Add basic admin password reset

.env.development.example

@@ -34,6 +34,7 @@ LOG_LEVEL=debug
 LOG_ENABLE_STACKTRACE=1
 
 # Email
+#EMAIL_ENABLED=
 #SMTP_HOST=
 #SMTP_PORT=
 #SMTP_SENDER_ADDRESS=

.env.production.example

@@ -29,6 +29,7 @@ TMDB_ENABLE_IMAGE_CACHING=1
 LOG_LEVEL=warning
 
 # Email
+#EMAIL_ENABLED=
 #SMTP_HOST=
 #SMTP_PORT=
 #SMTP_SENDER_ADDRESS=

db/migrations/mysql/20230814190244_add_totp_secret_column.php → db/migrations/mysql/20230814190244_AddTotpSecretColumn.php

@@ -1,5 +1,4 @@
-<?php
-declare(strict_types=1);
+<?php declare(strict_types=1);
 
 use Phinx\Migration\AbstractMigration;
 

db/migrations/mysql/20230828152640_AddPasswordResetTable.php

@@ -0,0 +1,27 @@
+<?php declare(strict_types=1);
+
+use Phinx\Migration\AbstractMigration;
+
+final class AddPasswordResetTable extends AbstractMigration
+{
+    public function down() : void
+    {
+        $this->execute('DROP TABLE `user_password_reset`');
+    }
+
+    public function up() : void
+    {
+        $this->execute(
+            <<<SQL
+            CREATE TABLE `user_password_reset` (
+                `user_id` INT(10) UNSIGNED NOT NULL,
+                `token` CHAR(36) NOT NULL,
+                `expires_at` DATETIME NOT NULL,
+                `created_at` DATETIME NOT NULL,
+                PRIMARY KEY (`token`),
+                FOREIGN KEY (`user_id`) REFERENCES `user`(`id`) ON DELETE CASCADE
+            ) COLLATE="utf8mb4_unicode_ci" ENGINE=InnoDB
+            SQL,
+        );
+    }
+}

db/migrations/sqlite/20230828152640_AddPasswordResetTable.php

@@ -0,0 +1,27 @@
+<?php declare(strict_types=1);
+
+use Phinx\Migration\AbstractMigration;
+
+final class AddPasswordResetTable extends AbstractMigration
+{
+    public function down() : void
+    {
+        $this->execute('DROP TABLE `user_password_reset`');
+    }
+
+    public function up() : void
+    {
+        $this->execute(
+            <<<SQL
+            CREATE TABLE `user_password_reset` (
+                `user_id` INT(10) NOT NULL,
+                `token` CHAR(36) NOT NULL,
+                `expires_at` TEXT NOT NULL,
+                `created_at` TEXT NOT NULL,
+                PRIMARY KEY (`token`),
+                FOREIGN KEY (`user_id`) REFERENCES `user`(`id`) ON DELETE CASCADE
+            )
+            SQL,
+        );
+    }
+}

docs/configuration.md

@@ -55,17 +55,18 @@ Required for some third party integrations. Only necessary if the relevant third
 
 ### Email
 
-Required when email support is wanted
-
-| NAME                | DEFAULT VALUE | INFO                                 | Web UI |
-|:--------------------|:-------------:|:-------------------------------------|:------:|
-| `SMTP_HOST`         |       -       |                                      |  yes   |
-| `SMTP_PORT`         |       -       |                                      |  yes   |
-| `SMTP_FROM_ADDRESS` |       -       | Email address used as sender address |  yes   |
-| `SMTP_ENCRYPTION`   |       -       | `SSL` and `TSL` supported            |  yes   |
-| `SMTP_WITH_AUTH`    |       -       | `0` or `1`                           |  yes   |
-| `SMTP_USER`         |       -       | Required if auth is enabled          |  yes   |
-| `SMTP_PASSWORD`     |       -       | Required if auth is enabled          |  yes   |
+Required when email sending is wanted.
+
+| NAME                | DEFAULT VALUE | INFO                                         | Web UI |
+|:--------------------|:-------------:|:---------------------------------------------|:------:|
+| `EMAIL_ENABLED`     |      `0`      | Enable sending of emails for the application |  yes   |
+| `SMTP_HOST`         |       -       |                                              |  yes   |
+| `SMTP_PORT`         |       -       |                                              |  yes   |
+| `SMTP_FROM_ADDRESS` |       -       | Email address used as sender address         |  yes   |
+| `SMTP_ENCRYPTION`   |       -       | `SSL` and `TSL` supported                    |  yes   |
+| `SMTP_WITH_AUTH`    |       -       | `0` or `1`                                   |  yes   |
+| `SMTP_USER`         |       -       | Required if auth is enabled                  |  yes   |
+| `SMTP_PASSWORD`     |       -       | Required if auth is enabled                  |  yes   |
 
 ### Logging
 

public/js/password-reset.js

@@ -0,0 +1,36 @@
+document.getElementById('updatePassword').addEventListener('click', async () => {
+    const newPassword = document.getElementById('newPassword').value
+
+    if (newPassword.length < 8) {
+        addAlert('alertPasswordResetDiv', 'Password is too short', 'danger', true, .7)
+
+        return
+    }
+    if (document.getElementById('repeatPassword').value !== newPassword) {
+        addAlert('alertPasswordResetDiv', 'Passwords not matching', 'danger', true, .7)
+        return
+    }
+
+    const response = await fetch('/password-reset', {
+        method: 'post',
+        headers: {
+            'Content-type': 'application/json',
+        },
+        body: JSON.stringify({
+            'newPassword': newPassword,
+            'token': document.getElementById('token').value
+        })
+    })
+
+    if (response.status === 400) {
+        addAlert('alertPasswordResetDiv', await response.text(), 'danger', true, .7)
+        return
+    }
+
+    if (response.ok === false) {
+        addAlert('alertPasswordResetDiv', 'Could not reset password', 'danger', true, .7)
+        return
+    }
+
+    window.location.href = '/'
+});