def process_password_reset(secret_key, new_password): user = None error_messages = User.is_password_valid(new_password) if not error_messages: secret = Secret.lookup_secret(secret_key) error_message = '' if secret is not None: secret_info = secret.get_info() userId = secret_info.get('userId', None) action = secret_info.get('action', None) if action == 'password_reset' and userId is not None: user = store.session.query(User).filter_by(id=userId).first() if user is not None: error_messages += user.set_password(new_password) if not error_messages: secret.used = True store.session.add(user) store.session.add(secret) store.session.commit() else: error_messages.append('Authorization for this action is invalid or expired.') return (user, error_messages)
def process_password_reset(secret_key, new_password): user = None error_messages = User.is_password_valid(new_password) if not error_messages: secret = Secret.lookup_secret(secret_key) error_message = '' if secret is not None: secret_info = secret.get_info() userId = secret_info.get('userId', None) action = secret_info.get('action', None) if action == 'password_reset' and userId is not None: user = store.session.query(User).filter_by(id=userId).first() if user is not None: error_messages += user.set_password(new_password) if not error_messages: secret.used = True store.session.add(user) store.session.add(secret) store.session.commit() else: error_messages.append( 'Authorization for this action is invalid or expired.') return (user, error_messages)