From 0f973eeb208fcfc1d4cdf30ae504c048e72e8c75 Mon Sep 17 00:00:00 2001
From: JediKev <kevin@enhancesoft.com>
Date: Tue, 14 Nov 2017 13:18:12 -0600
Subject: [PATCH] issue: User Password Reset
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This addresses issue 4030 where if the Allow Password Reset setting for
Agents is disabled it will also affect Users. That means Users will not be
able to reset their password. This updates the User’s password reset page
to ignore that setting so that User’s will still be able to reset their
password.
---
 pwreset.php | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/pwreset.php b/pwreset.php
index 2461ec3cf..bc9ef6f29 100644
--- a/pwreset.php
+++ b/pwreset.php
@@ -73,12 +73,8 @@ elseif ($_GET['token']) {
     else
         Http::redirect('index.php');
 }
-elseif ($cfg->allowPasswordReset()) {
-    $banner = __('Enter your username or email address below');
-}
 else {
-    $_SESSION['_staff']['auth']['msg']=__('Password resets are disabled');
-    return header('Location: index.php');
+    $banner = __('Enter your username or email address below');
 }
 
 $nav = new UserNav();
-- 
GitLab