use a separate table for registration tokens

author: Daniel Friesel <derf@finalrewind.org> 2019-04-30 18:05:07 +0200
committer: Daniel Friesel <derf@finalrewind.org> 2019-04-30 18:05:07 +0200
commit: 048767149e571469d888ec81d324caa7b3b64671 (patch)
tree: d713208b260e83b9b134b48d61cf2817718efde0 /lib/Travelynx/Controller/Account.pm
parent: a57a24c2d68daa4d4561ed9035c863e574cdc70a (diff)
1 files changed, 3 insertions, 7 deletions
diff --git a/lib/Travelynx/Controller/Account.pm b/lib/Travelynx/Controller/Account.pm
index dc3adb4..e4b385c 100644
--- a/lib/Travelynx/Controller/Account.pm
+++ b/lib/Travelynx/Controller/Account.pm
@@ -159,20 +159,16 @@ sub verify {
 	my $id    = $self->stash('id');
 	my $token = $self->stash('token');
 
-	my @db_user = $self->get_user_token($id);
-
-	if ( not @db_user ) {
+	if ( not $id =~ m{ ^ \d+ $ }x ) {
 		$self->render( 'register', invalid => 'token' );
 		return;
 	}
 
-	my ( $db_name, $db_status, $db_token ) = @db_user;
-
-	if ( not $db_name or $token ne $db_token or $db_status != 0 ) {
+	if ( not $self->verify_registration_token( $id, $token ) ) {
 		$self->render( 'register', invalid => 'token' );
 		return;
 	}
-	$self->app->pg->db->update( 'users', { status => 1 }, { id => $id } );
+
 	$self->render( 'login', from => 'verification' );
 }
author	Daniel Friesel <derf@finalrewind.org>	2019-04-30 18:05:07 +0200
committer	Daniel Friesel <derf@finalrewind.org>	2019-04-30 18:05:07 +0200
commit	048767149e571469d888ec81d324caa7b3b64671 (patch)
tree	d713208b260e83b9b134b48d61cf2817718efde0 /lib/Travelynx/Controller/Account.pm
parent	a57a24c2d68daa4d4561ed9035c863e574cdc70a (diff)