2021-12-14 18:59:56 -08:00
|
|
|
package routes
|
|
|
|
|
|
|
|
import (
|
2021-12-15 18:17:39 -08:00
|
|
|
"fmt"
|
|
|
|
|
2021-12-14 19:14:39 -08:00
|
|
|
"goweb/context"
|
2021-12-14 18:59:56 -08:00
|
|
|
"goweb/controller"
|
2021-12-15 06:29:43 -08:00
|
|
|
"goweb/ent"
|
|
|
|
"goweb/ent/user"
|
2021-12-14 18:59:56 -08:00
|
|
|
"goweb/msg"
|
|
|
|
|
|
|
|
"github.com/labstack/echo/v4"
|
|
|
|
)
|
|
|
|
|
|
|
|
type (
|
|
|
|
ForgotPassword struct {
|
|
|
|
controller.Controller
|
|
|
|
}
|
|
|
|
|
|
|
|
ForgotPasswordForm struct {
|
|
|
|
Email string `form:"email" validate:"required,email" label:"Email address"`
|
|
|
|
}
|
|
|
|
)
|
|
|
|
|
|
|
|
func (f *ForgotPassword) Get(c echo.Context) error {
|
|
|
|
p := controller.NewPage(c)
|
|
|
|
p.Layout = "auth"
|
|
|
|
p.Name = "forgot-password"
|
|
|
|
p.Title = "Forgot password"
|
2021-12-14 19:14:39 -08:00
|
|
|
p.Data = ForgotPasswordForm{}
|
|
|
|
|
|
|
|
if form := c.Get(context.FormKey); form != nil {
|
|
|
|
p.Data = form.(ForgotPasswordForm)
|
|
|
|
}
|
|
|
|
|
2021-12-14 18:59:56 -08:00
|
|
|
return f.RenderPage(c, p)
|
|
|
|
}
|
|
|
|
|
|
|
|
func (f *ForgotPassword) Post(c echo.Context) error {
|
|
|
|
fail := func(message string, err error) error {
|
|
|
|
c.Logger().Errorf("%s: %v", message, err)
|
|
|
|
msg.Danger(c, "An error occurred. Please try again.")
|
|
|
|
return f.Get(c)
|
|
|
|
}
|
|
|
|
|
2021-12-15 06:29:43 -08:00
|
|
|
succeed := func() error {
|
2021-12-15 18:17:39 -08:00
|
|
|
c.Set(context.FormKey, nil)
|
2021-12-15 06:29:43 -08:00
|
|
|
msg.Success(c, "An email containing a link to reset your password will be sent to this address if it exists in our system.")
|
|
|
|
return f.Get(c)
|
|
|
|
}
|
|
|
|
|
2021-12-14 18:59:56 -08:00
|
|
|
// Parse the form values
|
2021-12-14 19:14:39 -08:00
|
|
|
form := new(ForgotPasswordForm)
|
|
|
|
if err := c.Bind(form); err != nil {
|
2021-12-14 18:59:56 -08:00
|
|
|
return fail("unable to parse forgot password form", err)
|
|
|
|
}
|
2021-12-14 19:14:39 -08:00
|
|
|
c.Set(context.FormKey, *form)
|
2021-12-14 18:59:56 -08:00
|
|
|
|
|
|
|
// Validate the form
|
2021-12-14 19:14:39 -08:00
|
|
|
if err := c.Validate(form); err != nil {
|
|
|
|
f.SetValidationErrorMessages(c, err, form)
|
2021-12-14 18:59:56 -08:00
|
|
|
return f.Get(c)
|
|
|
|
}
|
|
|
|
|
2021-12-15 06:29:43 -08:00
|
|
|
// Attempt to load the user
|
|
|
|
u, err := f.Container.ORM.User.
|
|
|
|
Query().
|
|
|
|
Where(user.Email(form.Email)).
|
|
|
|
First(c.Request().Context())
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
switch err.(type) {
|
|
|
|
case *ent.NotFoundError:
|
|
|
|
return succeed()
|
|
|
|
default:
|
|
|
|
return fail("error querying user during forgot password", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-12-15 18:17:39 -08:00
|
|
|
// Generate the token
|
|
|
|
token, _, err := f.Container.Auth.GeneratePasswordResetToken(c, u.ID)
|
|
|
|
if err != nil {
|
|
|
|
return fail("error generating password reset token", err)
|
|
|
|
}
|
|
|
|
c.Logger().Infof("generated password reset token for user %d", u.ID)
|
2021-12-15 06:29:43 -08:00
|
|
|
|
2021-12-15 18:17:39 -08:00
|
|
|
// Email the user
|
|
|
|
err = f.Container.Mail.Send(c, u.Email, fmt.Sprintf("Go here to reset your password: %s", token)) // TODO: route
|
|
|
|
if err != nil {
|
|
|
|
return fail("error sending password reset email", err)
|
2021-12-15 06:29:43 -08:00
|
|
|
}
|
2021-12-14 19:14:39 -08:00
|
|
|
|
2021-12-15 18:17:39 -08:00
|
|
|
return succeed()
|
2021-12-14 18:59:56 -08:00
|
|
|
}
|