forked from supertokens/supertokens-golang
-
Notifications
You must be signed in to change notification settings - Fork 0
/
userPasswordPut.go
117 lines (92 loc) · 3.51 KB
/
userPasswordPut.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
/* Copyright (c) 2022, VRAI Labs and/or its affiliates. All rights reserved.
*
* This software is licensed under the Apache License, Version 2.0 (the
* "License") as published by the Apache Software Foundation.
*
* You may not use this file except in compliance with the License. You may
* obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
* License for the specific language governing permissions and limitations
* under the License.
*/
package userdetails
import (
"encoding/json"
"errors"
"github.com/supertokens/supertokens-golang/recipe/dashboard/dashboardmodels"
"github.com/supertokens/supertokens-golang/recipe/emailpassword"
"github.com/supertokens/supertokens-golang/recipe/emailpassword/epmodels"
"github.com/supertokens/supertokens-golang/supertokens"
)
type userPasswordPutResponse struct {
Status string `json:"status,omitempty"`
Error string `json:"error,omitempty"`
}
type userPasswordPutRequestBody struct {
UserId *string `json:"userId"`
NewPassword *string `json:"newPassword`
}
func UserPasswordPut(apiInterface dashboardmodels.APIInterface, tenantId string, options dashboardmodels.APIOptions, userContext supertokens.UserContext) (userPasswordPutResponse, error) {
body, err := supertokens.ReadFromRequest(options.Req)
if err != nil {
return userPasswordPutResponse{}, err
}
var readBody userPasswordPutRequestBody
err = json.Unmarshal(body, &readBody)
if err != nil {
return userPasswordPutResponse{}, err
}
if readBody.UserId == nil {
return userPasswordPutResponse{}, supertokens.BadInputError{
Msg: "Required parameter 'userId' is missing",
}
}
if readBody.NewPassword == nil {
return userPasswordPutResponse{}, supertokens.BadInputError{
Msg: "Required parameter 'newPassword' is missing",
}
}
recipeToUse := "none"
emailPasswordInstance := emailpassword.GetRecipeInstance()
if emailPasswordInstance != nil {
recipeToUse = "emailpassword"
}
if recipeToUse == "none" {
// This means that emailpassword is not init
return userPasswordPutResponse{}, errors.New("Should never come here")
}
var passwordField epmodels.NormalisedFormField
for _, value := range emailPasswordInstance.Config.SignUpFeature.FormFields {
if value.ID == "password" {
passwordField = value
}
}
validationError := passwordField.Validate(*readBody.NewPassword, tenantId)
if validationError != nil {
return userPasswordPutResponse{
Status: "INVALID_PASSWORD_ERROR",
Error: *validationError,
}, nil
}
passwordResetToken, resetTokenErr := emailpassword.CreateResetPasswordToken(tenantId, *readBody.UserId, userContext)
if resetTokenErr != nil {
return userPasswordPutResponse{}, resetTokenErr
}
if passwordResetToken.UnknownUserIdError != nil {
// Techincally it can but its an edge case so we assume that it wont
return userPasswordPutResponse{}, errors.New("Should never come here")
}
passwordResetResponse, passwordResetErr := emailpassword.ResetPasswordUsingToken(tenantId, passwordResetToken.OK.Token, *readBody.NewPassword, userContext)
if passwordResetErr != nil {
return userPasswordPutResponse{}, passwordResetErr
}
if passwordResetResponse.ResetPasswordInvalidTokenError != nil {
return userPasswordPutResponse{}, errors.New("Should never come here")
}
return userPasswordPutResponse{
Status: "OK",
}, nil
}