4 سال پیش · 7886bdae8d
--- a/packages/app/src/server/middlewares/inject-reset-order-by-token-middleware.js
+++ b/packages/app/src/server/middlewares/inject-reset-order-by-token-middleware.js
--- a/packages/app/src/server/routes/apiv3/forgot-password.js
+++ b/packages/app/src/server/routes/apiv3/forgot-password.js
@@ -16,7 +16,7 @@ module.exports = (crowi) => {
 
															   const path = require('path');
														
 
															   const csrf = require('../../middlewares/csrf')(crowi);
														
 
															   const apiV3FormValidator = require('../../middlewares/apiv3-form-validator')(crowi);
														
 
															-  const passwordReset = require('../../middlewares/password-reset')(crowi);
														
 
															+  const injectResetOrderByTokenMiddleware = require('../../middlewares/inject-reset-order-by-token-middleware')(crowi);
														
 
															   const validator = {
														
 
															     password: [
														
@@ -79,7 +79,7 @@ module.exports = (crowi) => {
 
															     }
														
 
															   });
														
 
															-  router.put('/:token', apiLimiter, csrf, passwordReset, validator.password, apiV3FormValidator, async(req, res) => {
														
 
															+  router.put('/:token', apiLimiter, csrf, injectResetOrderByTokenMiddleware, validator.password, apiV3FormValidator, async(req, res) => {
														
 
															     const passwordResetOrder = req.DataFromPasswordResetOrderMiddleware;
														
 
															     const { email } = passwordResetOrder;
														
 
															     const grobalLang = configManager.getConfig('crowi', 'app:globalLang');
														
--- a/packages/app/src/server/routes/index.js
+++ b/packages/app/src/server/routes/index.js
@@ -21,7 +21,7 @@ module.exports = function(crowi, app) {
 
															   const adminRequired = require('../middlewares/admin-required')(crowi);
														
 
															   const certifySharedFile = require('../middlewares/certify-shared-file')(crowi);
														
 
															   const csrf = require('../middlewares/csrf')(crowi);
														
 
															-  const passwordReset = require('../middlewares/password-reset')(crowi);
														
 
															+  const injectResetOrderByTokenMiddleware = require('../middlewares/inject-reset-order-by-token-middleware')(crowi);
														
 
															   const uploads = multer({ dest: `${crowi.tmpDir}uploads` });
														
 
															   const form = require('../form');
														
@@ -186,7 +186,7 @@ module.exports = function(crowi, app) {
 
															   app.post('/_api/hackmd.saveOnHackmd'   , accessTokenParser , loginRequiredStrictly , csrf, hackmd.validateForApi, hackmd.saveOnHackmd);
														
 
															   app.get('/forgot-password', forgotPassword.forgotPassword);
														
 
															-  app.get('/forgot-password/:token'      ,apiLimiter, passwordReset, forgotPassword.resetPassword);
														
 
															+  app.get('/forgot-password/:token'      ,apiLimiter, injectResetOrderByTokenMiddleware, forgotPassword.resetPassword);
														
 
															   app.get('/forgot-password/error/:reason'      , applicationInstalled, forgotPassword.error);
														
 
															   app.get('/share/:linkId', page.showSharedPage);