diff options
| author | Tim Almdal <tnalmdal@shaw.ca> | 2009-10-26 11:37:03 -0700 |
|---|---|---|
| committer | Tim Almdal <tnalmdal@shaw.ca> | 2009-10-26 11:37:03 -0700 |
| commit | cb3d619b06ce8c72e5e69d3a3d360ef5b759e3b1 (patch) | |
| tree | 419c6170a38350c8e488b8f21a68035144ddf434 | |
| parent | f517ef4baf48ef7e1f8cbf1ed073c13c0cdf131f (diff) | |
When we are changing the password using the change password from as part of the password reset, the input value is in the post[hash] variable as opposed to the get(key) value. This should fix ticket #850.
| -rw-r--r-- | modules/user/controllers/password.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/user/controllers/password.php b/modules/user/controllers/password.php index e8b08960..f669b2c4 100644 --- a/modules/user/controllers/password.php +++ b/modules/user/controllers/password.php @@ -116,7 +116,7 @@ class Password_Controller extends Controller { private function _change_password() { $view = $this->_new_password_form(); if ($view->content->validate()) { - $user = user::lookup_by_hash(Input::instance()->get("key")); + $user = user::lookup_by_hash(Input::instance()->post("hash")); if (empty($user)) { throw new Exception("@todo FORBIDDEN", 503); } |