2022-09-20 13:21:01 +00:00
|
|
|
const UserError = require('vn-loopback/util/user-error');
|
|
|
|
|
|
|
|
|
|
module.exports = Self => {
|
2022-09-21 13:15:19 +00:00
|
|
|
Self.remoteMethodCtx('recoverPassword', {
|
2022-09-20 13:21:01 +00:00
|
|
|
description: 'Send email to the user',
|
|
|
|
|
accepts: [
|
|
|
|
|
{
|
|
|
|
|
arg: 'email',
|
|
|
|
|
type: 'string',
|
|
|
|
|
description: 'The email of user',
|
2022-09-21 13:15:19 +00:00
|
|
|
required: true
|
2022-09-20 13:21:01 +00:00
|
|
|
}
|
|
|
|
|
],
|
|
|
|
|
http: {
|
|
|
|
|
path: `/recoverPassword`,
|
2022-09-21 13:15:19 +00:00
|
|
|
verb: 'POST'
|
2022-09-20 13:21:01 +00:00
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
2022-09-21 13:15:19 +00:00
|
|
|
Self.recoverPassword = async function(ctx, email) {
|
2022-09-20 13:21:01 +00:00
|
|
|
const models = Self.app.models;
|
2022-09-21 13:15:19 +00:00
|
|
|
const origin = ctx.req.headers.origin;
|
|
|
|
|
const ttl = 1209600;
|
|
|
|
|
|
|
|
|
|
const user = await models.Account.findOne({
|
|
|
|
|
fields: ['id', 'name', 'password'],
|
2022-09-20 13:21:01 +00:00
|
|
|
where: {
|
|
|
|
|
email: email
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if (!user)
|
|
|
|
|
throw new UserError(`This email does not belong to a user`);
|
|
|
|
|
|
2022-09-21 13:15:19 +00:00
|
|
|
const token = await models.AccessToken.create({
|
|
|
|
|
ttl: ttl,
|
|
|
|
|
userId: user.id
|
2022-09-20 13:21:01 +00:00
|
|
|
});
|
|
|
|
|
|
2022-09-21 13:15:19 +00:00
|
|
|
return await Self.rawSql(`CALL vn.mail_insert(?,?,?,?)`,
|
|
|
|
|
[email, null, 'Recovery Password', `${origin}/#!/account/${user.id}/basic-data?access_token=${token.id}`]);
|
2022-09-20 13:21:01 +00:00
|
|
|
};
|
|
|
|
|
};
|
