diff options
| author | Tim Almdal <tnalmdal@shaw.ca> | 2009-10-26 11:37:03 -0700 |
|---|---|---|
| committer | Tim Almdal <tnalmdal@shaw.ca> | 2009-10-27 07:35:28 -0700 |
| commit | 2dcd8f8a25fc698f2279a09752cc7bb9dfe1d7ec (patch) | |
| tree | 2c1d8c47c00af1c2e43f3020e0613fea301b1501 /modules | |
| parent | 599cfab3b30be4a7495ec4bf58b06a805e23c829 (diff) | |
When we are changing the password using the change password from as part of the password reset, the input value is in the post[hash] variable as opposed to the get(key) value. This should fix ticket #850.
Diffstat (limited to 'modules')
| -rw-r--r-- | modules/user/controllers/password.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/user/controllers/password.php b/modules/user/controllers/password.php index 6bef1a17..b76a5e92 100644 --- a/modules/user/controllers/password.php +++ b/modules/user/controllers/password.php @@ -116,7 +116,7 @@ class Password_Controller extends Controller { private function _change_password() { $view = $this->_new_password_form(); if ($view->content->validate()) { - $user = user::lookup_user_by_field("hash", Input::instance()->get("key")); + $user = user::lookup_by_hash(Input::instance()->post("hash")); if (empty($user)) { throw new Exception("@todo FORBIDDEN", 503); } |