public void ForgotPassword(ForgotPasswordRequestViewModel model, string origin)
{
var account = _userDataMgr.GetUser(model.Email);
// always return ok response to prevent email enumeration
if (account == null)
{
return;
}
// create reset token that expires after 1 day
account.ResetToken = randomTokenString();
account.ResetTokenExpires = DateTime.UtcNow.AddDays(1);
_userDataMgr.UpdateUser(account);
// send email
sendPasswordResetEmail(account, origin);
}
public IActionResult ForgotPassword(ForgotPasswordRequestViewModel model)
{
_accountService.ForgotPassword(model, Request.Headers["origin"]);
return(Ok(new { message = "Please check your email for password reset instructions" }));
}
