From 6d73f24c5dba9482c9d4f0a1ea38f06f9f4ab89b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sebasti=C3=A1n=20Ram=C3=ADrez?= <tiangolo@gmail.com>
Date: Wed, 29 May 2019 09:30:24 +0400
Subject: [PATCH] :lock: Fix resetting password as body, not query

---
 .../backend/app/app/api/api_v1/endpoints/login.py             | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/{{cookiecutter.project_slug}}/backend/app/app/api/api_v1/endpoints/login.py b/{{cookiecutter.project_slug}}/backend/app/app/api/api_v1/endpoints/login.py
index 7d6e060..d028f55 100644
--- a/{{cookiecutter.project_slug}}/backend/app/app/api/api_v1/endpoints/login.py
+++ b/{{cookiecutter.project_slug}}/backend/app/app/api/api_v1/endpoints/login.py
@@ -1,6 +1,6 @@
 from datetime import timedelta
 
-from fastapi import APIRouter, Depends, HTTPException
+from fastapi import APIRouter, Body, Depends, HTTPException
 from fastapi.security import OAuth2PasswordRequestForm
 
 from app import crud
@@ -71,7 +71,7 @@ def recover_password(username: str):
 
 
 @router.post("/reset-password/", response_model=Msg)
-def reset_password(token: str, new_password: str):
+def reset_password(token: str = Body(...), new_password: str = Body(...)):
     """
     Reset password.
     """