1 files changed, 21 insertions, 30 deletions
diff --git a/app/Controllers/Http/Dashboard/ResetPasswordController.ts b/app/Controllers/Http/Dashboard/ResetPasswordController.ts
index 0b9053f..b62b5d2 100644
--- a/app/Controllers/Http/Dashboard/ResetPasswordController.ts
+++ b/app/Controllers/Http/Dashboard/ResetPasswordController.ts
@@ -1,35 +1,30 @@
-import type { HttpContextContract } from '@ioc:Adonis/Core/HttpContext';
+import type { HttpContext } from '@adonisjs/core/http'
-import { schema, rules, validator } from '@ioc:Adonis/Core/Validator';
+import { schema, rules, validator } from '@adonisjs/validator'
-import Token from 'App/Models/Token';
+import Token from '#app/Models/Token'
-import moment from 'moment';
+import moment from 'moment'
-import crypto from 'node:crypto';
+import crypto from 'node:crypto'
 export default class ResetPasswordController {
  /**
   * Display the reset password form
   */
-  public async show({ view, request }: HttpContextContract) {
+  public async show({ view, request }: HttpContext) {
-    const { token } = request.qs();
+    const { token } = request.qs()
    if (token) {
-      return view.render('dashboard/resetPassword', { token });
+      return view.render('dashboard/resetPassword', { token })
    }
    return view.render('others/message', {
      heading: 'Invalid token',
      text: 'Please make sure you are using a valid and recent link to reset your password.',
-    });
+    })
  }
  /**
   * Resets user password
   */
-  public async resetPassword({
+  public async resetPassword({ response, request, session, view }: HttpContext) {
-    response,
-    request,
-    session,
-    view,
-  }: HttpContextContract) {
    try {
      await validator.validate({
        schema: schema.create({
@@ -37,14 +32,14 @@ export default class ResetPasswordController {
          token: schema.string([rules.required()]),
        }),
        data: request.only(['password', 'password_confirmation', 'token']),
-      });
+      })
    } catch {
      session.flash({
        type: 'danger',
        message: 'Passwords do not match',
-      });
+      })
-      return response.redirect(`/user/reset?token=${request.input('token')}`);
+      return response.redirect(`/user/reset?token=${request.input('token')}`)
    }
    const tokenRow = await Token.query()
@@ -52,34 +47,30 @@ export default class ResetPasswordController {
      .where('token', request.input('token'))
      .where('type', 'forgot_password')
      .where('is_revoked', false)
-      .where(
+      .where('updated_at', '>=', moment().subtract(24, 'hours').format('YYYY-MM-DD HH:mm:ss'))
-        'updated_at',
+      .first()
-        '>=',
-        moment().subtract(24, 'hours').format('YYYY-MM-DD HH:mm:ss'),
-      )
-      .first();
    if (!tokenRow) {
      return view.render('others/message', {
        heading: 'Cannot reset your password',
        text: 'Please make sure you are using a valid and recent link to reset your password and that your passwords entered match.',
-      });
+      })
    }
    // Update user password
    const hashedPassword = crypto
      .createHash('sha256')
      .update(request.input('password'))
-      .digest('base64');
+      .digest('base64')
-    tokenRow.user.password = hashedPassword;
+    tokenRow.user.password = hashedPassword
-    await tokenRow.user.save();
+    await tokenRow.user.save()
    // Delete token to prevent it from being used again
-    await tokenRow.delete();
+    await tokenRow.delete()
    return view.render('others/message', {
      heading: 'Reset password',
      text: 'Successfully reset your password. You can now login to your account using your new password.',
-    });
+    })
  }
 }