passwordReset.js 3.4 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788
  1. const Owner = require("../models/owner.js");
  2. const Merchant = require("../models/merchant.js");
  3. const passwordReset = require("../emails/passwordReset.js");
  4. // const mailgun = require("mailgun-js")({apiKey: process.env.MG_SUBLINE_APIKEY, domain: "mail.thesubline.net"});
  5. const bcrypt = require("bcryptjs");
  6. module.exports = {
  7. enterEmail: function(req, res){
  8. return res.render("passwordResetPages/email");
  9. },
  10. generateCode: function(req, res){
  11. Owner.findOne({email: req.body.email.toLowerCase()})
  12. .then((owner)=>{
  13. if(owner === null){
  14. req.session.error = "USER WITH THIS EMAIL DOES NOT EXIST";
  15. return res.redirect("/");
  16. }
  17. const mailgunData = {
  18. from: "The Subline <clientsupport@thesubline.net>",
  19. to: owner.email,
  20. subject: "Password Reset",
  21. html: passwordReset({
  22. name: owner.name,
  23. link: `${process.env.SITE}/reset/${owner._id}/${owner.session.sessionId}`
  24. })
  25. };
  26. mailgun.messages().send(mailgunData, (err, body)=>{});
  27. req.session.success = "PASSWORD RESET EMAIL SENT";
  28. return res.redirect("/");
  29. })
  30. .catch((err)=>{
  31. req.session.error = "ERROR: UNABLE TO RESET PASSWORD AT THIS TIME";
  32. return res.redirect("/");
  33. });
  34. },
  35. enterPassword: function(req, res){
  36. return res.render("passwordResetPages/password", {id: req.params.id, code: req.params.code, banner: res.locals.banner});
  37. },
  38. resetPassword: function(req, res){
  39. Owner.findOne({_id: req.body.id})
  40. .then((owner)=>{
  41. if(owner.session.sessionId !== req.body.code){
  42. req.session.error = "YOUR ACCOUNT COULD NOT BE VERIFIED. PLEASE CONTACT US IF THE PROBLEM PERSISTS.";
  43. return res.redirect("/");
  44. }
  45. if(req.body.password !== req.body.confirmPassword){
  46. req.session.error = "PASSWORDS DO NOT MATCH";
  47. return res.redirect(`/reset/${owner._id}/${owner.session.sessionId}`);
  48. }
  49. if(req.body.password.length < 10){
  50. req.session.error = "PASSWORD MUST CONTAIN AT LEAST 10 CHARACTERS";
  51. return res.redirect(`/reset/${owner._id}/${owner.session.sessionId}`);
  52. }
  53. const salt = bcrypt.genSaltSync(10);
  54. const hash = bcrypt.hashSync(req.body.password, salt);
  55. owner.password = hash;
  56. return owner.save();
  57. })
  58. .then((owner)=>{
  59. if(owner !== undefined){
  60. req.session.success = "PASSWORD SUCCESSFULLY UPDATED. PLEASE LOG IN";
  61. return res.redirect("/login");
  62. }
  63. })
  64. .catch((err)=>{
  65. if(typeof(err) === "string"){
  66. req.session.error = err;
  67. }else if(err.name === "ValidationError"){
  68. req.session.error = err.errors[Object.keys(err.errors)[0]].properties.message;
  69. }else{
  70. req.session.error = "ERROR: UNABLE TO UPDATE YOUR PASSWORD";
  71. }
  72. return res.redirect("/");
  73. });
  74. }
  75. }