2021-05-04 08:05:34 +02:00
|
|
|
import $ from 'cafy';
|
2021-08-19 14:55:45 +02:00
|
|
|
import { publishMainStream } from '@/services/stream';
|
|
|
|
import define from '../define';
|
2021-05-04 08:05:34 +02:00
|
|
|
import rndstr from 'rndstr';
|
2021-08-19 14:55:45 +02:00
|
|
|
import config from '@/config/index';
|
2021-11-12 11:47:04 +01:00
|
|
|
import ms from 'ms';
|
2021-08-19 14:55:45 +02:00
|
|
|
import { Users, UserProfiles, PasswordResetRequests } from '@/models/index';
|
|
|
|
import { sendEmail } from '@/services/send-email';
|
|
|
|
import { ApiError } from '../error';
|
|
|
|
import { genId } from '@/misc/gen-id';
|
2021-05-04 08:05:34 +02:00
|
|
|
import { IsNull } from 'typeorm';
|
|
|
|
|
|
|
|
export const meta = {
|
|
|
|
requireCredential: false as const,
|
|
|
|
|
|
|
|
limit: {
|
|
|
|
duration: ms('1hour'),
|
2021-12-09 15:58:30 +01:00
|
|
|
max: 3,
|
2021-05-04 08:05:34 +02:00
|
|
|
},
|
|
|
|
|
|
|
|
params: {
|
|
|
|
username: {
|
2021-12-09 15:58:30 +01:00
|
|
|
validator: $.str,
|
2021-05-04 08:05:34 +02:00
|
|
|
},
|
|
|
|
|
|
|
|
email: {
|
2021-12-09 15:58:30 +01:00
|
|
|
validator: $.str,
|
2021-05-04 08:05:34 +02:00
|
|
|
},
|
|
|
|
},
|
|
|
|
|
|
|
|
errors: {
|
|
|
|
|
2021-12-09 15:58:30 +01:00
|
|
|
},
|
2021-05-04 08:05:34 +02:00
|
|
|
};
|
|
|
|
|
2022-01-02 18:12:50 +01:00
|
|
|
// eslint-disable-next-line import/no-default-export
|
2021-05-04 08:05:34 +02:00
|
|
|
export default define(meta, async (ps) => {
|
|
|
|
const user = await Users.findOne({
|
|
|
|
usernameLower: ps.username.toLowerCase(),
|
2021-12-09 15:58:30 +01:00
|
|
|
host: IsNull(),
|
2021-05-04 08:05:34 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
// 合致するユーザーが登録されていなかったら無視
|
|
|
|
if (user == null) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
const profile = await UserProfiles.findOneOrFail(user.id);
|
|
|
|
|
|
|
|
// 合致するメアドが登録されていなかったら無視
|
|
|
|
if (profile.email !== ps.email) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// メアドが認証されていなかったら無視
|
|
|
|
if (!profile.emailVerified) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
const token = rndstr('a-z0-9', 64);
|
|
|
|
|
|
|
|
await PasswordResetRequests.insert({
|
|
|
|
id: genId(),
|
|
|
|
createdAt: new Date(),
|
|
|
|
userId: profile.userId,
|
2021-12-09 15:58:30 +01:00
|
|
|
token,
|
2021-05-04 08:05:34 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
const link = `${config.url}/reset-password/${token}`;
|
|
|
|
|
|
|
|
sendEmail(ps.email, 'Password reset requested',
|
|
|
|
`To reset password, please click this link:<br><a href="${link}">${link}</a>`,
|
|
|
|
`To reset password, please click this link: ${link}`);
|
|
|
|
});
|