Create reset password token for user

2025-11-13 16:23:06 +10:00 · 2023-06-05 13:05:25 +00:00
parent 002b22b1a8
commit 8293b50195
2 changed files with 59 additions and 0 deletions
--- a/apps/web/pages/api/auth/forgot-password.ts
+++ b/apps/web/pages/api/auth/forgot-password.ts
@ -0,0 +1,43 @@
+import { NextApiRequest, NextApiResponse } from "next";
+import { defaultHandler, defaultResponder } from "@documenso/lib/server";
+import prisma from "@documenso/prisma";
+import crypto from "crypto";
+
+async function postHandler(req: NextApiRequest, res: NextApiResponse) {
+  const { email } = req.body;
+  const cleanEmail = email.toLowerCase();
+
+  if (!cleanEmail || !cleanEmail.includes("@")) {
+    res.status(422).json({ message: "Invalid email" });
+    return;
+  }
+
+  const user = await prisma.user.findFirst({
+    where: {
+      email: cleanEmail,
+    },
+  });
+
+  if (!user) {
+    return res.status(400).json({ message: "No user found with this email." });
+  }
+
+  const token = crypto.randomBytes(64).toString("hex");
+
+  const passwordResetToken = await prisma.passwordResetToken.create({
+    data: {
+      token,
+      userId: user.id,
+    },
+  });
+
+  console.log(passwordResetToken);
+
+  // TODO: Send token to user via email
+
+  res.status(201).end();
+}
+
+export default defaultHandler({
+  POST: Promise.resolve({ default: defaultResponder(postHandler) }),
+});