pocketbase/forms/admin_password_reset_confirm.go

package forms

import (
	validation "github.com/go-ozzo/ozzo-validation/v4"
	"github.com/pocketbase/pocketbase/core"
	"github.com/pocketbase/pocketbase/daos"
	"github.com/pocketbase/pocketbase/forms/validators"
	"github.com/pocketbase/pocketbase/models"
)

// AdminPasswordResetConfirm is an admin password reset confirmation form.
type AdminPasswordResetConfirm struct {
	app core.App
	dao *daos.Dao

	Token           string `form:"token" json:"token"`
	Password        string `form:"password" json:"password"`
	PasswordConfirm string `form:"passwordConfirm" json:"passwordConfirm"`
}

// NewAdminPasswordResetConfirm creates a new [AdminPasswordResetConfirm]
// form initialized with from the provided [core.App] instance.
//
// If you want to submit the form as part of a transaction,
// you can change the default Dao via [SetDao()].
func NewAdminPasswordResetConfirm(app core.App) *AdminPasswordResetConfirm {
	return &AdminPasswordResetConfirm{
		app: app,
		dao: app.Dao(),
	}
}

// SetDao replaces the form Dao instance with the provided one.
//
// This is useful if you want to use a specific transaction Dao instance
// instead of the default app.Dao().
func (form *AdminPasswordResetConfirm) SetDao(dao *daos.Dao) {
	form.dao = dao
}

// Validate makes the form validatable by implementing [validation.Validatable] interface.
func (form *AdminPasswordResetConfirm) Validate() error {
	return validation.ValidateStruct(form,
		validation.Field(&form.Token, validation.Required, validation.By(form.checkToken)),
		validation.Field(&form.Password, validation.Required, validation.Length(10, 72)),
		validation.Field(&form.PasswordConfirm, validation.Required, validation.By(validators.Compare(form.Password))),
	)
}

func (form *AdminPasswordResetConfirm) checkToken(value any) error {
	v, _ := value.(string)
	if v == "" {
		return nil // nothing to check
	}

	admin, err := form.dao.FindAdminByToken(v, form.app.Settings().AdminPasswordResetToken.Secret)
	if err != nil || admin == nil {
		return validation.NewError("validation_invalid_token", "Invalid or expired token.")
	}

	return nil
}

// Submit validates and submits the admin password reset confirmation form.
// On success returns the updated admin model associated to `form.Token`.
//
// You can optionally provide a list of InterceptorFunc to further
// modify the form behavior before persisting it.
func (form *AdminPasswordResetConfirm) Submit(interceptors ...InterceptorFunc[*models.Admin]) (*models.Admin, error) {
	if err := form.Validate(); err != nil {
		return nil, err
	}

	admin, err := form.dao.FindAdminByToken(
		form.Token,
		form.app.Settings().AdminPasswordResetToken.Secret,
	)
	if err != nil {
		return nil, err
	}

	if err := admin.SetPassword(form.Password); err != nil {
		return nil, err
	}

	interceptorsErr := runInterceptors(admin, func(m *models.Admin) error {
		admin = m
		return form.dao.SaveAdmin(m)
	}, interceptors...)

	if interceptorsErr != nil {
		return nil, interceptorsErr
	}

	return admin, nil
}
initial public commit 2022-07-06 23:19:05 +02:00			`package forms`

			`import (`
			`validation "github.com/go-ozzo/ozzo-validation/v4"`
			`"github.com/pocketbase/pocketbase/core"`
added WithConfig factory to all forms 2022-08-07 14:38:21 +02:00			`"github.com/pocketbase/pocketbase/daos"`
initial public commit 2022-07-06 23:19:05 +02:00			`"github.com/pocketbase/pocketbase/forms/validators"`
			`"github.com/pocketbase/pocketbase/models"`
			`)`

initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`// AdminPasswordResetConfirm is an admin password reset confirmation form.`
initial public commit 2022-07-06 23:19:05 +02:00			`type AdminPasswordResetConfirm struct {`
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`app core.App`
			`dao *daos.Dao`
initial public commit 2022-07-06 23:19:05 +02:00
			Token string `form:"token" json:"token"`
			Password string `form:"password" json:"password"`
			PasswordConfirm string `form:"passwordConfirm" json:"passwordConfirm"`
			`}`

added WithConfig factory to all forms 2022-08-07 14:38:21 +02:00			`// NewAdminPasswordResetConfirm creates a new [AdminPasswordResetConfirm]`
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`// form initialized with from the provided [core.App] instance.`
added WithConfig factory to all forms 2022-08-07 14:38:21 +02:00			`//`
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`// If you want to submit the form as part of a transaction,`
			`// you can change the default Dao via [SetDao()].`
initial public commit 2022-07-06 23:19:05 +02:00			`func NewAdminPasswordResetConfirm(app core.App) *AdminPasswordResetConfirm {`
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`return &AdminPasswordResetConfirm{`
			`app: app,`
			`dao: app.Dao(),`
initial public commit 2022-07-06 23:19:05 +02:00			`}`
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`}`
added WithConfig factory to all forms 2022-08-07 14:38:21 +02:00
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`// SetDao replaces the form Dao instance with the provided one.`
			`//`
			`// This is useful if you want to use a specific transaction Dao instance`
			`// instead of the default app.Dao().`
			`func (form AdminPasswordResetConfirm) SetDao(dao daos.Dao) {`
			`form.dao = dao`
initial public commit 2022-07-06 23:19:05 +02:00			`}`

			`// Validate makes the form validatable by implementing [validation.Validatable] interface.`
			`func (form *AdminPasswordResetConfirm) Validate() error {`
			`return validation.ValidateStruct(form,`
			`validation.Field(&form.Token, validation.Required, validation.By(form.checkToken)),`
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`validation.Field(&form.Password, validation.Required, validation.Length(10, 72)),`
initial public commit 2022-07-06 23:19:05 +02:00			`validation.Field(&form.PasswordConfirm, validation.Required, validation.By(validators.Compare(form.Password))),`
			`)`
			`}`

			`func (form *AdminPasswordResetConfirm) checkToken(value any) error {`
			`v, _ := value.(string)`
			`if v == "" {`
			`return nil // nothing to check`
			`}`

initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`admin, err := form.dao.FindAdminByToken(v, form.app.Settings().AdminPasswordResetToken.Secret)`
initial public commit 2022-07-06 23:19:05 +02:00			`if err != nil \|\| admin == nil {`
			`return validation.NewError("validation_invalid_token", "Invalid or expired token.")`
			`}`

			`return nil`
			`}`

			`// Submit validates and submits the admin password reset confirmation form.`
			// On success returns the updated admin model associated to `form.Token`.
[#1240] added dedicated before/after auth hooks and refactored the submit interceptors 2023-01-15 17:00:28 +02:00			`//`
			`// You can optionally provide a list of InterceptorFunc to further`
			`// modify the form behavior before persisting it.`
			`func (form AdminPasswordResetConfirm) Submit(interceptors ...InterceptorFunc[models.Admin]) (*models.Admin, error) {`
initial public commit 2022-07-06 23:19:05 +02:00			`if err := form.Validate(); err != nil {`
			`return nil, err`
			`}`

initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`admin, err := form.dao.FindAdminByToken(`
initial public commit 2022-07-06 23:19:05 +02:00			`form.Token,`
initial v0.8 pre-release 2022-10-30 10:28:14 +02:00			`form.app.Settings().AdminPasswordResetToken.Secret,`
initial public commit 2022-07-06 23:19:05 +02:00			`)`
			`if err != nil {`
			`return nil, err`
			`}`

			`if err := admin.SetPassword(form.Password); err != nil {`
			`return nil, err`
			`}`

[#1240] added dedicated before/after auth hooks and refactored the submit interceptors 2023-01-15 17:00:28 +02:00			`interceptorsErr := runInterceptors(admin, func(m *models.Admin) error {`
			`admin = m`
			`return form.dao.SaveAdmin(m)`
			`}, interceptors...)`

			`if interceptorsErr != nil {`
			`return nil, interceptorsErr`
initial public commit 2022-07-06 23:19:05 +02:00			`}`

			`return admin, nil`
			`}`