mirror of
https://github.com/LBPUnion/ProjectLighthouse.git
synced 2025-05-17 07:12:32 +00:00
0b27969a22
* Added password reset form * added using to commentsPartial without this i was experiencing an error when browsing to my profile page * (Hopefully) final password reset form * Update ProjectLighthouse.Servers.Website/Pages/PasswordResetPage.cshtml.cs Co-authored-by: Jayden <jvyden@jvyden.xyz> * Update ProjectLighthouse.Servers.Website/Pages/PasswordResetRequestForm.cshtml Co-authored-by: Jayden <jvyden@jvyden.xyz> * Update ProjectLighthouse.Servers.Website/Pages/PasswordResetRequestForm.cshtml Co-authored-by: Jayden <jvyden@jvyden.xyz> * Update ProjectLighthouse.Servers.Website/Pages/PasswordResetRequestForm.cshtml.cs Co-authored-by: Jayden <jvyden@jvyden.xyz> * Update ProjectLighthouse.Servers.Website/Pages/PasswordResetRequestForm.cshtml.cs Co-authored-by: Jayden <jvyden@jvyden.xyz> * Update ProjectLighthouse.Servers.Website/Pages/PasswordResetRequestForm.cshtml.cs Co-authored-by: Jayden <jvyden@jvyden.xyz> * Update ProjectLighthouse/Database.cs Co-authored-by: Jayden <jvyden@jvyden.xyz> * Update ProjectLighthouse.Servers.Website/Pages/LoginForm.cshtml Co-authored-by: Jayden <jvyden@jvyden.xyz> * Stopped leaking user email addresses * Made UserFromPasswordResetToken async * Made UserFromPasswordResetToken async * Indented login form row div * Fix AddedPasswordResetTokens migration not having proper attributes * Adjust password reset email text * Clean up password reset request form Co-authored-by: Jayden <jvyden@jvyden.xyz>
70 lines
No EOL
2.1 KiB
C#
70 lines
No EOL
2.1 KiB
C#
#nullable enable
|
|
using JetBrains.Annotations;
|
|
using LBPUnion.ProjectLighthouse.Configuration;
|
|
using LBPUnion.ProjectLighthouse.Helpers;
|
|
using LBPUnion.ProjectLighthouse.PlayerData.Profiles;
|
|
using LBPUnion.ProjectLighthouse.Servers.Website.Pages.Layouts;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
|
|
namespace LBPUnion.ProjectLighthouse.Servers.Website.Pages;
|
|
|
|
public class PasswordResetPage : BaseLayout
|
|
{
|
|
public PasswordResetPage(Database database) : base(database)
|
|
{}
|
|
|
|
public string? Error { get; private set; }
|
|
|
|
[UsedImplicitly]
|
|
public async Task<IActionResult> OnPost(string password, string confirmPassword)
|
|
{
|
|
User? user;
|
|
if (Request.Query.ContainsKey("token"))
|
|
{
|
|
user = await this.Database.UserFromPasswordResetToken(Request.Query["token"][0]);
|
|
if (user == null)
|
|
{
|
|
this.Error = "This password reset link either is invalid or has expired. Please try again.";
|
|
return this.Page();
|
|
}
|
|
}
|
|
else
|
|
{
|
|
user = this.Database.UserFromWebRequest(this.Request);
|
|
if (user == null) return this.Redirect("~/login");
|
|
}
|
|
|
|
if (string.IsNullOrWhiteSpace(password))
|
|
{
|
|
this.Error = "The password field is required.";
|
|
return this.Page();
|
|
}
|
|
|
|
if (password != confirmPassword)
|
|
{
|
|
this.Error = "Passwords do not match!";
|
|
return this.Page();
|
|
}
|
|
|
|
user.Password = CryptoHelper.BCryptHash(password);
|
|
user.PasswordResetRequired = false;
|
|
|
|
await this.Database.SaveChangesAsync();
|
|
|
|
if (!user.EmailAddressVerified && ServerConfiguration.Instance.Mail.MailEnabled)
|
|
return this.Redirect("~/login/sendVerificationEmail");
|
|
|
|
return this.Redirect("~/");
|
|
}
|
|
|
|
[UsedImplicitly]
|
|
public IActionResult OnGet()
|
|
{
|
|
if (this.Request.Query.ContainsKey("token")) return this.Page();
|
|
|
|
User? user = this.Database.UserFromWebRequest(this.Request);
|
|
if (user == null) return this.Redirect("~/login");
|
|
|
|
return this.Page();
|
|
}
|
|
} |