From 266ffe3fecb5740ae9b43404d5da8b3b823a43a1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jan=20B=C3=B6hmer?= <mail@jan-boehmer.de>
Date: Sat, 11 Feb 2023 22:04:49 +0100
Subject: [PATCH] Disable username and token field on password reset controller

---
 src/Controller/SecurityController.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/Controller/SecurityController.php b/src/Controller/SecurityController.php
index 56d65aa2..026e18c1 100644
--- a/src/Controller/SecurityController.php
+++ b/src/Controller/SecurityController.php
@@ -140,9 +140,11 @@ class SecurityController extends AbstractController
         $builder = $this->createFormBuilder($data);
         $builder->add('username', TextType::class, [
             'label' => $this->translator->trans('pw_reset.username'),
+            'disabled' => true,
         ]);
         $builder->add('token', TextType::class, [
             'label' => $this->translator->trans('pw_reset.token'),
+            'disabled' => true,
         ]);
         $builder->add('new_password', RepeatedType::class, [
             'type' => PasswordType::class,