def process_password_reset(secret_key, new_password):
user = None
error_messages = User.is_password_valid(new_password)
if not error_messages:
secret = Secret.lookup_secret(secret_key)
error_message = ''
if secret is not None:
secret_info = secret.get_info()
userId = secret_info.get('userId', None)
action = secret_info.get('action', None)
if action == 'password_reset' and userId is not None:
user = store.session.query(User).filter_by(id=userId).first()
if user is not None:
error_messages += user.set_password(new_password)
if not error_messages:
secret.used = True
store.session.add(user)
store.session.add(secret)
store.session.commit()
else:
error_messages.append('Authorization for this action is invalid or expired.')
return (user, error_messages)
def process_password_reset(secret_key, new_password):
user = None
error_messages = User.is_password_valid(new_password)
if not error_messages:
secret = Secret.lookup_secret(secret_key)
error_message = ''
if secret is not None:
secret_info = secret.get_info()
userId = secret_info.get('userId', None)
action = secret_info.get('action', None)
if action == 'password_reset' and userId is not None:
user = store.session.query(User).filter_by(id=userId).first()
if user is not None:
error_messages += user.set_password(new_password)
if not error_messages:
secret.used = True
store.session.add(user)
store.session.add(secret)
store.session.commit()
else:
error_messages.append(
'Authorization for this action is invalid or expired.')
return (user, error_messages)
