prosody-modules
94399ad6b5ab
mod_jsxc/templates/template.html

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody-modules

File

mod_jsxc/templates/template.html @ 6191:94399ad6b5ab

mod_invites_register_api: Use set_password() for password resets Previously the code relied on the (weird) behaviour of create_user(), which would update the password for a user account if it already existed. This has several issues, and we plan to deprecate this behaviour of create_user(). The larger issue is that this route does not trigger the user-password-changed event, which can be a security problem. For example, it did not disconnect existing user sessions (this occurs in mod_c2s in response to the event). Switching to set_password() is the right thing to do.
author Matthew Wild <mwild1@gmail.com>
date Thu, 06 Feb 2025 10:13:39 +0000
parent 4826:3a5fbb6c61b3
line wrap: on
line source

<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
{header_style#
<link rel="stylesheet" type="text/css" media="screen" href="{item}"/>}
{header_scripts#
<script charset="utf-8" src="{item}"></script>}
<title>{service_name?Prosody IM and JSXC}</title>
{header_tags#
{item!}}
</head>
<body>
	<form id="jsxc_login_form" action="javascript:">
		<dl>
			<dt><label for="jsxc_username">Username</label></dt>
			<dd><input id="jsxc_username" name="username" placeholder="Alice"/></dd>
			<dt><label for="jsxc_password">Password</label></dt>
			<dd><input id="jsxc_password" name="password" type="password"/></dd>
		</dl>
		<button type="submit">Login</button>
	</form>

<script>{jsxcjs.startup.script!}</script>
</body>
</html>