This repository was archived by the owner on Jul 13, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathreset_password.go
116 lines (100 loc) · 3.02 KB
/
reset_password.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
package forms
import (
"context"
"net/http"
"time"
auth "github.com/moapis/authenticator"
"github.com/moapis/ehtml"
clog "github.com/usrpro/clog15"
"google.golang.org/grpc/codes"
"google.golang.org/grpc/status"
)
// DefaultResetPWTmpl is a placeholder template for `Login`
const DefaultResetPWTmpl = `{{ define "reset" -}}
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Password reset</title>
</head>
<body>
<h1>Password reset</h1>
<form method="post" action="{{ .SubmitURL }}">
<input type="text" placeholder="Email" name="email" required>
<button type="submit">Submit</button>
</form>
{{- if .Flash }}
<p>{{ .Flash.Lvl }}: {{ .Flash.Msg }}</p>
{{- end }}
</body>
</html>
{{- end -}}
`
func (f *Forms) resetPWGet(w http.ResponseWriter, r *http.Request) {
f.renderForm(w, r, ResetPWTmpl, ResetPWTitle, nil)
}
func (f *Forms) resetPWPost(w http.ResponseWriter, r *http.Request) {
ctx, cancel := context.WithTimeout(r.Context(), 10*time.Second)
defer cancel()
ctx = clog.AddArgs(ctx, "method", "resetPWPost")
if err := r.ParseForm(); err != nil {
clog.Warn(ctx, "Parseform", "err", err)
fl := &Flash{ErrFlashLvl, "Malformed form data"}
f.renderForm(w, r, ResetPWTmpl, ResetPWTitle, fl, http.StatusBadRequest)
return
}
email := r.PostForm.Get("email")
if email == "" {
clog.Warn(ctx, "Missing email in form")
fl := &Flash{ErrFlashLvl, "Missing form data: email"}
f.renderForm(w, r, ResetPWTmpl, ResetPWTitle, fl, http.StatusBadRequest)
return
}
_, err := f.Client.ResetUserPW(ctx, &auth.UserEmail{
Email: email,
Url: f.Paths.callbackURL(r.URL.Query(), f.Paths.setPW()),
})
if err == nil {
if err = f.EP.Render(w, &ehtml.Data{Req: r, Code: http.StatusOK, Msg: "Password request link sent"}); err != nil {
clog.Error(ctx, "EP.Render", "err", err)
}
return
}
var (
flash *Flash
sc int
)
s, ok := status.FromError(err)
if !ok || s.Code() != codes.NotFound {
clog.Error(ctx, "ResetUserPW gRPC call", "err", err)
flash, sc = &Flash{ErrFlashLvl, "Internal server error"}, http.StatusInternalServerError
} else {
clog.Info(ctx, "ResetUserPW gRPC call", "err", err)
flash, sc = &Flash{ErrFlashLvl, "email not found"}, http.StatusUnauthorized
}
f.renderForm(w, r, ResetPWTmpl, ResetPWTitle, flash, sc)
}
// ResetPWHandler returns the handler taking care
// of password setting, using a reset token.
// GET serves the "reset" form template.
// POST forwards the request over gPRC,
// which sends and an e-mail with a reset
// link to the submitted e-mail address, if it is registered.
func (f *Forms) ResetPWHandler() http.Handler {
return &resetPWHandler{f}
}
type resetPWHandler struct {
*Forms
}
func (h *resetPWHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
r = r.WithContext(clog.AddArgs(r.Context(), "pkg", "authenticator.forms", "handler", "SetPW"))
switch r.Method {
case http.MethodGet:
h.resetPWGet(w, r)
case http.MethodPost:
h.resetPWPost(w, r)
default:
w.Header().Add("Allow", AllowedMethods)
w.WriteHeader(http.StatusMethodNotAllowed)
}
}