Module breaks core's password reset form

Hi @mkalkbrenner , this will break with password policy module. Attaching a new patch which resoves the problem.

keshav.k → made their first commit to this issue’s fork.

Patch #3 Failed to apply because there are some latest changes in the file.
I have removed the Change Password tab when the user resets the password.
The issue is also fixed. Please review the MR and merge.
Thank you.

I tried the forked version from #6 but it didn't fix the issue for me.

When the user redirects to the Change password page from the email's One-time reset link.
On that page, Fields were missing to reset passwords, Because this module will create a separate tab to update the password.

When a user clicks on Update password tab, The URL changed and the token for resetting the password is removed from url. So the user is not able to reset the password.

In the given MR I have moved the update password fields to the One-time login, edit profile page, So that the user can update the password on the same page, and it works for me.

Please review.

Tested the MR and it does add the password fields to the user edit page. Would it not be better to redirect the user to the user/change-password page?

Hey folks,

I have the same issue, and I checked the code on the module. I think the problem occurred because the path on the alter routes doesn't trigger the route change_pwd_page.reset successfully.

change_pwd_page.reset:
  path: '/user/reset/{uid}/{timestamp}/{hash}/new/login'
  defaults:
    _controller: '\Drupal\change_pwd_page\Controller\ChangePwdPageController::resetPass'
    _title: 'Reset password'
  requirements:
    _access: 'TRUE'
  options:
    _maintenance_access: TRUE
    no_cache: TRUE

Therefore, I modified the path, which seems to work as expected.