blsmedia/cal
2
0
Fork 0
Code Activity
Files
dev
cal/calcom/packages/trpc/server/routers/viewer/auth/changePassword.handler.ts
lars 79688abe2e first commit
2024-08-09 00:39:27 +02:00

75 lines
2.1 KiB
TypeScript
Raw Permalink Blame History

import { hashPassword } from "@calcom/features/auth/lib/hashPassword";
import { validPassword } from "@calcom/features/auth/lib/validPassword";
import { verifyPassword } from "@calcom/features/auth/lib/verifyPassword";
import { prisma } from "@calcom/prisma";
import { IdentityProvider } from "@calcom/prisma/enums";
import { TRPCError } from "@trpc/server";
import type { TrpcSessionUser } from "../../../trpc";
import type { TChangePasswordInputSchema } from "./changePassword.schema";
type ChangePasswordOptions = {
ctx: {
user: NonNullable<TrpcSessionUser>;
};
input: TChangePasswordInputSchema;
};
export const changePasswordHandler = async ({ input, ctx }: ChangePasswordOptions) => {
const { oldPassword, newPassword } = input;
const { user } = ctx;
if (user.identityProvider !== IdentityProvider.CAL) {
const userWithPassword = await prisma.user.findUnique({
where: {
id: user.id,
},
select: {
password: true,
},
});
if (!userWithPassword?.password?.hash) {
throw new TRPCError({ code: "FORBIDDEN", message: "THIRD_PARTY_IDENTITY_PROVIDER_ENABLED" });
}
}
const currentPasswordQuery = await prisma.userPassword.findFirst({
where: { userId: user.id },
});
const currentPassword = currentPasswordQuery?.hash;
if (!currentPassword) {
throw new TRPCError({ code: "NOT_FOUND", message: "MISSING_PASSWORD" });
}
const passwordsMatch = await verifyPassword(oldPassword, currentPassword);
if (!passwordsMatch) {
throw new TRPCError({ code: "BAD_REQUEST", message: "incorrect_password" });
}
if (oldPassword === newPassword) {
throw new TRPCError({ code: "BAD_REQUEST", message: "new_password_matches_old_password" });
}
if (!validPassword(newPassword)) {
throw new TRPCError({ code: "BAD_REQUEST", message: "password_hint_min" });
}
const hashedPassword = await hashPassword(newPassword);
await prisma.userPassword.upsert({
where: {
userId: user.id,
},
create: {
hash: hashedPassword,
userId: user.id,
},
update: {
hash: hashedPassword,
},
});
};
View Git Blame Copy Permalink