Press n or j to go to the next uncovered block, b, p or k for the previous block.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 | 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 65x 65x 65x 65x 65x 65x 57x 8x 8x 49x 49x 49x 49x | const makeDebug = require('debug');
const concatIDAndHash = require('./helpers/concat-id-and-hash');
const ensureObjPropsValid = require('./helpers/ensure-obj-props-valid');
const getLongToken = require('./helpers/get-long-token');
const getShortToken = require('./helpers/get-short-token');
const getUserData = require('./helpers/get-user-data');
const hashPassword = require('./helpers/hash-password');
const notifier = require('./helpers/notifier');
const debug = makeDebug('authLocalMgnt:sendResetPwd');
module.exports = sendResetPwd;
async function sendResetPwd (options, identifyUser, field, notifierOptions = {}) {
debug('sendResetPwd');
const usersService = options.app.service(options.service);
const usersServiceIdName = usersService.id;
ensureObjPropsValid(identifyUser, options.identifyUserProps);
const users = await usersService.find({ query: identifyUser });
const user1 = getUserData(users, options.skipIsVerifiedCheck ? [] : ['isVerified']);
if (
// Use existing token when it's not hashed,
options.reuseResetToken && user1.resetToken && user1.resetToken.includes('___') &&
// and remaining time exceeds half of resetDelay
user1.resetExpires > Date.now() + options.resetDelay / 2
) {
await notifier(options.notifier, 'sendResetPwd', user1, notifierOptions);
return options.sanitizeUserForClient(user1);
}
const user2 = Object.assign(user1, {
resetExpires: Date.now() + options.resetDelay,
resetAttempts: options.resetAttempts,
resetToken: concatIDAndHash(user1[usersServiceIdName], await getLongToken(options.longTokenLen)),
resetShortToken: await getShortToken(options.shortTokenLen, options.shortTokenDigits)
});
await notifier(options.notifier, 'sendResetPwd', user2, notifierOptions);
const user3 = await usersService.patch(user2[usersServiceIdName], {
resetExpires: user2.resetExpires,
resetAttempts: user2.resetAttempts,
resetToken:
options.reuseResetToken
? user2.resetToken
: await hashPassword(options.app, user2.resetToken, field),
resetShortToken:
options.reuseResetToken
? user2.resetShortToken
: await hashPassword(options.app, user2.resetShortToken, field)
});
return options.sanitizeUserForClient(user3);
}
|