+ def lost_password
+ if params['user']['email']
+ user = User.find_by_email(params['user']['email'])
+ if user
+ user.token = User.make_token
+ user.save
+ Notifier::deliver_lost_password(user)
+ flash[:notice] = "Sorry you lost it :-( but an email is on it's way so you can reset it soon."
+ else
+ flash[:notice] = "Couldn't find that email address, sorry."
+ end
+ end
+ end
+
+ def reset_password
+ if params['token']
+ user = User.find_by_token(params['token'])
+ if user
+ pass = User.make_token(8)
+ user.pass_crypt = pass
+ user.save
+ Notifier::deliver_reset_password(user, pass)
+ flash[:notice] = "You're password has been changed and is on the way to your mailbox :-)"
+ else
+ flash[:notice] = "Didn't find that token, check the URL maybe?"
+ end
+ end
+ redirect_to :action => 'login'