UNPKG

@aws-amplify/auth

Version:

Auth category of aws-amplify

aws-amplify.github.io

aws-amplify/amplify-js

85 lines (78 loc) 2.83 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. // SPDX-License-Identifier: Apache-2.0 import { Amplify } from '@aws-amplify/core'; import { AuthAction, AuthVerifiableAttributeKey, assertTokenProviderConfig, } from '@aws-amplify/core/internals/utils'; import { AuthValidationErrorCode } from '../../../errors/types/validation'; import { assertValidationError } from '../../../errors/utils/assertValidationError'; import { AuthDeliveryMedium } from '../../../types'; import { ResetPasswordInput, ResetPasswordOutput } from '../types'; import { getRegionFromUserPoolId } from '../../../foundation/parsers'; import { ForgotPasswordException } from '../../cognito/types/errors'; import { getAuthUserAgentValue } from '../../../utils'; import { getUserContextData } from '../utils/userContextData'; import { createForgotPasswordClient } from '../../../foundation/factories/serviceClients/cognitoIdentityProvider'; import { createCognitoUserPoolEndpointResolver } from '../factories'; /** * Resets a user's password. * * @param input - The ResetPasswordInput object. * @returns ResetPasswordOutput * @throws -{@link ForgotPasswordException } * Thrown due to an invalid confirmation code or password. * @throws -{@link AuthValidationErrorCode } * Thrown due to an empty username. * @throws AuthTokenConfigException - Thrown when the token provider config is invalid. **/ export async function resetPassword( input: ResetPasswordInput, ): Promise<ResetPasswordOutput> { const { username } = input; assertValidationError( !!username, AuthValidationErrorCode.EmptyResetPasswordUsername, ); const authConfig = Amplify.getConfig().Auth?.Cognito; assertTokenProviderConfig(authConfig); const { userPoolClientId, userPoolId, userPoolEndpoint } = authConfig; const clientMetadata = input.options?.clientMetadata; const UserContextData = getUserContextData({ username, userPoolId, userPoolClientId, }); const forgotPassword = createForgotPasswordClient({ endpointResolver: createCognitoUserPoolEndpointResolver({ endpointOverride: userPoolEndpoint, }), }); const res = await forgotPassword( { region: getRegionFromUserPoolId(userPoolId), userAgentValue: getAuthUserAgentValue(AuthAction.ResetPassword), }, { Username: username, ClientMetadata: clientMetadata, ClientId: userPoolClientId, UserContextData, }, ); const codeDeliveryDetails = res.CodeDeliveryDetails; return { isPasswordReset: false, nextStep: { resetPasswordStep: 'CONFIRM_RESET_PASSWORD_WITH_CODE', codeDeliveryDetails: { deliveryMedium: codeDeliveryDetails?.DeliveryMedium as AuthDeliveryMedium, destination: codeDeliveryDetails?.Destination as string, attributeName: codeDeliveryDetails?.AttributeName as AuthVerifiableAttributeKey, }, }, }; }