first commit

calcom/packages/features/auth/lib/passwordResetRequest.ts

@@ -0,0 +1,51 @@
+import type { User } from "@prisma/client";
+
+import dayjs from "@calcom/dayjs";
+import { sendPasswordResetEmail } from "@calcom/emails";
+import { getTranslation } from "@calcom/lib/server/i18n";
+import prisma from "@calcom/prisma";
+
+export const PASSWORD_RESET_EXPIRY_HOURS = 6;
+
+const RECENT_MAX_ATTEMPTS = 3;
+const RECENT_PERIOD_IN_MINUTES = 5;
+
+const createPasswordReset = async (email: string): Promise<string> => {
+  const expiry = dayjs().add(PASSWORD_RESET_EXPIRY_HOURS, "hours").toDate();
+  const createdResetPasswordRequest = await prisma.resetPasswordRequest.create({
+    data: {
+      email,
+      expires: expiry,
+    },
+  });
+
+  return `${process.env.NEXT_PUBLIC_WEBAPP_URL}/auth/forgot-password/${createdResetPasswordRequest.id}`;
+};
+
+const guardAgainstTooManyPasswordResets = async (email: string) => {
+  const recentPasswordRequestsCount = await prisma.resetPasswordRequest.count({
+    where: {
+      email,
+      createdAt: {
+        gt: dayjs().subtract(RECENT_PERIOD_IN_MINUTES, "minutes").toDate(),
+      },
+    },
+  });
+  if (recentPasswordRequestsCount >= RECENT_MAX_ATTEMPTS) {
+    throw new Error("Too many password reset attempts. Please try again later.");
+  }
+};
+const passwordResetRequest = async (user: Pick<User, "email" | "name" | "locale">) => {
+  const { email } = user;
+  const t = await getTranslation(user.locale ?? "en", "common");
+  await guardAgainstTooManyPasswordResets(email);
+  const resetLink = await createPasswordReset(email);
+  // send email in user language
+  await sendPasswordResetEmail({
+    language: t,
+    user,
+    resetLink,
+  });
+};
+
+export { passwordResetRequest };