Well spotted Ricardo that is indeed the problem. However this is still wrong imho. This assumes that reset password is being called in a controller like the "def user" one in the welcome application and so reset_password will be request.args(0) and the key will be request.args(1), however one could make a controller where that's not true. We should just remove the key from args altogether and just use it in the vars to avoid this problem.
-- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
