From dcf4e5a30f732d451ec480e0b4263211b737365b Mon Sep 17 00:00:00 2001
From: Xiyuan Chen <52963600+GareArc@users.noreply.github.com>
Date: Thu, 5 Jun 2025 16:17:44 +0900
Subject: [PATCH] Feat/webapp verified sso 260 (#20678)

---
 api/controllers/console/auth/error.py | 6 ++++++
 api/controllers/web/login.py          | 6 ++----
 2 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/api/controllers/console/auth/error.py b/api/controllers/console/auth/error.py
index 8ef10c7bbb..b40934dbf5 100644
--- a/api/controllers/console/auth/error.py
+++ b/api/controllers/console/auth/error.py
@@ -59,3 +59,9 @@ class EmailCodeAccountDeletionRateLimitExceededError(BaseHTTPException):
     error_code = "email_code_account_deletion_rate_limit_exceeded"
     description = "Too many account deletion emails have been sent. Please try again in 5 minutes."
     code = 429
+
+
+class EmailPasswordResetLimitError(BaseHTTPException):
+    error_code = "email_password_reset_limit"
+    description = "Too many failed password reset attempts. Please try again in 24 hours."
+    code = 429
diff --git a/api/controllers/web/login.py b/api/controllers/web/login.py
index 97bb90248c..91c9c3c2ab 100644
--- a/api/controllers/web/login.py
+++ b/api/controllers/web/login.py
@@ -1,7 +1,3 @@
-from flask_restful import Resource, reqparse
-from jwt import InvalidTokenError  # type: ignore
-from web import api
-
 import services
 from controllers.console.auth.error import (EmailCodeError,
                                             EmailOrPasswordMismatchError,
@@ -9,6 +5,8 @@ from controllers.console.auth.error import (EmailCodeError,
 from controllers.console.error import AccountBannedError, AccountNotFound
 from controllers.console.wraps import only_edition_enterprise, setup_required
 from controllers.web import api
+from flask_restful import Resource, reqparse
+from jwt import InvalidTokenError  # type: ignore
 from libs.helper import email
 from libs.password import valid_password
 from services.account_service import AccountService