From 2b3f968478d66e015af4749310957376eb6a7bff Mon Sep 17 00:00:00 2001
From: Zach Wasserman <zach@fleetdm.com>
Date: Wed, 23 Jun 2021 08:45:03 -0700
Subject: [PATCH] Fix forbidden error for password reset (#1171)

Access the app config directly through the data store, skipping the
incorrect permission check on the service method.
---
 server/service/service_users.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/service/service_users.go b/server/service/service_users.go
index 54d2960a31..08ec132caa 100644
--- a/server/service/service_users.go
+++ b/server/service/service_users.go
@@ -438,7 +438,7 @@ func (svc *Service) RequestPasswordReset(ctx context.Context, email string) erro
 		return err
 	}
 
-	config, err := svc.AppConfig(ctx)
+	config, err := svc.ds.AppConfig()
 	if err != nil {
 		return err
 	}