Ghost/core/server/services/auth/passwordreset.js

194 lines
6.2 KiB
JavaScript
Raw Normal View History

const _ = require('lodash');
const security = require('@tryghost/security');
const constants = require('@tryghost/constants');
const errors = require('@tryghost/errors');
const tpl = require('@tryghost/tpl');
const models = require('../../models');
const urlUtils = require('../../../shared/url-utils');
const mail = require('../mail');
const messages = {
userNotFound: 'User not found.',
tokenLocked: 'Token locked',
resetPassword: 'Reset Password',
expired: {
message: 'Cannot reset password.',
context: 'Password reset link expired.',
help: 'Request a new password reset via the login form.'
},
invalidToken: {
message: 'Cannot reset password.',
context: 'Password reset link has already been used.',
help: 'Request a new password reset via the login form.'
},
corruptedToken: {
message: 'Cannot reset password.',
context: 'Invalid password reset link.',
help: 'Check if password reset link has been fully copied or request new password reset via the login form.'
}
};
const tokenSecurity = {};
function generateToken(email, settingsAPI, transaction) {
const options = {context: {internal: true}, transacting: transaction};
let dbHash;
let token;
return settingsAPI.read(_.merge({key: 'db_hash'}, options))
.then((response) => {
dbHash = response.settings[0].value;
return models.User.getByEmail(email, options);
})
.then((user) => {
if (!user) {
throw new errors.NotFoundError({message: tpl(messages.userNotFound)});
}
token = security.tokens.resetToken.generateHash({
expires: Date.now() + constants.ONE_DAY_MS,
email: email,
dbHash: dbHash,
password: user.get('password')
});
return {
email: email,
resetToken: token
};
});
}
function extractTokenParts(options) {
options.data.passwordreset[0].token = security.url.decodeBase64(options.data.passwordreset[0].token);
const tokenParts = security.tokens.resetToken.extract({
token: options.data.passwordreset[0].token
});
if (!tokenParts) {
return Promise.reject(new errors.UnauthorizedError({
message: tpl(messages.corruptedToken.message),
context: tpl(messages.corruptedToken.context),
help: tpl(messages.corruptedToken.help)
}));
}
return Promise.resolve({options, tokenParts});
}
// @TODO: use brute force middleware (see https://github.com/TryGhost/Ghost/pull/7579)
function protectBruteForce({options, tokenParts}) {
if (tokenSecurity[`${tokenParts.email}+${tokenParts.expires}`] &&
tokenSecurity[`${tokenParts.email}+${tokenParts.expires}`].count >= 10) {
return Promise.reject(new errors.NoPermissionError({
message: tpl(messages.tokenLocked)
}));
}
return Promise.resolve({options, tokenParts});
}
function doReset(options, tokenParts, settingsAPI) {
let dbHash;
const data = options.data.passwordreset[0];
const resetToken = data.token;
const oldPassword = data.oldPassword;
const newPassword = data.newPassword;
return settingsAPI.read(_.merge({key: 'db_hash'}, _.omit(options, 'data')))
.then((response) => {
dbHash = response.settings[0].value;
return models.User.getByEmail(tokenParts.email, options);
})
.then((user) => {
if (!user) {
throw new errors.NotFoundError({message: tpl(messages.userNotFound)});
}
let compareResult = security.tokens.resetToken.compare({
token: resetToken,
dbHash: dbHash,
password: user.get('password')
});
if (!compareResult.correct) {
let error;
if (compareResult.reason === 'expired' || compareResult.reason === 'invalid_expiry') {
error = new errors.BadRequestError({
message: tpl(messages.expired.message),
context: tpl(messages.expired.context),
help: tpl(messages.expired.help)
});
} else {
error = new errors.BadRequestError({
message: tpl(messages.invalidToken.message),
context: tpl(messages.invalidToken.context),
help: tpl(messages.invalidToken.help)
});
}
return Promise.reject(error);
}
return models.User.changePassword({
oldPassword: oldPassword,
newPassword: newPassword,
user_id: user.id
}, options);
})
.then((updatedUser) => {
updatedUser.set('status', 'active');
return updatedUser.save(options);
})
.catch(errors.ValidationError, (err) => {
return Promise.reject(err);
})
.catch((err) => {
if (errors.utils.isIgnitionError(err)) {
return Promise.reject(err);
}
return Promise.reject(new errors.UnauthorizedError({err: err}));
});
}
async function sendResetNotification(data, mailAPI) {
const adminUrl = urlUtils.urlFor('admin', true);
const resetToken = security.url.encodeBase64(data.resetToken);
const resetUrl = urlUtils.urlJoin(adminUrl, 'reset', resetToken, '/');
const emailData = {
resetUrl: resetUrl,
recipientEmail: data.email
};
const content = await mail.utils.generateContent({
data: emailData,
template: 'reset-password'
});
const payload = {
mail: [{
message: {
to: data.email,
subject: tpl(messages.resetPassword),
html: content.html,
text: content.text
},
options: {}
}]
};
return mailAPI.send(payload, {context: {internal: true}});
}
module.exports = {
generateToken,
extractTokenParts,
protectBruteForce,
doReset,
sendResetNotification
};