Redirect to login when requesting resetting password with invalid / old token

runawaycoin · web-flow · commit 986b926cfed0 · 2017-12-01T13:14:31.000Z
If the reset password token has already been used, clicking the original link will produce 404 page, would be better just to redirect to login page
diff --git a/Controller/ResettingController.php b/Controller/ResettingController.php
@@ -146,7 +146,7 @@ public function resetAction(Request $request, $token)
         $user = $userManager->findUserByConfirmationToken($token);
 
         if (null === $user) {
-            throw new NotFoundHttpException(sprintf('The user with "confirmation token" does not exist for value "%s"', $token));
+            return new RedirectResponse($this->container->get('router')->generate('fos_user_security_login'));
         }
 
         $event = new GetResponseUserEvent($user, $request);

Original file line number	Diff line number	Diff line change
`@@ -146,7 +146,7 @@ public function resetAction(Request $request, $token)`
`146`	`146`	`$user = $userManager->findUserByConfirmationToken($token);`
`147`	`147`
`148`	`148`	`if (null === $user) {`
`149`		`- throw new NotFoundHttpException(sprintf('The user with "confirmation token" does not exist for value "%s"', $token));`
	`149`	`+ return new RedirectResponse($this->container->get('router')->generate('fos_user_security_login'));`
`150`	`150`	`}`
`151`	`151`
`152`	`152`	`$event = new GetResponseUserEvent($user, $request);`