.");
}
u.consumePasswordResetTicket(id, tok, p1);
+ u.writeUserLog(u, "User token based password reset");
return new SuccessMessageResult(new TranslateCommand("Password reset successful."));
}
try {
new PasswordResetForm(req).output(resp.getWriter(), getLanguage(req), getDefaultVars(req));
} catch (GigiApiException e) {
- e.format(resp.getWriter(), getLanguage(req));
+ e.format(resp.getWriter(), getLanguage(req), getDefaultVars(req));
}
}
HashMap<String, Object> vars = new HashMap<>();
vars.put("subject", subject);
vars.put("method", method);
- vars.put("link", "https://" + ServerConstants.getWwwHostNamePortSecure() + PasswordResetPage.PATH //
+ vars.put("link", "https://" + ServerConstants.getHostNamePortSecure(Host.WWW) + PasswordResetPage.PATH //
+ "?id=" + id + "&token=" + URLEncoder.encode(ptok, "UTF-8"));
vars.put("hour_max", HOUR_MAX);
projects / gigi.git / blobdiff