限制对输入新密码页面的访问

Rock Zhang
Commit 3300d9554b35be4e7cb8ac7fbfcc8ba1321fd7dd 1 parent 038b79f6
Showing 1 changed file with 7 additions and 2 deletions
yohobuy/m.yohobuy.com/application/modules/Passport/controllers/Back.php
--- a/yohobuy/m.yohobuy.com/application/modules/Passport/controllers/Back.php
View file @3300d95
+++ b/yohobuy/m.yohobuy.com/application/modules/Passport/controllers/Back.php
View file @3300d95
@@ -209,7 +209,7 @@ class BackController extends AbstractAction
             'phoneNum' => $phoneNum
         );
 
-         $this->_view->assign('title', 'YOHO!有货');
+         $this->setTitle('找回密码-通过手机号');
         $this->_view->display('mobile-code', $data);
     }
 
@@ -246,6 +246,11 @@ class BackController extends AbstractAction
 
         // 邮箱验证码
         $code = $this->get('code', '');
+ 
+         // 判断是否允许访问, 不允许则跳转到错误页面
+         if ((!$token || !Helpers::verifyMobile($phoneNum)) && !$code) {
+             $this->error();
+         }
         
         $data = array(
             'backUrl' => '/signin.html',
@@ -258,7 +263,7 @@ class BackController extends AbstractAction
             'code' => $code
         );
 
-         $this->_view->assign('title', 'YOHO!有货');
+         $this->setTitle('找回密码-输入新密码');
         $this->_view->display('new-password', $data);
     }