fix password-reset-code vulnerability
This commit is contained in:
parent
393369a9b8
commit
5ab33fbca8
|
@ -24,8 +24,10 @@ const UserMessages = () => {
|
||||||
{messages.includes('not_verified')
|
{messages.includes('not_verified')
|
||||||
&& (
|
&& (
|
||||||
<p className="usermessages">
|
<p className="usermessages">
|
||||||
{t`Please verify your mail address
|
{
|
||||||
or your account could get deleted after a few days.`}
|
// eslint-disable-next-line max-len
|
||||||
|
t`Please verify your mail address or your account could get deleted after a few days.`
|
||||||
|
}
|
||||||
{(verifyAnswer)
|
{(verifyAnswer)
|
||||||
? (
|
? (
|
||||||
<span
|
<span
|
||||||
|
|
|
@ -4,6 +4,7 @@
|
||||||
|
|
||||||
/* eslint-disable max-len */
|
/* eslint-disable max-len */
|
||||||
|
|
||||||
|
import { randomUUID } from 'crypto';
|
||||||
import nodemailer from 'nodemailer';
|
import nodemailer from 'nodemailer';
|
||||||
|
|
||||||
import logger from './logger';
|
import logger from './logger';
|
||||||
|
@ -200,6 +201,10 @@ class MailProvider {
|
||||||
return `${part1}-${part2}`;
|
return `${part1}-${part2}`;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
static createCode() {
|
||||||
|
return randomUUID();
|
||||||
|
}
|
||||||
|
|
||||||
static cleanUsers() {
|
static cleanUsers() {
|
||||||
// delete users that requier verification for more than 4 days
|
// delete users that requier verification for more than 4 days
|
||||||
/*
|
/*
|
||||||
|
|
Loading…
Reference in New Issue
Block a user