prosody-modules: mod_password_reset/mod_password

comparison mod_password_reset/mod_password_reset.lua @ 3352:f7668aee968a

mod_password_reset: Switch to util.interpolation (our standard template library)

author	Matthew Wild <mwild1@gmail.com>
date	Tue, 09 Oct 2018 14:09:54 +0100
parents	0ce475235ae1
children	e8d6f602f382

comparison

equal deleted inserted replaced

-:662f2722f745
+:f7668aee968a
 local new_token = require "util.id".long;
 local jid_prepped_split = require "util.jid".prepped_split;
 local http_formdecode = require "net.http".formdecode;
 local usermanager = require "core.usermanager";
 local dataforms_new = require "util.dataforms".new;
-local tohtml = require "util.stanza".xml_escape
+local st = require "util.stanza";
+local apply_template = require"util.interpolation".new("%b{}", st.xml_escape);
 local tostring = tostring;
 local reset_tokens = module:open_store();
 local max_token_age = module:get_option_number("password_reset_validity", 86400);
 local serve = module:depends"http_files".serve;
 module:depends"adhoc";
 module:depends"http";
-local function apply_template(template, args)
+local form_template = assert(module:load_resource("password_reset/password_reset.html")):read("*a");
-	return
+local result_template = assert(module:load_resource("password_reset/password_result.html")):read("*a");
-		template:gsub("{{([^}]*)}}", function (k)
-			if args[k] then
-				return tohtml(args[k])
-			else
-				return k
-			end
-		end)
-end
 function generate_page(event)
 	local request, response = event.request, event.response;
 	local token = request.url.query;
 	response.headers.content_type = "text/html; charset=utf-8";
 	if not reset_info or os.difftime(os.time(), reset_info.generated_at) > max_token_age then
 		module:log("warn", "Expired token: %s", token or "<none>");
-		local template = assert(module:load_resource("password_reset/password_result.html")):read("*a");
+		return apply_template(result_template, { classes = "alert-danger", message = "This link has expired." })
-		return apply_template(template, { classes = "alert-danger", message = "This link has expired." })
 	end
-	local template = assert(module:load_resource("password_reset/password_reset.html")):read("*a");
+	return apply_template(form_template, {
+		jid = reset_info.user.."@"..module.host;
-	return apply_template(template, { jid = reset_info.user.."@"..module.host, token = token });
+		token = token;
+	});
 end
 function handle_form(event)
 	local request, response = event.request, event.response;
 	local form_data = http_formdecode(request.body);
 	local password, token = form_data["password"], form_data["token"];
 	local reset_info = reset_tokens:get(token);
-	local template = assert(module:load_resource("password_reset/password_result.html")):read("*a");
 	response.headers.content_type = "text/html; charset=utf-8";
 	if not reset_info or os.difftime(os.time(), reset_info.generated_at) > max_token_age then
-		return apply_template(template, { classes = "alert-danger", message = "This link has expired." })
+		return apply_template(result_template, { classes = "alert-danger", message = "This link has expired." })
 	end
 	local ok, err = usermanager.set_password(reset_info.user, password, module.host);
 	if ok then
 		reset_tokens:set(token, nil);
-		return apply_template(template, { classes = "alert-success",
+		return apply_template(result_template, { classes = "alert-success",
 			message = "Your password has been updated! Happy chatting :)" })
 	else
 		module:log("debug", "Resetting password failed: " .. tostring(err));
+		return apply_template(result_template, {
-		return apply_template(template, { classes = "alert-danger", message = "An unknown error has occurred." })
+			classes = "alert-danger";
+			message = "An unknown error has occurred.";
+		})
 	end
 end
 module:provides("http", {
 	route = {

Mercurial > prosody-modules

comparison mod_password_reset/mod_password_reset.lua @ 3352:f7668aee968a