]> git.openstreetmap.org Git - rails.git/commit
projects / rails.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 664d029) | patch
Be paranoid when sending password reset emails
authorAndy Allan <git@gravitystorm.co.uk>
Sat, 2 Mar 2024 15:48:54 +0000 (15:48 +0000)
committerAndy Allan <git@gravitystorm.co.uk>
Sat, 2 Mar 2024 15:48:54 +0000 (15:48 +0000)
commit4e237db3902fd9cd9d2f55131c8bba2e830e87fd
treec3c8d2329be23217e54ff3be2ce030fb4256e9b2tree | snapshot
parent664d02982cbaa8b1223ef03047b6134ff1ffbdaccommit | diff
Be paranoid when sending password reset emails

This implements what is known as "paranoid" password reset flash
messages (using the terminology from Devise). It avoids revealing
whether the supplied email address is already registered.

Added an explicit test for this situation, so that the test for
email non-existance is separate from the duplicate-case tests.
app/controllers/passwords_controller.rb diff | blob | history
config/locales/en.yml diff | blob | history
test/controllers/passwords_controller_test.rb diff | blob | history
The OpenStreetMap web site