class Auth::PasswordsController < Devise::PasswordsController include Helpers::Email def reset_confirmation self.resource = resource_class.new @email = params["email"] if @email.empty? resource.errors.add :email, I18n.t("validations.email.blank") render "devise/passwords/new", status: :unprocessable_entity elsif !email_valid?(@email) resource.errors.add :email, I18n.t("validations.email.invalid") render "devise/passwords/new", status: :unprocessable_entity else render "devise/confirmations/reset" end end def create self.resource = resource_class.send_reset_password_instructions(resource_params) yield resource if block_given? respond_with({}, location: after_sending_reset_password_instructions_path_for(resource_name)) end def edit super render "devise/passwords/reset_password" end def update self.resource = resource_class.reset_password_by_token(resource_params) yield resource if block_given? if resource.errors.empty? resource.unlock_access! if unlockable?(resource) if Devise.sign_in_after_reset_password set_flash_message!(:notice, password_update_flash_message) resource.after_database_authentication sign_in(resource_name, resource) set_2fa_required else set_flash_message!(:notice, :updated_not_active) end respond_with resource, location: after_resetting_password_path_for(resource) else set_minimum_password_length respond_with resource, status: :unprocessable_entity end end protected def set_2fa_required return unless resource.respond_to?(:need_two_factor_authentication?) && resource.need_two_factor_authentication?(request) warden.session(resource_class.name.underscore)[TwoFactorAuthentication::NEED_AUTHENTICATION] = true end def password_update_flash_message resource_class == AdminUser ? :updated_2FA : :updated end def resource_class_name resource_class.name.underscore end def after_sending_reset_password_instructions_path_for(_resource) confirmations_reset_path(email: params.dig(resource_class_name, "email")) end def after_resetting_password_path_for(resource) if Devise.sign_in_after_reset_password if resource_class == AdminUser resource.send_new_otp admin_user_two_factor_authentication_path else after_sign_in_path_for(resource) end else new_session_path(resource_name) end end end