52 lines
1.6 KiB
TypeScript
52 lines
1.6 KiB
TypeScript
import type { User } from "@prisma/client";
|
|
|
|
import dayjs from "@calcom/dayjs";
|
|
import { sendPasswordResetEmail } from "@calcom/emails";
|
|
import { getTranslation } from "@calcom/lib/server/i18n";
|
|
import prisma from "@calcom/prisma";
|
|
|
|
export const PASSWORD_RESET_EXPIRY_HOURS = 6;
|
|
|
|
const RECENT_MAX_ATTEMPTS = 3;
|
|
const RECENT_PERIOD_IN_MINUTES = 5;
|
|
|
|
const createPasswordReset = async (email: string): Promise<string> => {
|
|
const expiry = dayjs().add(PASSWORD_RESET_EXPIRY_HOURS, "hours").toDate();
|
|
const createdResetPasswordRequest = await prisma.resetPasswordRequest.create({
|
|
data: {
|
|
email,
|
|
expires: expiry,
|
|
},
|
|
});
|
|
|
|
return `${process.env.NEXT_PUBLIC_WEBAPP_URL}/auth/forgot-password/${createdResetPasswordRequest.id}`;
|
|
};
|
|
|
|
const guardAgainstTooManyPasswordResets = async (email: string) => {
|
|
const recentPasswordRequestsCount = await prisma.resetPasswordRequest.count({
|
|
where: {
|
|
email,
|
|
createdAt: {
|
|
gt: dayjs().subtract(RECENT_PERIOD_IN_MINUTES, "minutes").toDate(),
|
|
},
|
|
},
|
|
});
|
|
if (recentPasswordRequestsCount >= RECENT_MAX_ATTEMPTS) {
|
|
throw new Error("Too many password reset attempts. Please try again later.");
|
|
}
|
|
};
|
|
const passwordResetRequest = async (user: Pick<User, "email" | "name" | "locale">) => {
|
|
const { email } = user;
|
|
const t = await getTranslation(user.locale ?? "en", "common");
|
|
await guardAgainstTooManyPasswordResets(email);
|
|
const resetLink = await createPasswordReset(email);
|
|
// send email in user language
|
|
await sendPasswordResetEmail({
|
|
language: t,
|
|
user,
|
|
resetLink,
|
|
});
|
|
};
|
|
|
|
export { passwordResetRequest };
|