2023-06-08 23:34:59 +02:00
|
|
|
@page "/sys/click/resetpw/{userid}/{hash}"
|
|
|
|
@using System.ComponentModel.DataAnnotations
|
|
|
|
@using ImageBoardServerApp.Data.Repository
|
|
|
|
@inject AuthenticationStateProvider authStateProvider
|
|
|
|
@inject NavigationManager navManager
|
|
|
|
<PageTitle>Password reset</PageTitle>
|
|
|
|
<span>Password reset for account id #@userid</span>
|
|
|
|
|
|
|
|
<div class="login">
|
|
|
|
<form>
|
|
|
|
<RadzenFormField Text="New Password" Variant="Variant.Outlined">
|
2023-06-12 20:46:44 +02:00
|
|
|
<RadzenPassword @bind-Value="@Password"/>
|
2023-06-08 23:34:59 +02:00
|
|
|
</RadzenFormField>
|
|
|
|
<br/>
|
|
|
|
<br/>
|
2023-06-12 21:22:44 +02:00
|
|
|
<RadzenButton Click=@reset Text="reset" ButtonStyle="ButtonStyle.Secondary"/>
|
2023-06-08 23:34:59 +02:00
|
|
|
<br/>
|
|
|
|
</form>
|
2023-06-09 09:45:14 +02:00
|
|
|
@if (msg != null)
|
|
|
|
{
|
|
|
|
<span>@msg</span>
|
|
|
|
}
|
2023-06-08 23:34:59 +02:00
|
|
|
</div>
|
|
|
|
|
|
|
|
|
|
|
|
@code {
|
|
|
|
private string Password { get; set; }
|
2023-06-12 20:46:44 +02:00
|
|
|
|
2023-06-09 09:45:14 +02:00
|
|
|
private string msg { get; set; }
|
2023-06-12 20:46:44 +02:00
|
|
|
|
2023-06-08 23:34:59 +02:00
|
|
|
[Parameter]
|
|
|
|
[Required]
|
|
|
|
public string userid { get; set; }
|
2023-06-12 20:46:44 +02:00
|
|
|
|
2023-06-08 23:34:59 +02:00
|
|
|
[Parameter]
|
|
|
|
[Required]
|
|
|
|
public string hash { get; set; }
|
|
|
|
|
|
|
|
public async void reset()
|
|
|
|
{
|
2023-06-09 09:45:14 +02:00
|
|
|
if (!int.TryParse(userid, out _))
|
2023-06-12 12:11:48 +02:00
|
|
|
{
|
|
|
|
msg = "malformed userid.";
|
2023-06-08 23:34:59 +02:00
|
|
|
return;
|
2023-06-12 12:11:48 +02:00
|
|
|
}
|
|
|
|
Console.WriteLine("Resetting a password...");
|
2023-06-08 23:34:59 +02:00
|
|
|
var user = await UsersRepository.getUserByIdAsync(int.Parse(userid));
|
|
|
|
if (user == null)
|
2023-06-12 12:11:48 +02:00
|
|
|
{
|
|
|
|
msg = "This user does not exist.";
|
2023-06-08 23:34:59 +02:00
|
|
|
return;
|
2023-06-12 12:11:48 +02:00
|
|
|
}
|
2023-06-08 23:34:59 +02:00
|
|
|
if (user.ResetPasswordToken != hash)
|
|
|
|
{
|
2023-06-12 12:11:48 +02:00
|
|
|
msg = "The token does not match the account.";
|
|
|
|
return;
|
|
|
|
}
|
2023-06-12 20:46:44 +02:00
|
|
|
if (user.ResetPasswordExpiresAt < 0 || user.ResetPasswordToken == "-1")
|
2023-06-12 12:11:48 +02:00
|
|
|
{
|
|
|
|
msg = "There is currently no valid link to reset this accounts password.";
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
if (user.ResetPasswordExpiresAt < DateTimeOffset.Now.ToUnixTimeMilliseconds())
|
|
|
|
{
|
|
|
|
msg = "This link has expired.";
|
2023-06-08 23:34:59 +02:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
user.Password = Password = BCrypt.Net.BCrypt.HashPassword(Password);
|
2023-06-09 09:45:14 +02:00
|
|
|
user.ResetPasswordToken = "-1";
|
2023-06-12 12:11:48 +02:00
|
|
|
user.ResetPasswordExpiresAt = -1;
|
2023-06-08 23:34:59 +02:00
|
|
|
|
|
|
|
await UsersRepository.updateUserAsync(user);
|
2023-06-09 09:45:14 +02:00
|
|
|
|
|
|
|
msg = "Your Password has been updated.";
|
2023-06-08 23:34:59 +02:00
|
|
|
}
|
2023-06-12 20:46:44 +02:00
|
|
|
|
2023-06-08 23:34:59 +02:00
|
|
|
}
|