mirror of
https://github.com/TryGhost/Ghost.git
synced 2024-11-28 22:43:30 +03:00
b006eda9f0
closes #6229 - removes `_super` call in the reset route's `setupController` hook to avoid a `model` property being set which was being picked up by the validation engine - throw the error if we fail in the password reset process from something we aren't expecting
73 lines
2.5 KiB
JavaScript
73 lines
2.5 KiB
JavaScript
import Ember from 'ember';
|
|
import {request as ajax} from 'ic-ajax';
|
|
import ValidationEngine from 'ghost/mixins/validation-engine';
|
|
|
|
const {Controller, computed, inject} = Ember;
|
|
|
|
export default Controller.extend(ValidationEngine, {
|
|
newPassword: '',
|
|
ne2Password: '',
|
|
token: '',
|
|
submitting: false,
|
|
flowErrors: '',
|
|
|
|
validationType: 'reset',
|
|
|
|
ghostPaths: inject.service('ghost-paths'),
|
|
notifications: inject.service(),
|
|
session: inject.service(),
|
|
|
|
email: computed('token', function () {
|
|
// The token base64 encodes the email (and some other stuff),
|
|
// each section is divided by a '|'. Email comes second.
|
|
return atob(this.get('token')).split('|')[1];
|
|
}),
|
|
|
|
// Used to clear sensitive information
|
|
clearData() {
|
|
this.setProperties({
|
|
newPassword: '',
|
|
ne2Password: '',
|
|
token: ''
|
|
});
|
|
},
|
|
|
|
actions: {
|
|
submit() {
|
|
let credentials = this.getProperties('newPassword', 'ne2Password', 'token');
|
|
|
|
this.set('flowErrors', '');
|
|
this.get('hasValidated').addObjects(['newPassword', 'ne2Password']);
|
|
this.validate().then(() => {
|
|
this.toggleProperty('submitting');
|
|
ajax({
|
|
url: this.get('ghostPaths.url').api('authentication', 'passwordreset'),
|
|
type: 'PUT',
|
|
data: {
|
|
passwordreset: [credentials]
|
|
}
|
|
}).then((resp) => {
|
|
this.toggleProperty('submitting');
|
|
this.get('notifications').showAlert(resp.passwordreset[0].message, {type: 'warn', delayed: true, key: 'password.reset'});
|
|
this.get('session').authenticate('authenticator:oauth2', this.get('email'), credentials.newPassword);
|
|
}).catch((response) => {
|
|
this.get('notifications').showAPIError(response, {key: 'password.reset'});
|
|
this.toggleProperty('submitting');
|
|
});
|
|
}).catch((error) => {
|
|
if (this.get('errors.newPassword')) {
|
|
this.set('flowErrors', this.get('errors.newPassword')[0].message);
|
|
}
|
|
|
|
if (this.get('errors.ne2Password')) {
|
|
this.set('flowErrors', this.get('errors.ne2Password')[0].message);
|
|
}
|
|
|
|
if (this.get('errors.length') === 0) {
|
|
throw error;
|
|
}
|
|
});
|
|
}
|
|
}
|
|
});
|