Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Merge pull request #28583 from edx/update-session-on-change-password

Browse Source 
update session on password change
This commit is contained in:
Uzair Rasheed
2021-09-01 04:09:21 +05:00
committed by GitHub
parent e492ff6050 d0c953f261
commit c1dabd1af3
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
openedx/core/djangoapps/user_authn/views/password_reset.py
View File

@@ -4,6 +4,7 @@ import logging
from django import forms
from django.conf import settings
from django.contrib import messages
from django.contrib.auth import update_session_auth_hash
from django.contrib.auth.forms import PasswordResetForm, SetPasswordForm
from django.contrib.auth.hashers import UNUSABLE_PASSWORD_PREFIX
from django.contrib.auth.models import User # lint-amnesty, pylint: disable=imported-auth-user
@@ -509,6 +510,7 @@ class PasswordResetConfirmWrapper(PasswordResetConfirmView):
if LoginFailures.is_feature_enabled():
LoginFailures.clear_lockout_counter(updated_user)
update_session_auth_hash(request, updated_user)
send_password_reset_success_email(updated_user, request)
return response
@@ -773,6 +775,7 @@ class LogistrationPasswordResetView(APIView): # lint-amnesty, pylint: disable=m
LoginFailures.clear_lockout_counter(user)
send_password_reset_success_email(user, request)
update_session_auth_hash(request, user)
except ValidationError as err:
AUDIT_LOG.exception("Password validation failed")
error_status = {