From 31acd6d0c299f2342cb1aec66522db6e100c60db Mon Sep 17 00:00:00 2001
From: Wolfgang Knopki <wolfgang.knopki@hft-stuttgart.de>
Date: Mon, 9 Dec 2019 15:32:56 +0100
Subject: [PATCH] token reset passwd

---
 config/config.js | 2 +-
 routes/routes.js | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/config/config.js b/config/config.js
index 22588677..a64a4226 100644
--- a/config/config.js
+++ b/config/config.js
@@ -1,7 +1,7 @@
 module.exports = {
   development: {
     app: {
-      hostname: 'm4lab.hft-stuttgart.de/account/',
+      hostname: 'm4lab.hft-stuttgart.de/account',
       name: 'User Account Management',
       port: process.env.PORT || 9989
     },
diff --git a/routes/routes.js b/routes/routes.js
index 7f7598d8..e849589e 100644
--- a/routes/routes.js
+++ b/routes/routes.js
@@ -364,11 +364,12 @@ module.exports = function (app, config, passport) {
   });
 
   app.post('/reset/:token', function(req, res) {
+    var newPwd = req.body.inputNewPwd  
     methods.checkUserToken(req.params.token, function(err, user){
       if (user) {
         // update password
         bcrypt.genSalt(saltRounds, function(err, salt) {
-          bcrypt.hash(req.params.inputNewPwd, salt, function(err, hash) {
+          bcrypt.hash(newPwd, salt, function(err, hash) {
             methods.updatePassword(hash, user.email, function(err){
               if (err) {
                 req.flash('error', "Database error: Password cannot be modified.")
-- 
GitLab