feat: add reset functionality

2025-11-13 08:13:56 +10:00 · 2023-09-18 14:03:33 +00:00
parent 9ef50f356e
commit 84bc6eb4f3
7 changed files with 163 additions and 38 deletions
--- a/packages/lib/server-only/user/reset-password.ts
+++ b/packages/lib/server-only/user/reset-password.ts
@ -0,0 +1,66 @@
+import { compare, hash } from 'bcrypt';
+
+import { prisma } from '@documenso/prisma';
+
+import { SALT_ROUNDS } from '../../constants/auth';
+
+export type ResetPasswordOptions = {
+  token: string;
+  password: string;
+};
+
+export const resetPassword = async ({ token, password }: ResetPasswordOptions) => {
+  if (!token) {
+    throw new Error('Invalid Token');
+  }
+
+  const foundToken = await prisma.passwordResetToken.findFirstOrThrow({
+    where: {
+      token,
+    },
+    include: {
+      User: true,
+    },
+  });
+
+  if (!foundToken) {
+    throw new Error('Invalid Token');
+  }
+
+  const now = new Date();
+
+  if (now > foundToken.expiry) {
+    throw new Error('Token has expired');
+  }
+
+  const isSamePassword = await compare(password, foundToken.User.password!);
+
+  if (isSamePassword) {
+    throw new Error('Your new password cannot be the same as your old password.');
+  }
+
+  const hashedPassword = await hash(password, SALT_ROUNDS);
+
+  const transactions = await prisma.$transaction([
+    prisma.user.update({
+      where: {
+        id: foundToken.userId,
+      },
+      data: {
+        password: hashedPassword,
+      },
+    }),
+    prisma.passwordResetToken.deleteMany({
+      where: {
+        userId: foundToken.userId,
+      },
+    }),
+  ]);
+
+  if (!transactions) {
+    throw new Error('Unable to update password');
+  }
+
+  // await sendResetPasswordSuccessMail(foundToken.User);
+  return transactions;
+};