UNPKG

unleash-server

Version:

Unleash is an enterprise ready feature flag service. It provides different strategies for handling feature flags.

github.com/unleash/unleash

unleash/unleash

132 lines 6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
"use strict"; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); const controller_1 = __importDefault(require("../controller")); const permissions_1 = require("../../types/permissions"); const create_request_schema_1 = require("../../openapi/util/create-request-schema"); const create_response_schema_1 = require("../../openapi/util/create-response-schema"); const token_user_schema_1 = require("../../openapi/spec/token-user-schema"); const standard_responses_1 = require("../../openapi/util/standard-responses"); const express_rate_limit_1 = __importDefault(require("express-rate-limit")); const date_fns_1 = require("date-fns"); class ResetPasswordController extends controller_1.default { constructor(config, { userService, openApiService, }) { super(config); this.logger = config.getLogger('lib/routes/auth/reset-password-controller.ts'); this.openApiService = openApiService; this.userService = userService; this.route({ method: 'get', path: '/validate', handler: this.validateToken, permission: permissions_1.NONE, middleware: [ openApiService.validPath({ summary: 'Validates a token', description: 'If the token is valid returns the user that owns the token', tags: ['Auth'], operationId: 'validateToken', responses: { 200: (0, create_response_schema_1.createResponseSchema)('tokenUserSchema'), ...(0, standard_responses_1.getStandardResponses)(401, 415), }, }), ], }); this.route({ method: 'post', path: '/password', handler: this.changePassword, permission: permissions_1.NONE, middleware: [ openApiService.validPath({ tags: ['Auth'], summary: `Changes a user password`, description: 'Allows users with a valid reset token to reset their password without remembering their old password', operationId: 'changePassword', requestBody: (0, create_request_schema_1.createRequestSchema)('changePasswordSchema'), responses: { 200: standard_responses_1.emptyResponse, ...(0, standard_responses_1.getStandardResponses)(401, 403, 415), }, }), ], }); this.route({ method: 'post', path: '/validate-password', handler: this.validatePassword, permission: permissions_1.NONE, middleware: [ openApiService.validPath({ tags: ['Auth'], summary: 'Validates password', description: 'Verifies that the password adheres to the [Unleash password guidelines](https://docs.getunleash.io/reference/deploy/securing-unleash#password-requirements)', operationId: 'validatePassword', requestBody: (0, create_request_schema_1.createRequestSchema)('validatePasswordSchema'), responses: { 200: standard_responses_1.emptyResponse, ...(0, standard_responses_1.getStandardResponses)(400, 415), }, }), ], }); this.route({ method: 'post', path: '/password-email', handler: this.sendResetPasswordEmail, permission: permissions_1.NONE, middleware: [ openApiService.validPath({ tags: ['Auth'], summary: 'Reset password', description: 'Requests a password reset email for the user. This email can be used to reset the password for a user that has forgotten their password', operationId: 'sendResetPasswordEmail', requestBody: (0, create_request_schema_1.createRequestSchema)('emailSchema'), responses: { 200: standard_responses_1.emptyResponse, ...(0, standard_responses_1.getStandardResponses)(401, 404, 415), }, }), (0, express_rate_limit_1.default)({ windowMs: (0, date_fns_1.minutesToMilliseconds)(1), max: config.rateLimiting.passwordResetMaxPerMinute, validate: false, standardHeaders: true, legacyHeaders: false, }), ], }); } async sendResetPasswordEmail(req, res) { const { email } = req.body; await this.userService.createResetPasswordEmail(email); res.status(200).end(); } async validatePassword(req, res) { const { password } = req.body; this.userService.validatePassword(password); res.status(200).end(); } async validateToken(req, res) { const { token } = req.query; const user = await this.userService.getUserForToken(token); await this.logout(req); this.openApiService.respondWithValidation(200, res, token_user_schema_1.tokenUserSchema.$id, user); } async changePassword(req, res) { await this.logout(req); const { token, password } = req.body; await this.userService.resetPassword(token, password); res.status(200).end(); } async logout(req) { if (req.session) { req.session.destroy(() => { }); } } } exports.default = ResetPasswordController; //# sourceMappingURL=reset-password-controller.js.map