From 62065a1c33b6eccc0c28f00b7362054ae5f524a3 Mon Sep 17 00:00:00 2001 From: Steven Date: Sun, 3 Sep 2023 21:37:02 +0000 Subject: [PATCH] Fix create phone session abuse key Create phone session doesn't have anything to do with email. The key name should be email just for clarity (even though, technically, it doesn't matter). --- app/controllers/api/account.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/app/controllers/api/account.php b/app/controllers/api/account.php index c6df38c3ca..ab6799ab3d 100644 --- a/app/controllers/api/account.php +++ b/app/controllers/api/account.php @@ -1224,7 +1224,7 @@ App::post('/v1/account/sessions/phone') ->label('sdk.response.type', Response::CONTENT_TYPE_JSON) ->label('sdk.response.model', Response::MODEL_TOKEN) ->label('abuse-limit', 10) - ->label('abuse-key', 'url:{url},email:{param-phone}') + ->label('abuse-key', 'url:{url},phone:{param-phone}') ->param('userId', '', new CustomId(), 'Unique Id. Choose a custom ID or generate a random ID with `ID.unique()`. Valid chars are a-z, A-Z, 0-9, period, hyphen, and underscore. Can\'t start with a special char. Max length is 36 chars.') ->param('phone', '', new Phone(), 'Phone number. Format this number with a leading \'+\' and a country code, e.g., +16175551212.') ->inject('request')