Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-11 08:25:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: errors thrown if no password sent in to profile edit route

Browse Source
This commit is contained in:
Julian Lam
2020-10-01 16:58:29 -04:00
parent 549ca11056
commit 7757f965eb
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/controllers/write/users.js
View File

@@ -29,7 +29,7 @@ Users.update = async (req, res) => {
const [isAdminOrGlobalMod, canEdit, passwordMatch] = await Promise.all([
user.isAdminOrGlobalMod(req.user.uid),
privileges.users.canEdit(req.user.uid, req.params.uid),
user.isPasswordCorrect(req.body.uid, req.body.password, req.ip),
req.body.password ? user.isPasswordCorrect(req.body.uid, req.body.password, req.ip) : false,
]);
// Changing own email/username requires password confirmation