swissmakers_gmbh/swiss-datashare
12
0
Fork 0
mirror of https://github.com/swissmakers/swiss-datashare.git synced 2026-04-17 12:43:13 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix: user enumaration on forgot password page

Browse Source
This commit is contained in:
Elias Schneider
2024-02-18 21:46:50 +01:00
parent 6058dca273
commit 64515d77cf
23 changed files with 3323 additions and 1685 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
backend/src/auth/auth.controller.ts
View File

@@ -96,9 +96,9 @@ export class AuthController {
@Post("resetPassword/:email")
@Throttle(5, 5 * 60)
@HttpCode(204)
@HttpCode(202)
async requestResetPassword(@Param("email") email: string) {
return await this.authService.requestResetPassword(email);
this.authService.requestResetPassword(email);
}
@Post("resetPassword")

2
backend/src/user/dto/updateOwnUser.dto.ts
View File

@@ -2,5 +2,5 @@ import { PartialType, PickType } from "@nestjs/swagger";
import { UserDTO } from "./user.dto";
export class UpdateOwnUserDTO extends PartialType(
PickType(UserDTO, ["username", "email"] as const)
PickType(UserDTO, ["username", "email"] as const),
) {}