server/resolvers/forgot_password.go

package resolvers

import (
	"context"
	"fmt"
	"log"
	"strings"
	"time"

	"github.com/authorizerdev/authorizer/server/constants"
	"github.com/authorizerdev/authorizer/server/db"
	"github.com/authorizerdev/authorizer/server/db/models"
	"github.com/authorizerdev/authorizer/server/email"
	"github.com/authorizerdev/authorizer/server/envstore"
	"github.com/authorizerdev/authorizer/server/graph/model"
	"github.com/authorizerdev/authorizer/server/token"
	"github.com/authorizerdev/authorizer/server/utils"
)

// ForgotPasswordResolver is a resolver for forgot password mutation
func ForgotPasswordResolver(ctx context.Context, params model.ForgotPasswordInput) (*model.Response, error) {
	gc, err := utils.GinContextFromContext(ctx)
	var res *model.Response
	if err != nil {
		return res, err
	}
	if envstore.EnvStoreObj.GetBoolStoreEnvVariable(constants.EnvKeyDisableBasicAuthentication) {
		return res, fmt.Errorf(`basic authentication is disabled for this instance`)
	}
	params.Email = strings.ToLower(params.Email)

	if !utils.IsValidEmail(params.Email) {
		return res, fmt.Errorf("invalid email")
	}

	_, err = db.Provider.GetUserByEmail(params.Email)
	if err != nil {
		return res, fmt.Errorf(`user with this email not found`)
	}

	hostname := utils.GetHost(gc)
	_, nonceHash, err := utils.GenerateNonce()
	if err != nil {
		return res, err
	}
	redirectURL := utils.GetAppURL(gc) + "/reset-password"
	if params.RedirectURI != nil {
		redirectURL = *params.RedirectURI
	}

	verificationToken, err := token.CreateVerificationToken(params.Email, constants.VerificationTypeForgotPassword, hostname, nonceHash, redirectURL)
	if err != nil {
		log.Println(`error generating token`, err)
	}
	db.Provider.AddVerificationRequest(models.VerificationRequest{
		Token:       verificationToken,
		Identifier:  constants.VerificationTypeForgotPassword,
		ExpiresAt:   time.Now().Add(time.Minute * 30).Unix(),
		Email:       params.Email,
		Nonce:       nonceHash,
		RedirectURI: redirectURL,
	})

	// exec it as go routin so that we can reduce the api latency
	go email.SendForgotPasswordMail(params.Email, verificationToken, hostname)

	res = &model.Response{
		Message: `Please check your inbox! We have sent a password reset link.`,
	}

	return res, nil
}
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`package resolvers`

			`import (`
			`"context"`
			`"fmt"`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`"log"`
			`"strings"`
			`"time"`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30
fix: add disable basic auth check in resolvers 2021-07-28 15:22:11 +05:30			`"github.com/authorizerdev/authorizer/server/constants"`
chore: rename project 2021-07-23 21:57:44 +05:30			`"github.com/authorizerdev/authorizer/server/db"`
fix: update to use db.Provider 2022-01-21 13:34:04 +05:30			`"github.com/authorizerdev/authorizer/server/db/models"`
Feat/dashboard (#105) 2022-01-17 11:32:13 +05:30			`"github.com/authorizerdev/authorizer/server/email"`
			`"github.com/authorizerdev/authorizer/server/envstore"`
chore: rename project 2021-07-23 21:57:44 +05:30			`"github.com/authorizerdev/authorizer/server/graph/model"`
Implement refresh token logic with fingerprint + rotation 2022-01-23 01:24:41 +05:30			`"github.com/authorizerdev/authorizer/server/token"`
chore: rename project 2021-07-23 21:57:44 +05:30			`"github.com/authorizerdev/authorizer/server/utils"`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`)`

Feat/dashboard (#105) 2022-01-17 11:32:13 +05:30			`// ForgotPasswordResolver is a resolver for forgot password mutation`
			`func ForgotPasswordResolver(ctx context.Context, params model.ForgotPasswordInput) (*model.Response, error) {`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 12:18:57 +05:30			`gc, err := utils.GinContextFromContext(ctx)`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`var res *model.Response`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 12:18:57 +05:30			`if err != nil {`
			`return res, err`
			`}`
fix: tests 2022-02-28 07:55:01 +05:30			`if envstore.EnvStoreObj.GetBoolStoreEnvVariable(constants.EnvKeyDisableBasicAuthentication) {`
fix: add disable basic auth check in resolvers 2021-07-28 15:22:11 +05:30			return res, fmt.Errorf(`basic authentication is disabled for this instance`)
			`}`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`params.Email = strings.ToLower(params.Email)`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`if !utils.IsValidEmail(params.Email) {`
			`return res, fmt.Errorf("invalid email")`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`}`

fix: update to use db.Provider 2022-01-21 13:34:04 +05:30			`_, err = db.Provider.GetUserByEmail(params.Email)`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`if err != nil {`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			return res, fmt.Errorf(`user with this email not found`)
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`}`

fix: bug with authorizer url 2022-01-31 11:35:24 +05:30			`hostname := utils.GetHost(gc)`
fix: add token information in redirect url 2022-03-08 12:36:26 +05:30			`_, nonceHash, err := utils.GenerateNonce()`
fix: auth flow 2022-03-02 17:42:31 +05:30			`if err != nil {`
			`return res, err`
			`}`
feat: add resolver for inviting members 2022-03-15 08:53:48 +05:30			`redirectURL := utils.GetAppURL(gc) + "/reset-password"`
fix: add token information in redirect url 2022-03-08 12:36:26 +05:30			`if params.RedirectURI != nil {`
			`redirectURL = *params.RedirectURI`
			`}`

			`verificationToken, err := token.CreateVerificationToken(params.Email, constants.VerificationTypeForgotPassword, hostname, nonceHash, redirectURL)`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`if err != nil {`
feat/add arangodb support (#80) feat: add arangodb init fix: dao for sql + arangodb * fix: update error logs * fix: use db name dynamically 2021-12-17 21:25:07 +05:30			log.Println(`error generating token`, err)
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`}`
fix: update to use db.Provider 2022-01-21 13:34:04 +05:30			`db.Provider.AddVerificationRequest(models.VerificationRequest{`
fix: add token information in redirect url 2022-03-08 12:36:26 +05:30			`Token: verificationToken,`
			`Identifier: constants.VerificationTypeForgotPassword,`
			`ExpiresAt: time.Now().Add(time.Minute * 30).Unix(),`
			`Email: params.Email,`
			`Nonce: nonceHash,`
			`RedirectURI: redirectURL,`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`})`

			`// exec it as go routin so that we can reduce the api latency`
fix: auth flow 2022-03-02 17:42:31 +05:30			`go email.SendForgotPasswordMail(params.Email, verificationToken, hostname)`
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30
			`res = &model.Response{`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			Message: `Please check your inbox! We have sent a password reset link.`,
Add forgot password resolver Resolves #10 2021-07-18 15:26:29 +05:30			`}`

			`return res, nil`
			`}`