Feat email password reset (#730)

* change name of auth.service to AuthService * Add emailEnabled to config api * Setup email * update nodemailer version * add translations * update .env.example * clean up console.log's) * refactor RequestPasswordReset component * chore: rebuild package-lock.json --------- Co-authored-by: Daniel Avila <messagedaniel@protonmail.com>
2025-12-18 01:10:14 +01:00 · 2023-07-31 19:37:46 -07:00 · 2023-07-31 19:37:46 -07:00 · 30a49ae611
commit 30a49ae611
parent 2faeebfae2
15 changed files with 221 additions and 171 deletions
--- a/api/server/controllers/AuthController.js
+++ b/api/server/controllers/AuthController.js
@ -1,4 +1,4 @@
-const { registerUser, requestPasswordReset, resetPassword } = require('../services/auth.service');
+const { registerUser, requestPasswordReset, resetPassword } = require('../services/AuthService');

 const isProduction = process.env.NODE_ENV === 'production';

@ -32,10 +32,10 @@ const getUserController = async (req, res) => {
 const resetPasswordRequestController = async (req, res) => {
  try {
    const resetService = await requestPasswordReset(req.body.email);
-    if (resetService.link) {
-      return res.status(200).json(resetService);
-    } else {
+    if (resetService instanceof Error) {
      return res.status(400).json(resetService);
+    } else {
+      return res.status(200).json(resetService);
    }
  } catch (e) {
    console.log(e);
--- a/api/server/controllers/auth/LogoutController.js
+++ b/api/server/controllers/auth/LogoutController.js
@ -1,4 +1,4 @@
-const { logoutUser } = require('../../services/auth.service');
+const { logoutUser } = require('../../services/AuthService');

 const logoutController = async (req, res) => {
  const { signedCookies = {} } = req;
--- a/api/server/routes/config.js
+++ b/api/server/routes/config.js
@ -18,6 +18,11 @@ router.get('/', async function (req, res) {
    const serverDomain = process.env.DOMAIN_SERVER || 'http://localhost:3080';
    const registrationEnabled = process.env.ALLOW_REGISTRATION === 'true';
    const socialLoginEnabled = process.env.ALLOW_SOCIAL_LOGIN === 'true';
+    const emailEnabled =
+      !!process.env.EMAIL_SERVICE &&
+      !!process.env.EMAIL_USERNAME &&
+      !!process.env.EMAIL_PASSWORD &&
+      !!process.env.EMAIL_FROM;

    return res.status(200).send({
      appTitle,
@ -30,6 +35,7 @@ router.get('/', async function (req, res) {
      serverDomain,
      registrationEnabled,
      socialLoginEnabled,
+      emailEnabled,
    });
  } catch (err) {
    console.error(err);
--- a/api/server/services/auth.service.js
+++ b/api/server/services/auth.service.js
@ -125,16 +125,26 @@ const requestPasswordReset = async (email) => {

  const link = `${domains.client}/reset-password?token=${resetToken}&userId=${user._id}`;

-  sendEmail(
-    user.email,
-    'Password Reset Request',
-    {
-      name: user.name,
-      link: link,
-    },
-    './template/requestResetPassword.handlebars',
-  );
-  return { link };
+  const emailEnabled =
+    !!process.env.EMAIL_SERVICE &&
+    !!process.env.EMAIL_USERNAME &&
+    !!process.env.EMAIL_PASSWORD &&
+    !!process.env.EMAIL_FROM;
+
+  if (emailEnabled) {
+    sendEmail(
+      user.email,
+      'Password Reset Request',
+      {
+        name: user.name,
+        link: link,
+      },
+      'requestPasswordReset.handlebars',
+    );
+    return { link: '' };
+  } else {
+    return { link };
+  }
 };

 /**
@ -170,7 +180,7 @@ const resetPassword = async (userId, token, password) => {
    {
      name: user.name,
    },
-    './template/resetPassword.handlebars',
+    'resetPassword.handlebars',
  );

  await passwordResetToken.deleteOne();