Add new PasswordReset event.

- Make remember clear it's tokens on password reset.
- Fix #14

callbacks.go

@@ -18,11 +18,12 @@ const (
 	EventRecoverEnd
 	EventGet
 	EventGetUserSession
+	EventPasswordReset
 )
 
-const eventNames = "EventRegisterEventAuthEventAuthFailEventRecoverStartEventRecoverEndEventGetEventGetUserSession"
+const eventNames = "EventRegisterEventAuthEventAuthFailEventRecoverStartEventRecoverEndEventGetEventGetUserSessionEventPasswordReset"
 
-var eventIndexes = [...]uint8{0, 13, 22, 35, 52, 67, 75, 94}
+var eventIndexes = [...]uint8{0, 13, 22, 35, 52, 67, 75, 94, 112}
 
 func (i Event) String() string {
 	if i < 0 || i+1 >= Event(len(eventIndexes)) {

callbacks_test.go

@@ -165,6 +165,7 @@ func TestEventString(t *testing.T) {
 		{EventRecoverEnd, "EventRecoverEnd"},
 		{EventGet, "EventGet"},
 		{EventGetUserSession, "EventGetUserSession"},
+		{EventPasswordReset, "EventPasswordReset"},
 	}
 
 	for i, test := range tests {

recover/recover.go

@@ -251,6 +251,10 @@ func (r *Recover) completeHandlerFunc(ctx *authboss.Context, w http.ResponseWrit
 			return err
 		}
 
+		if err := authboss.Cfg.Callbacks.FireAfter(authboss.EventPasswordReset, ctx); err != nil {
+			return err
+		}
+
 		ctx.SessionStorer.Put(authboss.SessionKey, primaryID)
 		http.Redirect(w, req, authboss.Cfg.AuthLoginOKPath, http.StatusFound)
 	default:

remember/remember.go

@@ -55,6 +55,7 @@ func (r *Remember) Initialize() error {
 
 	authboss.Cfg.Callbacks.Before(authboss.EventGetUserSession, r.auth)
 	authboss.Cfg.Callbacks.After(authboss.EventAuth, r.afterAuth)
+	authboss.Cfg.Callbacks.After(authboss.EventPasswordReset, r.afterPassword)
 
 	return nil
 }
@@ -89,6 +90,26 @@ func (r *Remember) afterAuth(ctx *authboss.Context) error {
 	return nil
 }
 
+// afterPassword is called after the password has been reset.
+func (r *Remember) afterPassword(ctx *authboss.Context) error {
+	if ctx.User == nil {
+		return nil
+	}
+
+	id, ok := ctx.User.String(authboss.Cfg.PrimaryID)
+	if !ok {
+		return nil
+	}
+
+	ctx.CookieStorer.Del(authboss.CookieRemember)
+	tokenStorer, ok := authboss.Cfg.Storer.(TokenStorer)
+	if !ok {
+		return nil
+	}
+
+	return tokenStorer.DelTokens(id)
+}
+
 // new generates a new remember token and stores it in the configured TokenStorer.
 // The return value is a token that should only be given to a user if the delivery
 // method is secure which means at least signed if not encrypted.

remember/remember_test.go

@@ -64,6 +64,37 @@ func TestAfterAuth(t *testing.T) {
 	}
 }
 
+func TestAfterPasswordReset(t *testing.T) {
+	r := Remember{}
+	authboss.NewConfig()
+
+	id := "test@email.com"
+
+	storer := mocks.NewMockStorer()
+	authboss.Cfg.Storer = storer
+	session := mocks.NewMockClientStorer()
+	cookies := mocks.NewMockClientStorer()
+	storer.Tokens[id] = []string{"one", "two"}
+	cookies.Values[authboss.CookieRemember] = "token"
+
+	ctx := authboss.NewContext()
+	ctx.User = authboss.Attributes{authboss.Cfg.PrimaryID: id}
+	ctx.SessionStorer = session
+	ctx.CookieStorer = cookies
+
+	if err := r.afterPassword(ctx); err != nil {
+		t.Error(err)
+	}
+
+	if _, ok := cookies.Values[authboss.CookieRemember]; ok {
+		t.Error("Expected the remember cookie to be deleted.")
+	}
+
+	if len(storer.Tokens) != 0 {
+		t.Error("Should have wiped out all tokens.")
+	}
+}
+
 func TestNew(t *testing.T) {
 	r := &Remember{}
 	authboss.NewConfig()