Add password reset (#3)

2018-10-27 09:33:28 +00:00
parent 95197ec6ed
commit 0cfea682ea
332 changed files with 53283 additions and 15576 deletions
--- a/routes/api/v1/swagger/options.go
+++ b/routes/api/v1/swagger/options.go
@ -40,4 +40,10 @@ type swaggerParameterBodies struct {

 	// in:body
 	NamespaceUser models.NamespaceUser
+
+	// in:body
+	PasswordReset models.PasswordReset
+
+	// in:body
+	PasswordTokenRequest models.PasswordTokenRequest
 }
--- a/routes/api/v1/user_password_reset.go
+++ b/routes/api/v1/user_password_reset.go
@ -0,0 +1,84 @@
+package v1
+
+import (
+	"code.vikunja.io/api/models"
+	"code.vikunja.io/api/routes/crud"
+	"github.com/labstack/echo"
+	"net/http"
+)
+
+// UserResetPassword is the handler to change a users password
+func UserResetPassword(c echo.Context) error {
+	// swagger:operation POST /user/password/reset user updatePassword
+	// ---
+	// summary: Resets a users password
+	// consumes:
+	// - application/json
+	// produces:
+	// - application/json
+	// parameters:
+	// - name: body
+	//   in: body
+	//   schema:
+	//     "$ref": "#/definitions/PasswordReset"
+	// responses:
+	//   "200":
+	//     "$ref": "#/responses/Message"
+	//   "400":
+	//     "$ref": "#/responses/Message"
+	//   "404":
+	//     "$ref": "#/responses/Message"
+	//   "500":
+	//     "$ref": "#/responses/Message"
+
+	// Check for Request Content
+	var pwReset models.PasswordReset
+	if err := c.Bind(&pwReset); err != nil {
+		return echo.NewHTTPError(http.StatusBadRequest, "No password provided.")
+	}
+
+	err := models.UserPasswordReset(&pwReset)
+	if err != nil {
+		return crud.HandleHTTPError(err)
+	}
+
+	return c.JSON(http.StatusOK, models.Message{"The password was updated successfully."})
+}
+
+// UserRequestResetPasswordToken is the handler to change a users password
+func UserRequestResetPasswordToken(c echo.Context) error {
+	// swagger:operation POST /user/password/token user requestUpdatePasswordToken
+	// ---
+	// summary: Requests a token to reset a users password
+	// consumes:
+	// - application/json
+	// produces:
+	// - application/json
+	// parameters:
+	// - name: body
+	//   in: body
+	//   schema:
+	//     "$ref": "#/definitions/PasswordTokenRequest"
+	// responses:
+	//   "200":
+	//     "$ref": "#/responses/Message"
+	//   "400":
+	//     "$ref": "#/responses/Message"
+	//   "404":
+	//     "$ref": "#/responses/Message"
+	//   "500":
+	//     "$ref": "#/responses/Message"
+
+	// Check for Request Content
+	var pwTokenReset models.PasswordTokenRequest
+	if err := c.Bind(&pwTokenReset); err != nil {
+		return echo.NewHTTPError(http.StatusBadRequest, "No user ID provided.")
+	}
+
+	err := models.RequestUserPasswordResetToken(&pwTokenReset)
+	if err != nil {
+		return crud.HandleHTTPError(err)
+	}
+
+	return c.JSON(http.StatusOK, models.Message{"Token was sent."})
+}
--- a/routes/routes.go
+++ b/routes/routes.go
@ -65,6 +65,8 @@ func RegisterRoutes(e *echo.Echo) {

 	a.POST("/login", apiv1.Login)
 	a.POST("/register", apiv1.RegisterUser)
+	a.POST("/user/password/token", apiv1.UserRequestResetPasswordToken)
+	a.POST("/user/password/reset", apiv1.UserResetPassword)

 	// ===== Routes with Authetification =====
 	// Authetification