packages/lib/server-only/user/forgot-password.ts

import crypto from 'crypto';

import { prisma } from '@documenso/prisma';
import { TForgotPasswordFormSchema } from '@documenso/trpc/server/profile-router/schema';

import { ONE_DAY, ONE_HOUR } from '../../constants/time';
import { sendForgotPassword } from '../auth/send-forgot-password';

export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
  const user = await prisma.user.findFirst({
    where: {
      email: {
        equals: email,
        mode: 'insensitive',
      },
    },
  });

  if (!user) {
    return;
  }

  // Find a token that was created in the last hour and hasn't expired
  const existingToken = await prisma.passwordResetToken.findFirst({
    where: {
      userId: user.id,
      expiry: {
        gt: new Date(),
      },
      createdAt: {
        gt: new Date(Date.now() - ONE_HOUR),
      },
    },
  });

  if (existingToken) {
    return;
  }

  const token = crypto.randomBytes(18).toString('hex');

  await prisma.passwordResetToken.create({
    data: {
      token,
      expiry: new Date(Date.now() + ONE_DAY),
      userId: user.id,
    },
  });

  await sendForgotPassword({
    userId: user.id,
  }).catch((err) => console.error(err));
};
feat: create a password reset token 2023-09-18 11:15:29 +00:00			`import crypto from 'crypto';`

			`import { prisma } from '@documenso/prisma';`
			`import { TForgotPasswordFormSchema } from '@documenso/trpc/server/profile-router/schema';`

fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`import { ONE_DAY, ONE_HOUR } from '../../constants/time';`
feat: send forgot password email 2023-09-18 12:14:55 +00:00			`import { sendForgotPassword } from '../auth/send-forgot-password';`

feat: create a password reset token 2023-09-18 11:15:29 +00:00			`export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`const user = await prisma.user.findFirst({`
			`where: {`
			`email: {`
			`equals: email,`
			`mode: 'insensitive',`
feat: better error handling and better toast messages 2023-09-18 15:09:41 +00:00			`},`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`},`
			`});`
feat: create a password reset token 2023-09-18 11:15:29 +00:00
			`if (!user) {`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`return;`
feat: create a password reset token 2023-09-18 11:15:29 +00:00			`}`

fix: update reset token query 2023-09-19 13:57:11 +00:00			`// Find a token that was created in the last hour and hasn't expired`
feat: create a password reset token 2023-09-18 11:15:29 +00:00			`const existingToken = await prisma.passwordResetToken.findFirst({`
			`where: {`
			`userId: user.id,`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`expiry: {`
fix: update reset token query 2023-09-19 13:57:11 +00:00			`gt: new Date(),`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`},`
feat: create a password reset token 2023-09-18 11:15:29 +00:00			`createdAt: {`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`gt: new Date(Date.now() - ONE_HOUR),`
feat: create a password reset token 2023-09-18 11:15:29 +00:00			`},`
			`},`
			`});`

			`if (existingToken) {`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`return;`
feat: create a password reset token 2023-09-18 11:15:29 +00:00			`}`

fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`const token = crypto.randomBytes(18).toString('hex');`
feat: create a password reset token 2023-09-18 11:15:29 +00:00
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`await prisma.passwordResetToken.create({`
			`data: {`
			`token,`
			`expiry: new Date(Date.now() + ONE_DAY),`
			`userId: user.id,`
			`},`
			`});`
feat: create a password reset token 2023-09-18 11:15:29 +00:00
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`await sendForgotPassword({`
feat: send forgot password email 2023-09-18 12:14:55 +00:00			`userId: user.id,`
fix: add layout and minor updates 2023-09-19 13:34:54 +00:00			`}).catch((err) => console.error(err));`
feat: create a password reset token 2023-09-18 11:15:29 +00:00			`};`