/
reset_password.go
132 lines (112 loc) · 3.83 KB
/
reset_password.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
package password
import (
"net/mail"
"strings"
"time"
"github.com/moisespsena-go/bid"
"github.com/moisespsena-go/tzdb"
"github.com/ecletus/auth/auth_identity/helpers"
"github.com/ecletus/session"
"github.com/ecletus/auth"
"github.com/ecletus/auth/auth_identity"
"github.com/ecletus/auth/claims"
"github.com/ecletus/mailer"
"github.com/moisespsena/template/html/template"
)
var (
// ResetPasswordMailSubject reset password mail's subject
ResetPasswordMailSubject = I18N_GROUP + ".reset_your_password"
// SendChangePasswordMailFlashMessage send change password mail flash message
SendChangePasswordMailFlashMessage = I18N_GROUP + ".change_password_mail_body"
// ChangedPasswordFlashMessage changed password success flash message
ChangedPasswordFlashMessage = I18N_GROUP + ".your_password_changed"
)
// DefaultResetPasswordMailer default reset password mailer
var DefaultResetPasswordMailer = func(ctx *auth.Context, claims *claims.Claims, currentUser auth.User, email ...string) error {
claims.Subject = "reset_password"
expireAt := time.Unix(claims.ExpiresAt, 0)
if location := currentUser.Schema().Location; location != "" {
expireAt = expireAt.In(tzdb.LocationCity(location).Location())
}
if len(email) == 0 || email[0] == "" {
email = []string{currentUser.Schema().Email}
}
Mailer := mailer.FromSite(ctx.Site)
return Mailer.Send(
&mailer.Email{
Context: ctx,
Lang: ctx.GetI18nContext().Locales(),
TO: []mail.Address{{Address: email[0]}},
Subject: ctx.Ts(ResetPasswordMailSubject),
}, mailer.Template{
Name: "auth/password/reset_password",
Data: ctx,
Context: ctx.Context,
}.Funcs(template.FuncMap{
"current_user": func() interface{} {
return currentUser
},
"expire_at": func() time.Time {
return expireAt
},
"reset_password_url": func() string {
token, err := ctx.SessionStorer.SignedToken(claims)
if err != nil {
return "{TOKEN ERROR=" + err.Error() + "}"
}
url := ctx.AuthURL("password/edit", token)
return url
},
}),
)
}
func NewPasswordToken(ctx *auth.Context, email string) (string, error) {
var (
authInfo auth_identity.Basic
provider, _ = ctx.Provider.(*Provider)
)
authInfo.ID = bid.New()
authInfo.Provider = provider.GetName()
authInfo.UID = strings.TrimSpace(email)
cl := authInfo.ToClaims()
return ctx.SessionStorer.SignedToken(cl)
}
// DefaultRecoverPasswordHandler default reset password handler
var DefaultRecoverPasswordHandler = func(ctx *auth.Context) (err error) {
_ = ctx.Request.ParseForm()
var (
authInfo *auth_identity.Basic
identity auth_identity.AuthIdentityInterface
identifier = ctx.Request.Form.Get("email")
provider, _ = ctx.Provider.(*Provider)
uid string
)
if uid, err = ctx.Auth.FindUID(ctx, identifier); err != nil {
return
}
if identity, err = helpers.GetIdentity(ctx.Auth.AuthIdentityModel, provider.GetName(), ctx.DB(), uid); err != nil {
return
}
authInfo = identity.GetAuthBasic()
authInfo.Provider = provider.GetName()
currentUser, err := ctx.Auth.UserStorer.Get(authInfo.ToClaims(), ctx)
if err != nil {
return err
}
Claims := authInfo.ToClaims()
Claims.ExpiresAt = time.Now().Add(time.Minute * 30).Unix()
if err = provider.ResetPasswordMailer(ctx, Claims, currentUser); err == nil {
_ = ctx.SessionStorer.Flash(ctx.SessionManager(), session.Message{Message: ctx.T(SendChangePasswordMailFlashMessage), Type: "success"})
ctx.Auth.Redirector.Redirect(ctx.Writer, ctx.Request, "send_recover_password_mail")
}
return err
}
// DefaultResetPasswordHandler default reset password handler
var DefaultResetPasswordHandler = func(ctx *auth.Context, updatedMailer UpdatedPasswordNotifier) (Claims *claims.Claims, err error) {
_ = ctx.Request.ParseForm()
pu := &PasswordUpdater{
CurrentPasswordDisabled: true,
NotifyMailer: updatedMailer,
}
return pu.Context(ctx)
}