Password reset
Password reset stopped working on www.genesys-pgr.org due to user not being authenticated in line 233 of BasicUserServiceImpl
:
@PreAuthorize("hasRole('ADMINISTRATOR') || principal.id == #user.id")
The update
- User requests password reset
- User receives email and opens the link
- On opening the link, the current security context should be set to that user
- Setting password works again