lemmy/crates/api/src/local_user/change_password_after_reset.rs

use crate::Perform;
use actix_web::web::Data;
use lemmy_api_common::{
  person::{LoginResponse, PasswordChangeAfterReset},
  utils::{blocking, password_length_check},
};
use lemmy_db_schema::source::{
  local_user::LocalUser,
  password_reset_request::PasswordResetRequest,
};
use lemmy_utils::{claims::Claims, error::LemmyError, ConnectionId};
use lemmy_websocket::LemmyContext;

#[async_trait::async_trait(?Send)]
impl Perform for PasswordChangeAfterReset {
  type Response = LoginResponse;

  #[tracing::instrument(skip(self, context, _websocket_id))]
  async fn perform(
    &self,
    context: &Data<LemmyContext>,
    _websocket_id: Option<ConnectionId>,
  ) -> Result<LoginResponse, LemmyError> {
    let data: &PasswordChangeAfterReset = self;

    // Fetch the user_id from the token
    let token = data.token.clone();
    let local_user_id = blocking(context.pool(), move |conn| {
      PasswordResetRequest::read_from_token(conn, &token).map(|p| p.local_user_id)
    })
    .await??;

    password_length_check(&data.password)?;

    // Make sure passwords match
    if data.password != data.password_verify {
      return Err(LemmyError::from_message("passwords_dont_match"));
    }

    // Update the user with the new password
    let password = data.password.clone();
    let updated_local_user = blocking(context.pool(), move |conn| {
      LocalUser::update_password(conn, local_user_id, &password)
    })
    .await?
    .map_err(|e| LemmyError::from_error_message(e, "couldnt_update_user"))?;

    // Return the jwt
    Ok(LoginResponse {
      jwt: Some(
        Claims::jwt(
          updated_local_user.id.0,
          &context.secret().jwt_secret,
          &context.settings().hostname,
        )?
        .into(),
      ),
      verify_email_sent: false,
      registration_created: false,
    })
  }
}
Split apart api files (#2216) 2022-04-13 18:12:25 +00:00			`use crate::Perform;`
			`use actix_web::web::Data;`
			`use lemmy_api_common::{`
			`person::{LoginResponse, PasswordChangeAfterReset},`
Add cargo feature for building lemmy_api_common with mininum deps (#2243) 2022-05-03 17:44:13 +00:00			`utils::{blocking, password_length_check},`
Split apart api files (#2216) 2022-04-13 18:12:25 +00:00			`};`
			`use lemmy_db_schema::source::{`
			`local_user::LocalUser,`
			`password_reset_request::PasswordResetRequest,`
			`};`
Extract Activitypub logic into separate library (#2288) * Create example for apub lib * some rewriting of apub lib * Add LocalInstance struct for apub lib to avoid using Lemmy Settings * Move ActorType trait to lemmy_apub, because its not needed in library * Use reqwest_retry instead of custom impl, dont specify timeout on every send() * Some improvements to example * Moved inbox handling to library * bug fixes * Move context and serde helpers into library * wip: example changes * Add lemmy_utils feature to build only LemmyError * Rename to activitypub_federation * Remove lemmy_utils dep from activitypub_federation using generic error type * Finish activitypub example * Cleanup and fix tests * Reorganize library files * Remove ApubObject.to_tombstone() * Extract activitypub library into separate git repository 2022-06-02 14:33:41 +00:00			`use lemmy_utils::{claims::Claims, error::LemmyError, ConnectionId};`
Split apart api files (#2216) 2022-04-13 18:12:25 +00:00			`use lemmy_websocket::LemmyContext;`

			`#[async_trait::async_trait(?Send)]`
			`impl Perform for PasswordChangeAfterReset {`
			`type Response = LoginResponse;`

			`#[tracing::instrument(skip(self, context, _websocket_id))]`
			`async fn perform(`
			`&self,`
			`context: &Data<LemmyContext>,`
			`_websocket_id: Option<ConnectionId>,`
			`) -> Result<LoginResponse, LemmyError> {`
			`let data: &PasswordChangeAfterReset = self;`

			`// Fetch the user_id from the token`
			`let token = data.token.clone();`
			`let local_user_id = blocking(context.pool(), move \|conn\| {`
			`PasswordResetRequest::read_from_token(conn, &token).map(\|p\| p.local_user_id)`
			`})`
			`.await??;`

			`password_length_check(&data.password)?;`

			`// Make sure passwords match`
			`if data.password != data.password_verify {`
			`return Err(LemmyError::from_message("passwords_dont_match"));`
			`}`

			`// Update the user with the new password`
			`let password = data.password.clone();`
			`let updated_local_user = blocking(context.pool(), move \|conn\| {`
			`LocalUser::update_password(conn, local_user_id, &password)`
			`})`
			`.await?`
			`.map_err(\|e\| LemmyError::from_error_message(e, "couldnt_update_user"))?;`

			`// Return the jwt`
			`Ok(LoginResponse {`
			`jwt: Some(`
			`Claims::jwt(`
			`updated_local_user.id.0,`
			`&context.secret().jwt_secret,`
			`&context.settings().hostname,`
			`)?`
			`.into(),`
			`),`
			`verify_email_sent: false,`
			`registration_created: false,`
			`})`
			`}`
			`}`