deblan/journalduhacker
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Require current password on password change - merged with i18n

Browse source
This commit is contained in:
Carl Chenet 2017-05-17 19:36:41 +02:00
parent 6b20a3a913
commit a823a31688
4 changed files with 18 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
app/controllers/settings_controller.rb
View file

@ -67,9 +67,14 @@ class SettingsController < ApplicationController
def update
@edit_user = @user.clone
if @edit_user.update_attributes(user_params)
flash.now[:success] = t('.updatesettingsflash')
@user = @edit_user
if params[:user][:password].empty? ||
@user.authenticate(params[:current_password].to_s)
if @edit_user.update_attributes(user_params)
flash.now[:success] = t('.updatesettingsflash')
@user = @edit_user
end
else
flash[:error] = t('.passwordnotcorrect')
end
render :action => "index"

6
app/views/settings/index.html.erb
View file

@ -18,6 +18,12 @@
</span>
</div>
<div class="boxline">
<%= label_tag :current_password, t('.currentpassword'),
:class => "required" %>
<%= password_field_tag :current_password, nil, :size => 40 %>
</div>
<div class="boxline">
<%= f.label :password, t('.password'), :class => "required" %>
<%= f.password_field :password, :size => 40, :autocomplete => "off" %>

2
config/locales/en.yml
View file

@ -250,6 +250,7 @@ en:
accountsettings: "Account Settings"
username: "Username:"
password: "New Password:"
currentpassword: "Current Password:"
confirmpassword: "Confirm Password:"
emailaddress: "E-mail Address:"
gravatarized: "<a href=\"http://www.gravatar.com/\" target=\"_blank\">Gravatar</a>'ized"
@ -328,6 +329,7 @@ en:
verifyenable: "Verify and Enable"
update:
updatesettingsflash: "Successfully updated settings."
passwordnotcorrect: "Your password was not correct."
stories:
edit:
edit: "Edit Story"

2
config/locales/fr.yml
View file

@ -260,6 +260,7 @@ fr:
accountsettings: "Paramètres du compte"
username: "Utilisateur :"
password: "Nouveau mot de passe :"
currentpassword: "Mot de passe actuel :"
confirmpassword: "Confirmer le mot de passe :"
emailaddress: "Adresse e-mail :"
gravatarized: "<a href=\"http://www.gravatar.com/\" target=\"_blank\">Gravatar</a>isé"
@ -338,6 +339,7 @@ fr:
verifyenable: "Vérifier et Activer"
update:
updatesettingsflash: "Paramètres mis à jour avec succès."
passwordnotcorrect: "Le mot de passe est incorrect."
stories:
edit:
edit: "Éditer l'info"