From ace38c133f3d8088fc7477f56b9db6fdc0098d06 Mon Sep 17 00:00:00 2001
From: Michael Chernyshev <chmv-git@allnetic.com>
Date: Fri, 18 Oct 2019 13:57:19 +0300
Subject: [PATCH] Security fix: Waiting before retrying password reset

---
 config/auth.php                 | 1 +
 resources/lang/en/passwords.php | 1 +
 2 files changed, 2 insertions(+)

diff --git a/config/auth.php b/config/auth.php
index f1e9b2da..f7dab7bb 100644
--- a/config/auth.php
+++ b/config/auth.php
@@ -97,6 +97,7 @@
             'provider' => 'users',
             'table' => 'password_resets',
             'expire' => 60,
+            'timeout' => 60,
         ],
     ],
 
diff --git a/resources/lang/en/passwords.php b/resources/lang/en/passwords.php
index f3b01a46..68c6658d 100644
--- a/resources/lang/en/passwords.php
+++ b/resources/lang/en/passwords.php
@@ -17,5 +17,6 @@
     'sent' => 'We have e-mailed your password reset link!',
     'token' => 'This password reset token is invalid.',
     'user' => "We can't find a user with that e-mail address.",
+    'timeout' => 'Please wait before retrying.',
 
 ];