56 lines
1.3 KiB
C#
56 lines
1.3 KiB
C#
using Hutopy.Modules.Identity.Data;
|
|
|
|
namespace Hutopy.Modules.Identity.Handlers;
|
|
|
|
[PublicAPI]
|
|
public record ResetPasswordRequest(
|
|
string Email,
|
|
string Token,
|
|
string NewPassword);
|
|
|
|
[PublicAPI]
|
|
public class ResetPasswordHandler(
|
|
UserManager userManager)
|
|
: Endpoint<ResetPasswordRequest>
|
|
{
|
|
public override void Configure()
|
|
{
|
|
AllowAnonymous();
|
|
Post("/api/users/reset-password");
|
|
Options(o => o.WithTags("Users"));
|
|
}
|
|
|
|
public override async Task HandleAsync(
|
|
ResetPasswordRequest request,
|
|
CancellationToken ct)
|
|
{
|
|
// Find user by email
|
|
var user = await userManager.FindByEmailAsync(request.Email);
|
|
if (user is null)
|
|
{
|
|
await SendStringAsync(
|
|
"Invalid request",
|
|
400,
|
|
cancellation: ct);
|
|
return;
|
|
}
|
|
|
|
// Reset password with token
|
|
var result = await userManager.ResetPasswordAsync(
|
|
user,
|
|
request.Token,
|
|
request.NewPassword);
|
|
|
|
if (!result.Succeeded)
|
|
{
|
|
await SendStringAsync(
|
|
"Invalid or expired token",
|
|
400,
|
|
cancellation: ct);
|
|
return;
|
|
}
|
|
|
|
await SendOkAsync(ct);
|
|
}
|
|
}
|