server/resolvers/reset_password.go

package resolvers

import (
	"context"
	"fmt"
	"strings"
	"time"

	"github.com/authorizerdev/authorizer/server/constants"
	"github.com/authorizerdev/authorizer/server/crypto"
	"github.com/authorizerdev/authorizer/server/db"
	"github.com/authorizerdev/authorizer/server/envstore"
	"github.com/authorizerdev/authorizer/server/graph/model"
	"github.com/authorizerdev/authorizer/server/token"
	"github.com/authorizerdev/authorizer/server/utils"
)

// ResetPasswordResolver is a resolver for reset password mutation
func ResetPasswordResolver(ctx context.Context, params model.ResetPasswordInput) (*model.Response, error) {
	var res *model.Response
	gc, err := utils.GinContextFromContext(ctx)
	if err != nil {
		return res, err
	}
	if envstore.EnvStoreObj.GetBoolStoreEnvVariable(constants.EnvKeyDisableBasicAuthentication) {
		return res, fmt.Errorf(`basic authentication is disabled for this instance`)
	}

	verificationRequest, err := db.Provider.GetVerificationRequestByToken(params.Token)
	if err != nil {
		return res, fmt.Errorf(`invalid token`)
	}

	if params.Password != params.ConfirmPassword {
		return res, fmt.Errorf(`passwords don't match`)
	}

	if !utils.IsValidPassword(params.Password) {
		return res, fmt.Errorf(`password is not valid. It needs to be at least 6 characters long and contain at least one number, one uppercase letter, one lowercase letter and one special character`)
	}

	// verify if token exists in db
	hostname := utils.GetHost(gc)
	claim, err := token.ParseJWTToken(params.Token, hostname, verificationRequest.Nonce, verificationRequest.Email)
	if err != nil {
		return res, fmt.Errorf(`invalid token`)
	}

	user, err := db.Provider.GetUserByEmail(claim["sub"].(string))
	if err != nil {
		return res, err
	}

	password, _ := crypto.EncryptPassword(params.Password)
	user.Password = &password

	signupMethod := user.SignupMethods
	if !strings.Contains(signupMethod, constants.SignupMethodBasicAuth) {
		signupMethod = signupMethod + "," + constants.SignupMethodBasicAuth
	}
	user.SignupMethods = signupMethod

	// helpful if user has not signed up with basic auth
	if user.EmailVerifiedAt == nil {
		now := time.Now().Unix()
		user.EmailVerifiedAt = &now
	}

	// delete from verification table
	db.Provider.DeleteVerificationRequest(verificationRequest)
	db.Provider.UpdateUser(user)

	res = &model.Response{
		Message: `Password updated successfully.`,
	}

	return res, nil
}
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`package resolvers`

			`import (`
			`"context"`
			`"fmt"`
fix: add location middleware to get exact host 2021-08-04 15:55:13 +05:30			`"strings"`
Fix issue with reset password 2022-01-08 23:01:06 +05:30			`"time"`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30
fix: add disable basic auth check in resolvers 2021-07-28 15:22:11 +05:30			`"github.com/authorizerdev/authorizer/server/constants"`
feat: add session token 2022-02-28 21:26:49 +05:30			`"github.com/authorizerdev/authorizer/server/crypto"`
chore: rename project 2021-07-23 21:57:44 +05:30			`"github.com/authorizerdev/authorizer/server/db"`
Feat/dashboard (#105) 2022-01-17 11:32:13 +05:30			`"github.com/authorizerdev/authorizer/server/envstore"`
chore: rename project 2021-07-23 21:57:44 +05:30			`"github.com/authorizerdev/authorizer/server/graph/model"`
Implement refresh token logic with fingerprint + rotation 2022-01-23 01:24:41 +05:30			`"github.com/authorizerdev/authorizer/server/token"`
fix: auth flow 2022-03-02 17:42:31 +05:30			`"github.com/authorizerdev/authorizer/server/utils"`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`)`

Feat/dashboard (#105) 2022-01-17 11:32:13 +05:30			`// ResetPasswordResolver is a resolver for reset password mutation`
			`func ResetPasswordResolver(ctx context.Context, params model.ResetPasswordInput) (*model.Response, error) {`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`var res *model.Response`
fix: auth flow 2022-03-02 17:42:31 +05:30			`gc, err := utils.GinContextFromContext(ctx)`
			`if err != nil {`
			`return res, err`
			`}`
fix: tests 2022-02-28 07:55:01 +05:30			`if envstore.EnvStoreObj.GetBoolStoreEnvVariable(constants.EnvKeyDisableBasicAuthentication) {`
fix: add disable basic auth check in resolvers 2021-07-28 15:22:11 +05:30			return res, fmt.Errorf(`basic authentication is disabled for this instance`)
			`}`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30
fix: update to use db.Provider 2022-01-21 13:34:04 +05:30			`verificationRequest, err := db.Provider.GetVerificationRequestByToken(params.Token)`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`if err != nil {`
			return res, fmt.Errorf(`invalid token`)
			`}`

fix: update authorizer-react + oauth callback 2021-08-10 22:20:24 +05:30			`if params.Password != params.ConfirmPassword {`
			return res, fmt.Errorf(`passwords don't match`)
			`}`

feat: add validation for strong password 2022-03-17 15:35:07 +05:30			`if !utils.IsValidPassword(params.Password) {`
			return res, fmt.Errorf(`password is not valid. It needs to be at least 6 characters long and contain at least one number, one uppercase letter, one lowercase letter and one special character`)
			`}`

fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`// verify if token exists in db`
fix: auth flow 2022-03-02 17:42:31 +05:30			`hostname := utils.GetHost(gc)`
fix: add token information in redirect url 2022-03-08 12:36:26 +05:30			`claim, err := token.ParseJWTToken(params.Token, hostname, verificationRequest.Nonce, verificationRequest.Email)`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`if err != nil {`
			return res, fmt.Errorf(`invalid token`)
			`}`

fix: auth flow 2022-03-02 17:42:31 +05:30			`user, err := db.Provider.GetUserByEmail(claim["sub"].(string))`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`if err != nil {`
			`return res, err`
			`}`

feat: add session token 2022-02-28 21:26:49 +05:30			`password, _ := crypto.EncryptPassword(params.Password)`
fix: unique constraint data 2021-12-22 15:31:45 +05:30			`user.Password = &password`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30
fix: refactor schema for open id claim standards 2021-12-22 10:51:12 +05:30			`signupMethod := user.SignupMethods`
Feat/dashboard (#105) 2022-01-17 11:32:13 +05:30			`if !strings.Contains(signupMethod, constants.SignupMethodBasicAuth) {`
			`signupMethod = signupMethod + "," + constants.SignupMethodBasicAuth`
fix: add location middleware to get exact host 2021-08-04 15:55:13 +05:30			`}`
fix: refactor schema for open id claim standards 2021-12-22 10:51:12 +05:30			`user.SignupMethods = signupMethod`
fix: add location middleware to get exact host 2021-08-04 15:55:13 +05:30
Fix issue with reset password 2022-01-08 23:01:06 +05:30			`// helpful if user has not signed up with basic auth`
			`if user.EmailVerifiedAt == nil {`
			`now := time.Now().Unix()`
			`user.EmailVerifiedAt = &now`
			`}`

fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30			`// delete from verification table`
fix: update to use db.Provider 2022-01-21 13:34:04 +05:30			`db.Provider.DeleteVerificationRequest(verificationRequest)`
			`db.Provider.UpdateUser(user)`
fix: get token logic, add buffer time fix typos 2021-07-21 13:36:26 +05:30
			`res = &model.Response{`
			Message: `Password updated successfully.`,
			`}`

			`return res, nil`
			`}`