namespace BookStack\Http\Controllers\Auth;
+use BookStack\Actions\ActivityType;
use BookStack\Http\Controllers\Controller;
use Illuminate\Foundation\Auth\ResetsPasswords;
use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Password;
class ResetPasswordController extends Controller
{
public function __construct()
{
$this->middleware('guest');
- parent::__construct();
+ $this->middleware('guard:standard');
}
/**
* Get the response for a successful password reset.
*
* @param Request $request
- * @param string $response
+ * @param string $response
+ *
* @return \Illuminate\Http\Response
*/
protected function sendResetResponse(Request $request, $response)
{
$message = trans('auth.reset_password_success');
$this->showSuccessNotification($message);
+ $this->logActivity(ActivityType::AUTH_PASSWORD_RESET_UPDATE, user());
+
return redirect($this->redirectPath())
->with('status', trans($response));
}
+
+ /**
+ * Get the response for a failed password reset.
+ *
+ * @param \Illuminate\Http\Request $request
+ * @param string $response
+ *
+ * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\JsonResponse
+ */
+ protected function sendResetFailedResponse(Request $request, $response)
+ {
+ // We show invalid users as invalid tokens as to not leak what
+ // users may exist in the system.
+ if ($response === Password::INVALID_USER) {
+ $response = Password::INVALID_TOKEN;
+ }
+
+ return redirect()->back()
+ ->withInput($request->only('email'))
+ ->withErrors(['email' => trans($response)]);
+ }
}
projects / bookstack / blobdiff