UNPKG

expressling

Version:

Expressling

niftylettuce/expressling

105 lines (98 loc) 3.97 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
// # Forgot Password var form = require('express-form') , filter = form.filter , field = form.field , validate = form.validate; module.exports = function(app, db) { // ## Forgot password form app.get('/forgot-password', function(req, res) { if(req.loggedIn) { return res.redirect('/login'); } else { res.render('forgot-password', { title: "Forgot Password", }); } }); // ## Process recovery app.post('/forgot-password', form( filter("email").trim() , validate("email").required().isEmail() ), function(req, res) { if(!req.form.isValid) { res.redirect('/forgot-password'); } else { // Check if account exists and dispatch /account-recovery/:hash link // This hash link will allow user to change their password var Users = db.model('Users'); Users.findOne(req.form, function(err, user) { if(err) { req.flash('error', 'An error occured, please try again'); res.redirect('/forgot-password'); } if(!user) { req.flash('error', 'No account exists with an email address of ' + '<strong>' + req.form.email + '</strong>'); res.redirect('/forgot-password'); } else { // Store random string in user's table as user.random_string var randomString = require('../lib/random-string.js'); user.random_string = randomString(16); user.save(function(err, user) { if(user) { // Send user an email to reset their password var nodemailer = require('nodemailer') , emailSignature = require('../lib/email-signature') , htmlMsg = '' + '<p>' + user.name.first + ',</p>' + '<p>You can reset your password by clicking the unique link below:</p>' + '<p><a href="http://yourdomain.com/reset-password/' + user.random_string + '" target="_blank" title="Reset your password">' + 'http://yourdomain.com/reset-password/' + user.random_string + '</a></p>' + emailSignature("html") , plainMsg = '' + user.name.first + ',\n\n' + 'You can reset your password by clicking the unique link below:\n\n' + 'http://yourdomain.com/reset-password/' + user.random_string + '\n\n' + emailSignature("text"); nodemailer.SMTP = { host: 'smtp.gmail.com' , port: 465 , ssl: true , use_authentication: true , user: 'llamas@yourdomain.com' , pass: 'alpacas' }; nodemailer.send_mail( { sender: '"Llamas" <llamas@yourdomain.com>' , to: req.form.email , subject: user.name.first + ', reset your password using this link' , html: htmlMsg , body: plainMsg }, function(err, success) { if(success) { req.flash('success', '' + 'An email has been sent to ' + '<strong>' + req.form.email + '</strong> ' + 'with a link to reset the account\'s password'); } else { req.flash('error', 'An error occured, please try again'); } res.redirect('/forgot-password'); } ); } else { console.log(err); req.flash('error', 'An error occured, please try again'); } }); } }); } } ); };