cal.pub0.org/apps/web/pages/auth/forgot-password/[id].tsx

import type { ResetPasswordRequest } from "@prisma/client";
import debounce from "lodash/debounce";
import type { GetServerSidePropsContext } from "next";
import { getCsrfToken } from "next-auth/react";
import Link from "next/link";
import React, { useMemo } from "react";

import dayjs from "@calcom/dayjs";
import { useLocale } from "@calcom/lib/hooks/useLocale";
import prisma from "@calcom/prisma";
import { Button, TextField } from "@calcom/ui";

import AuthContainer from "@components/ui/AuthContainer";

type Props = {
  id: string;
  resetPasswordRequest: ResetPasswordRequest;
  csrfToken: string;
};

export default function Page({ resetPasswordRequest, csrfToken }: Props) {
  const { t } = useLocale();
  const [loading, setLoading] = React.useState(false);
  const [error, setError] = React.useState<{ message: string } | null>(null);
  const [success, setSuccess] = React.useState(false);

  const [password, setPassword] = React.useState("");

  const submitChangePassword = async ({ password, requestId }: { password: string; requestId: string }) => {
    try {
      const res = await fetch("/api/auth/reset-password", {
        method: "POST",
        body: JSON.stringify({ requestId: requestId, password: password }),
        headers: {
          "Content-Type": "application/json",
        },
      });

      const json = await res.json();

      if (!res.ok) {
        setError(json);
      } else {
        setSuccess(true);
      }

      return json;
    } catch (reason) {
      setError({ message: t("unexpected_error_try_again") });
    } finally {
      setLoading(false);
    }
  };

  const debouncedChangePassword = debounce(submitChangePassword, 250);

  const Success = () => {
    return (
      <>
        <div className="space-y-6">
          <div>
            <h2 className="font-cal mt-6 text-center text-3xl font-extrabold text-gray-900">
              {t("password_updated")}
            </h2>
          </div>
          <Button href="/auth/login" className="w-full justify-center">
            {t("login")}
          </Button>
        </div>
      </>
    );
  };

  const Expired = () => {
    return (
      <>
        <div className="space-y-6">
          <div>
            <h2 className="font-cal mt-6 text-center text-3xl font-extrabold text-gray-900">{t("whoops")}</h2>
            <h2 className="text-center text-3xl font-extrabold text-gray-900">{t("request_is_expired")}</h2>
          </div>
          <p>{t("request_is_expired_instructions")}</p>
          <Link href="/auth/forgot-password" passHref legacyBehavior>
            <button
              type="button"
              className="flex w-full justify-center px-4 py-2 text-sm font-medium text-blue-600 focus:outline-none focus:ring-2 focus:ring-black focus:ring-offset-2">
              {t("try_again")}
            </button>
          </Link>
        </div>
      </>
    );
  };

  const isRequestExpired = useMemo(() => {
    const now = dayjs();
    return dayjs(resetPasswordRequest.expires).isBefore(now);
  }, [resetPasswordRequest]);

  return (
    <AuthContainer
      showLogo
      title={t("reset_password")}
      description={t("change_your_password")}
      heading={!success ? t("reset_password") : undefined}>
      {isRequestExpired && <Expired />}
      {!isRequestExpired && !success && (
        <>
          <form
            className="space-y-6"
            onSubmit={async (e) => {
              e.preventDefault();

              if (!password) {
                return;
              }

              if (loading) {
                return;
              }

              setLoading(true);
              setError(null);
              setSuccess(false);

              await debouncedChangePassword({ password, requestId: resetPasswordRequest.id });
            }}
            action="#">
            <input name="csrfToken" type="hidden" defaultValue={csrfToken} hidden />
            <div className="mt-1">
              <TextField
                label={t("new_password")}
                onChange={(e) => {
                  setPassword(e.target.value);
                }}
                id="password"
                name="password"
                type="password"
                autoComplete="password"
                required
              />
            </div>

            <div>
              <Button
                loading={loading}
                color="primary"
                type="submit"
                disabled={loading}
                className="w-full justify-center">
                {t("reset_password")}
              </Button>
            </div>
          </form>
        </>
      )}
      {!isRequestExpired && success && (
        <>
          <Success />
        </>
      )}
    </AuthContainer>
  );
}

export async function getServerSideProps(context: GetServerSidePropsContext) {
  const id = context.params?.id as string;

  try {
    const resetPasswordRequest = await prisma.resetPasswordRequest.findUniqueOrThrow({
      where: {
        id,
      },
      select: {
        id: true,
        expires: true,
      },
    });

    return {
      props: {
        resetPasswordRequest: {
          ...resetPasswordRequest,
          expires: resetPasswordRequest.expires.toString(),
        },
        id,
        csrfToken: await getCsrfToken({ req: context.req }),
      },
    };
  } catch (reason) {
    return {
      notFound: true,
    };
  }
}
Enforces explicit type imports (#7158) * Enforces explicit type imports * Upgrades typescript-eslint * Upgrades eslint related dependencies * Update config * Sync packages mismatches * Syncs prettier version * Linting * Relocks node version * Fixes * Locks @vitejs/plugin-react to 1.3.2 * Linting 2023-02-16 22:39:57 +00:00			`import type { ResetPasswordRequest } from "@prisma/client";`
integration page follow ups (#912) ### Internals - Replace `lodash.` packages with plain `lodash` & replace `lodash.` imports with `lodash/` - should have no impact on bundle size and opens up for us to use all of lodash - Update `viewer.me` to cherry-pick what we actually need on that query to avoid leaking extra context info - Update `getIntegrations` to never include `.key`-property to avoid leaking ### Visual - Update calendars so `primary` is displayed last - Update connected calendars so they are in ascending order in which you connected them 2021-10-13 11:35:25 +00:00			`import debounce from "lodash/debounce";`
Enforces explicit type imports (#7158) * Enforces explicit type imports * Upgrades typescript-eslint * Upgrades eslint related dependencies * Update config * Sync packages mismatches * Syncs prettier version * Linting * Relocks node version * Fixes * Locks @vitejs/plugin-react to 1.3.2 * Linting 2023-02-16 22:39:57 +00:00			`import type { GetServerSidePropsContext } from "next";`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`import { getCsrfToken } from "next-auth/react";`
Suggestion: let prettier sort imports order (#673) * Suggestion: let prettier sort imports order # Conflicts: # yarn.lock * AUTO SORT ALL THE IMPORTS * Linting * Fixes test 2021-09-22 19:52:38 +00:00			`import Link from "next/link";`
			`import React, { useMemo } from "react";`

Consolidates dayjs in a single package 2022-06-28 20:40:58 +00:00			`import dayjs from "@calcom/dayjs";`
Revert "Revert "I18N Caching (#6823)"" This reverts commit e248fda36bf2261d376b44895bb3763cb3d06617. Re-fixed cache rules 2023-02-14 15:01:34 +00:00			`import { useLocale } from "@calcom/lib/hooks/useLocale";`
Consolidates dayjs in a single package 2022-06-28 20:40:58 +00:00			`import prisma from "@calcom/prisma";`
🧹 One `calcom/ui` import to rule them all (#5561) * Removed emptyscreen component v1 version, migrated pages that still used it to v2, and removed v1 of workflow pages and components. * updated workflow pages imports to remove v2 from path. * Deleted v1 switch component, deleted v1 api-keys components, deleted old web integrations components that were unused. * Removed v1 list component. * Fixed event workflows tab path. * Fixed import path for button in sandbox page. * Cleanup and type fixes * Making explicit indexes * UI import migrations * More import fixes * More import fixes * Submodule sync * Type fixes * Build fixes Co-authored-by: zomars <zomars@me.com> 2022-11-23 02:55:25 +00:00			`import { Button, TextField } from "@calcom/ui";`
Consolidates dayjs in a single package 2022-06-28 20:40:58 +00:00
🧹 Cleaned up older v1 components for availability, settings and auth. (#5288) * Cleaned up older v1 components for availability, settings and auth. * Updated path. 2022-11-01 13:29:01 +00:00			`import AuthContainer from "@components/ui/AuthContainer";`
Allow user to reset password 2021-06-24 15:59:11 +00:00
			`type Props = {`
			`id: string;`
			`resetPasswordRequest: ResetPasswordRequest;`
			`csrfToken: string;`
			`};`

			`export default function Page({ resetPasswordRequest, csrfToken }: Props) {`
i18n: continued (#949) * more extractions * fix: failing build 2021-10-14 14:24:21 +00:00			`const { t } = useLocale();`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`const [loading, setLoading] = React.useState(false);`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`const [error, setError] = React.useState<{ message: string } \| null>(null);`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`const [success, setSuccess] = React.useState(false);`

			`const [password, setPassword] = React.useState("");`

Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`const submitChangePassword = async ({ password, requestId }: { password: string; requestId: string }) => {`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`try {`
			`const res = await fetch("/api/auth/reset-password", {`
			`method: "POST",`
			`body: JSON.stringify({ requestId: requestId, password: password }),`
			`headers: {`
			`"Content-Type": "application/json",`
			`},`
			`});`

			`const json = await res.json();`

			`if (!res.ok) {`
			`setError(json);`
			`} else {`
			`setSuccess(true);`
			`}`

			`return json;`
			`} catch (reason) {`
i18n: continued (#949) * more extractions * fix: failing build 2021-10-14 14:24:21 +00:00			`setError({ message: t("unexpected_error_try_again") });`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`} finally {`
			`setLoading(false);`
			`}`
			`};`

			`const debouncedChangePassword = debounce(submitChangePassword, 250);`

			`const Success = () => {`
			`return (`
			`<>`
			`<div className="space-y-6">`
			`<div>`
Runs prettier 2022-02-09 22:32:31 +00:00			`<h2 className="font-cal mt-6 text-center text-3xl font-extrabold text-gray-900">`
V2 password reset design (#4327) * using new v2 buttons in password reset * Forgot password UI * Logo updates * change error copy * Fix tests Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> Co-authored-by: sean-brydon <55134778+sean-brydon@users.noreply.github.com> Co-authored-by: Hariom Balhara <hariombalhara@gmail.com> 2022-09-12 09:25:54 +00:00			`{t("password_updated")}`
i18n: continued (#949) * more extractions * fix: failing build 2021-10-14 14:24:21 +00:00			`</h2>`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`</div>`
V2 password reset design (#4327) * using new v2 buttons in password reset * Forgot password UI * Logo updates * change error copy * Fix tests Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> Co-authored-by: sean-brydon <55134778+sean-brydon@users.noreply.github.com> Co-authored-by: Hariom Balhara <hariombalhara@gmail.com> 2022-09-12 09:25:54 +00:00			`<Button href="/auth/login" className="w-full justify-center">`
			`{t("login")}`
			`</Button>`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`</div>`
			`</>`
			`);`
			`};`

			`const Expired = () => {`
			`return (`
			`<>`
			`<div className="space-y-6">`
			`<div>`
Runs prettier 2022-02-09 22:32:31 +00:00			`<h2 className="font-cal mt-6 text-center text-3xl font-extrabold text-gray-900">{t("whoops")}</h2>`
tailwind prettier (#1646) * tailwind prettier * Minor fixes * Sorts components and pages Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> Co-authored-by: zomars <zomars@me.com> 2022-02-09 00:05:13 +00:00			`<h2 className="text-center text-3xl font-extrabold text-gray-900">{t("request_is_expired")}</h2>`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`</div>`
i18n: continued (#949) * more extractions * fix: failing build 2021-10-14 14:24:21 +00:00			`<p>{t("request_is_expired_instructions")}</p>`
Upgrade to next 13.1 (#6265) Co-authored-by: zomars <zomars@me.com> 2023-01-06 12:13:56 +00:00			`<Link href="/auth/forgot-password" passHref legacyBehavior>`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`<button`
			`type="button"`
tailwind prettier (#1646) * tailwind prettier * Minor fixes * Sorts components and pages Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> Co-authored-by: zomars <zomars@me.com> 2022-02-09 00:05:13 +00:00			`className="flex w-full justify-center px-4 py-2 text-sm font-medium text-blue-600 focus:outline-none focus:ring-2 focus:ring-black focus:ring-offset-2">`
i18n: continued (#949) * more extractions * fix: failing build 2021-10-14 14:24:21 +00:00			`{t("try_again")}`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`</button>`
			`</Link>`
			`</div>`
			`</>`
			`);`
			`};`

			`const isRequestExpired = useMemo(() => {`
			`const now = dayjs();`
			`return dayjs(resetPasswordRequest.expires).isBefore(now);`
			`}, [resetPasswordRequest]);`

			`return (`
V2 password reset design (#4327) * using new v2 buttons in password reset * Forgot password UI * Logo updates * change error copy * Fix tests Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> Co-authored-by: sean-brydon <55134778+sean-brydon@users.noreply.github.com> Co-authored-by: Hariom Balhara <hariombalhara@gmail.com> 2022-09-12 09:25:54 +00:00			`<AuthContainer`
			`showLogo`
			`title={t("reset_password")}`
			`description={t("change_your_password")}`
			`heading={!success ? t("reset_password") : undefined}>`
			`{isRequestExpired && <Expired />}`
			`{!isRequestExpired && !success && (`
			`<>`
			`<form`
			`className="space-y-6"`
			`onSubmit={async (e) => {`
			`e.preventDefault();`

			`if (!password) {`
			`return;`
			`}`

			`if (loading) {`
			`return;`
			`}`

			`setLoading(true);`
			`setError(null);`
			`setSuccess(false);`

			`await debouncedChangePassword({ password, requestId: resetPasswordRequest.id });`
			`}}`
			`action="#">`
			`<input name="csrfToken" type="hidden" defaultValue={csrfToken} hidden />`
			`<div className="mt-1">`
			`<TextField`
			`label={t("new_password")}`
			`onChange={(e) => {`
			`setPassword(e.target.value);`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`}}`
V2 password reset design (#4327) * using new v2 buttons in password reset * Forgot password UI * Logo updates * change error copy * Fix tests Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> Co-authored-by: sean-brydon <55134778+sean-brydon@users.noreply.github.com> Co-authored-by: Hariom Balhara <hariombalhara@gmail.com> 2022-09-12 09:25:54 +00:00			`id="password"`
			`name="password"`
			`type="password"`
			`autoComplete="password"`
			`required`
			`/>`
			`</div>`

			`<div>`
			`<Button`
			`loading={loading}`
			`color="primary"`
			`type="submit"`
			`disabled={loading}`
			`className="w-full justify-center">`
			`{t("reset_password")}`
			`</Button>`
			`</div>`
			`</form>`
			`</>`
			`)}`
			`{!isRequestExpired && success && (`
			`<>`
			`<Success />`
			`</>`
			`)}`
			`</AuthContainer>`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`);`
			`}`

			`export async function getServerSideProps(context: GetServerSidePropsContext) {`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`const id = context.params?.id as string;`
Allow user to reset password 2021-06-24 15:59:11 +00:00
			`try {`
fix: update rejectOnNotFound -> find(Fist\|Unique)OrThrow (#3829) * fix: update rejectOnNotFound -> find(Fist\|Unique)OrThrow * fix: add back custom errohandling * feat: handle notfounderror in getServerErrorFromUnknown Co-authored-by: Agusti Fernandez Pardo <git@agusti.me> Co-authored-by: Omar López <zomars@me.com> 2022-08-31 19:44:47 +00:00			`const resetPasswordRequest = await prisma.resetPasswordRequest.findUniqueOrThrow({`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`where: {`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`id,`
Allow user to reset password 2021-06-24 15:59:11 +00:00			`},`
			`select: {`
			`id: true,`
			`expires: true,`
			`},`
			`});`

			`return {`
			`props: {`
			`resetPasswordRequest: {`
			`...resetPasswordRequest,`
			`expires: resetPasswordRequest.expires.toString(),`
			`},`
			`id,`
			`csrfToken: await getCsrfToken({ req: context.req }),`
			`},`
			`};`
			`} catch (reason) {`
			`return {`
			`notFound: true,`
			`};`
			`}`
			`}`