passwordReset.js 3.5 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596
  1. const Merchant = require("../models/merchant.js");
  2. const helper = require("./helper.js");
  3. const passwordReset = require("../emails/passwordReset.js");
  4. const mailgun = require("mailgun-js")({apiKey: process.env.MG_SUBLINE_APIKEY, domain: "mail.thesubline.net"});
  5. const bcrypt = require("bcryptjs");
  6. module.exports = {
  7. enterEmail: function(req, res){
  8. return res.render("passwordResetPages/email");
  9. },
  10. generateCode: function(req, res){
  11. Merchant.findOne({email: req.body.email})
  12. .then((merchant)=>{
  13. if(merchant === null){
  14. req.session.error = "USER WITH THIS EMAIL DOES NOT EXIST";
  15. return res.redirect("/");
  16. }
  17. merchant.verifyId = helper.generateId(15);
  18. const mailgunData = {
  19. from: "The Subline <clientsupport@thesusbline.net>",
  20. to: merchant.email,
  21. subject: "Password Reset",
  22. html: passwordReset({
  23. name: merchant.name,
  24. link: `${process.env.SITE}/reset/${merchant._id}/${merchant.verifyId}`
  25. })
  26. };
  27. mailgun.messages().send(mailgunData, (err, body)=>{});
  28. return merchant.save();
  29. })
  30. .then((merchant)=>{
  31. req.session.error = "PASSWORD RESET EMAIL SENT";
  32. return res.redirect("/");
  33. })
  34. .catch((err)=>{
  35. req.session.error = "ERROR: UNABLE TO RESET PASSWORD AT THIS TIME";
  36. return res.redirect("/");
  37. });
  38. },
  39. enterPassword: function(req, res){
  40. let error = {};
  41. if(req.session.error){
  42. error = req.session.error;
  43. req.session.error = undefined;
  44. }else{
  45. error = null;
  46. }
  47. return res.render("passwordResetPages/password", {id: req.params.id, code: req.params.code, error: error});
  48. },
  49. resetPassword: function(req, res){
  50. Merchant.findOne({_id: req.body.id})
  51. .then((merchant)=>{
  52. if(merchant.verifyId !== req.body.code){
  53. req.session.error = "YOUR ACCOUNT COULD NOT BE VERIFIED. PLEASE CONTACT US IF THE PROBLEM PERSISTS.";
  54. return res.redirect("/");
  55. }
  56. if(req.body.password !== req.body.confirmPassword){
  57. req.session.error = "PASSWORDS DO NOT MATCH";
  58. return res.redirect(`/reset/${merchant._id}/${merchant.verifyId}`);
  59. }
  60. if(req.body.password.length < 10){
  61. req.session.error = "PASSWORD MUST CONTAIN AT LEAST 10 CHARACTERS";
  62. return res.redirect(`/reset/${merchant._id}/${merchant.verifyId}`);
  63. }
  64. const salt = bcrypt.genSaltSync(10);
  65. const hash = bcrypt.hashSync(req.body.password, salt);
  66. merchant.password = hash;
  67. merchant.verifyId = undefined;
  68. return merchant.save();
  69. })
  70. .then((merchant)=>{
  71. if(merchant !== undefined){
  72. req.session.error = "PASSWORD SUCCESSFULLY UPDATED. PLEASE LOG IN";
  73. return res.redirect("/");
  74. }
  75. })
  76. .catch((err)=>{
  77. req.session.error = "ERROR: UNABLE TO UPDATE YOUR PASSWORD AT THIS TIME";
  78. return res.redirect("/");
  79. });
  80. }
  81. }