rhodecode-enterprise-ce Files · rhodecode/templates/password_reset.mako

security: fixed issues with exposing repository names using global PR redirection link...

security: fixed issues with exposing repository names using global PR redirection link logic. - Since redirect was created to repository which linked to the PR, users who didn't have permissions to those repos could still see the name in the url generated.

dan - - Load All Authors

File last commit:

r3543:692134f0 default


                r4044:573a1043

default

Download file

             password_reset.mako
        
                    103 lines
            
             | 3.8 KiB
            
                | application/x-mako
            
             |
                MakoHtmlLexer
            
             / rhodecode / templates / password_reset.mako
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      ## -*- coding: utf-8 -*-

      <%inherit file="base/root.mako"/>

      <%def name="title()">

          ${_('Reset Password')}

          %if c.rhodecode_name:

              &middot; ${h.branding(c.rhodecode_name)}

          %endif

      </%def>

      <style>body{background-color:#eeeeee;}</style>

      <div class="loginbox">

          <div class="header">

              <div id="header-inner" class="title">

                  <div id="logo">

                      <div class="logo-wrapper">

                          <a href="${h.route_path('home')}"><img src="${h.asset('images/rhodecode-logo-white-60x60.png')}" alt="RhodeCode"/></a>

                      </div>

                      % if c.rhodecode_name:

                      <div class="branding">

                         <a href="${h.route_path('home')}">${h.branding(c.rhodecode_name)}</a>

                      </div>

                      % endif

                  </div>

              </div>

          </div>

          <div class="loginwrapper">

              <rhodecode-toast id="notifications"></rhodecode-toast>

              <div class="left-column">

                  <img class="sign-in-image" src="${h.asset('images/sign-in.png')}" alt="RhodeCode"/>

              </div>

              %if h.HasPermissionAny('hg.password_reset.disabled')():

                  <div class="right-column">

                      <p>

                          ${_('Password reset is disabled. Please contact ')}

                          % if c.visual.rhodecode_support_url:

                              <a href="${c.visual.rhodecode_support_url}" target="_blank">${_('Support')}</a>

                              ${_('or')}

                          % endif

                          ${_('an administrator if you need help.')}

                      </p>

                  </div>

              %else:

                  <div id="register" class="right-column">

                      <!-- login -->

                      <div class="sign-in-title">

                          <h1>${_('Reset your Password')}</h1>

                          <h4>${h.link_to(_("Go to the login page to sign in."), request.route_path('login'))}</h4>

                      </div>

                      <div class="inner form">

                          ${h.form(request.route_path('reset_password'), needs_csrf_token=False)}

                              <label for="email">${_('Email Address')}:</label>

                              ${h.text('email', defaults.get('email'))}

                              %if 'email' in errors:

                                <span class="error-message">${errors.get('email')}</span>

                                <br />

                              %endif

                              <p class="help-block">${_('Password reset link will be sent to matching email address')}</p>

                              %if captcha_active:

                              <div class="login-captcha">

                                  <label for="email">${_('Captcha')}:</label>

                                  ${h.hidden('recaptcha_field')}

                                  <div id="recaptcha"></div>

                                  %if 'recaptcha_field' in errors:

                                    <span class="error-message">${errors.get('recaptcha_field')}</span>

                                    <br />

                                  %endif

                              </div>

                              %endif

                              ${h.submit('send', _('Send password reset email'), class_="btn sign-in")}

                              <p class="help-block pull-right">

                                  RhodeCode ${c.rhodecode_edition}

                              </p>

                          ${h.end_form()}

                      </div>

                  </div>

              %endif

          </div>

      </div>

      <script type="text/javascript">

       $(document).ready(function(){

          $('#email').focus();

       });

      </script>

      % if captcha_active:

      <script type="text/javascript">

      var onloadCallback = function() {

          grecaptcha.render('recaptcha', {

            'sitekey' : "${captcha_public_key}"

          });

      };

      </script>

      <script src="https://www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit" async defer></script>

      % endif

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				## -- coding: utf-8 --
				<%inherit file="base/root.mako"/>

				<%def name="title()">
				${_('Reset Password')}
				%if c.rhodecode_name:
				· ${h.branding(c.rhodecode_name)}
				%endif
				</%def>
				<style>body{background-color:#eeeeee;}</style>

				<div class="loginbox">
				<div class="header">
				<div id="header-inner" class="title">
				<div id="logo">
				<div class="logo-wrapper">
				<a href="${h.route_path('home')}"><img src="${h.asset('images/rhodecode-logo-white-60x60.png')}" alt="RhodeCode"/></a>
				</div>
				% if c.rhodecode_name:
				<div class="branding">
				<a href="${h.route_path('home')}">${h.branding(c.rhodecode_name)}</a>
				</div>
				% endif
				</div>
				</div>
				</div>

				<div class="loginwrapper">
				<rhodecode-toast id="notifications"></rhodecode-toast>
				<div class="left-column">
				<img class="sign-in-image" src="${h.asset('images/sign-in.png')}" alt="RhodeCode"/>
				</div>

				%if h.HasPermissionAny('hg.password_reset.disabled')():
				<div class="right-column">
				<p>
				${_('Password reset is disabled. Please contact ')}
				% if c.visual.rhodecode_support_url:
				<a href="${c.visual.rhodecode_support_url}" target="_blank">${_('Support')}</a>
				${_('or')}
				% endif
				${_('an administrator if you need help.')}
				</p>
				</div>
				%else:
				<div id="register" class="right-column">
				<!-- login -->
				<div class="sign-in-title">
				<h1>${_('Reset your Password')}</h1>
				<h4>${h.link_to(_("Go to the login page to sign in."), request.route_path('login'))}</h4>
				</div>
				<div class="inner form">
				${h.form(request.route_path('reset_password'), needs_csrf_token=False)}
				<label for="email">${_('Email Address')}:</label>
				${h.text('email', defaults.get('email'))}
				%if 'email' in errors:
				<span class="error-message">${errors.get('email')}</span>
				<br />
				%endif
				<p class="help-block">${_('Password reset link will be sent to matching email address')}</p>

				%if captcha_active:
				<div class="login-captcha">
				<label for="email">${_('Captcha')}:</label>
				${h.hidden('recaptcha_field')}
				<div id="recaptcha"></div>

				%if 'recaptcha_field' in errors:
				<span class="error-message">${errors.get('recaptcha_field')}</span>
				<br />
				%endif
				</div>
				%endif

				${h.submit('send', _('Send password reset email'), class_="btn sign-in")}
				<p class="help-block pull-right">
				RhodeCode ${c.rhodecode_edition}
				</p>

				${h.end_form()}
				</div>
				</div>
				%endif
				</div>
				</div>

				<script type="text/javascript">
				$(document).ready(function(){
				$('#email').focus();
				});
				</script>

				% if captcha_active:
				<script type="text/javascript">
				var onloadCallback = function() {
				grecaptcha.render('recaptcha', {
				'sitekey' : "${captcha_public_key}"
				});
				};
				</script>
				<script src="https://www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit" async defer></script>
				% endif