|
|
@@ -4,6 +4,10 @@ module.exports = (crowi, app) => {
|
|
|
return async(req, res, next) => {
|
|
|
const { token, email } = req.query;
|
|
|
|
|
|
+ if (token == null || email == null) {
|
|
|
+ return res.redirect('/login');
|
|
|
+ }
|
|
|
+
|
|
|
const passwordResetOrder = await PasswordResetOrder.findOne({ token, email });
|
|
|
// check the oneTimeToken is valid
|
|
|
if (passwordResetOrder == null || passwordResetOrder.isExpired()) {
|
kaori