4 лет назад · 7886bdae8d
--- a/packages/app/src/server/middlewares/inject-reset-order-by-token-middleware.js
+++ b/packages/app/src/server/middlewares/inject-reset-order-by-token-middleware.js
--- a/packages/app/src/server/routes/apiv3/forgot-password.js
+++ b/packages/app/src/server/routes/apiv3/forgot-password.js
@@ -16,7 +16,7 @@ module.exports = (crowi) => {
 
				   const path = require('path');
			
 
				   const csrf = require('../../middlewares/csrf')(crowi);
			
 
				   const apiV3FormValidator = require('../../middlewares/apiv3-form-validator')(crowi);
			
 
				-  const passwordReset = require('../../middlewares/password-reset')(crowi);
			
 
				+  const injectResetOrderByTokenMiddleware = require('../../middlewares/inject-reset-order-by-token-middleware')(crowi);
			
 
				 
			
 
				   const validator = {
			
 
				     password: [
			
@@ -79,7 +79,7 @@ module.exports = (crowi) => {
 
				     }
			
 
				   });
			
 
				 
			
 
				-  router.put('/:token', apiLimiter, csrf, passwordReset, validator.password, apiV3FormValidator, async(req, res) => {
			
 
				+  router.put('/:token', apiLimiter, csrf, injectResetOrderByTokenMiddleware, validator.password, apiV3FormValidator, async(req, res) => {
			
 
				     const passwordResetOrder = req.DataFromPasswordResetOrderMiddleware;
			
 
				     const { email } = passwordResetOrder;
			
 
				     const grobalLang = configManager.getConfig('crowi', 'app:globalLang');
			
--- a/packages/app/src/server/routes/index.js
+++ b/packages/app/src/server/routes/index.js
@@ -21,7 +21,7 @@ module.exports = function(crowi, app) {
 
				   const adminRequired = require('../middlewares/admin-required')(crowi);
			
 
				   const certifySharedFile = require('../middlewares/certify-shared-file')(crowi);
			
 
				   const csrf = require('../middlewares/csrf')(crowi);
			
 
				-  const passwordReset = require('../middlewares/password-reset')(crowi);
			
 
				+  const injectResetOrderByTokenMiddleware = require('../middlewares/inject-reset-order-by-token-middleware')(crowi);
			
 
				 
			
 
				   const uploads = multer({ dest: `${crowi.tmpDir}uploads` });
			
 
				   const form = require('../form');
			
@@ -186,7 +186,7 @@ module.exports = function(crowi, app) {
 
				   app.post('/_api/hackmd.saveOnHackmd'   , accessTokenParser , loginRequiredStrictly , csrf, hackmd.validateForApi, hackmd.saveOnHackmd);
			
 
				 
			
 
				   app.get('/forgot-password', forgotPassword.forgotPassword);
			
 
				-  app.get('/forgot-password/:token'      ,apiLimiter, passwordReset, forgotPassword.resetPassword);
			
 
				+  app.get('/forgot-password/:token'      ,apiLimiter, injectResetOrderByTokenMiddleware, forgotPassword.resetPassword);
			
 
				   app.get('/forgot-password/error/:reason'      , applicationInstalled, forgotPassword.error);
			
 
				 
			
 
				   app.get('/share/:linkId', page.showSharedPage);