Closed indeyets closed 9 years ago
Look gut now.
Lets not merge it at the moment.
This pull-request needs one more fix: during the update, we need to be sure, that email-index is not taken. otherwise we can end up with situation, when several users have same email address, but index points only to the last one, meaning that other accounts are not able to "restore" the password
the check should, probably, go to User.prototype.emailIsValid
Need a couple of tests:
@epicmonkey I am not sure what would be the proper way to test that proper user's password is reset
Let's just make sure you can fire controller's action like here: https://github.com/pepyatka/pepyatka-server/blob/development/test/functional/passwords.js#L32