Implemented Forget Password usng sendinblue or brevo mail service

Author: 5codeman

app.js

@@ -19,6 +19,7 @@ const sequelize = require('./util/database');
 const User = require('./models/user');  // ? What is use of this
 const Expense = require('./models/expense'); // ? What is use of this
 const Premium = require('./models/premium');
+const ResetPassword = require("./models/resetPassword");
 
 // set the static folder in my express (by the we can use css and js file)
 app.use(express.static('./public'));
@@ -35,6 +36,9 @@ Expense.belongsTo(User);
 User.hasMany(Premium);
 Premium.belongsTo(User);
 
+User.hasMany(ResetPassword);
+ResetPassword.belongsTo(User);
+
 //{ force: true } - it is writen in sync(), when we want to crate the fresh tabel or update the table or table schema
 sequelize.sync().then((result) => { // ? How this .sync find the all module for creating table
     app.listen(port, function (err) {

controllers/user_controller.js

@@ -2,9 +2,12 @@ const sequelize = require('sequelize');
 const User = require('../models/user');
 const Expense = require("../models/expense");
 const Premium = require('../models/premium');
+const ResetPassword = require("../models/resetPassword");
 const path = require('path');
 const jwt = require("jsonwebtoken");
-const Razorpay = require("razorpay");
+const Razorpay = require("razorpay"); //payment gateway service
+const Sib = require("sib-api-v3-sdk"); //sendinblue or brevo - emain sending service
+const { v4: uuidv4 } = require("uuid"); // unique id generator
 
 module.exports.signUp = async (req, res) => {
     try {
@@ -70,6 +73,7 @@ module.exports.userDashboard = function (req, res) {
     res.sendFile(path.join(__dirname, '../public/views/user_dashboard.html'));
 };
 
+// here we use razorpay service for payment
 module.exports.buyPremium = async (req, res) => {
     try {
         var rzp = new Razorpay({
@@ -225,4 +229,104 @@ module.exports.monthlyReports = async (req, res) => {
     } catch (error) {
         console.log(error);
     }
-};
+};
+
+// Forget Password implemented here
+
+module.exports.forgotPasswordPage = async (req, res) => {
+    try {
+        res.status(200).sendFile(path.join(__dirname, "../public/views/forgotPassword.html"));
+    } catch (error) {
+        console.log(error);
+    }
+};
+
+module.exports.sendMail = async (req, res) => {
+    try {
+        const email = req.body.email;
+        const requestId = uuidv4(); //generate the unique id from uuid
+
+        const recepientEmail = await User.findOne({ where: { email: email } });
+
+        if (!recepientEmail) {
+            return res.status(404).json({ message: "Please provide the registered email!" });
+        }
+
+        await ResetPassword.create({
+            id: requestId,
+            isActive: true, // mail link is active
+            userId: recepientEmail.dataValues.id // Foriegn Key
+        });
+
+        //Here we use Brevo or sendinblue service for email
+        const client = Sib.ApiClient.instance; // it gets instance object from brevo or alias as SendInBlue(sib)
+        const apiKey = client.authentications["api-key"]; // it get the api-key object
+        apiKey.apiKey = process.env.BREVO_API_KEY; // we set a property name as apikey under the api-key object
+        const transEmailApi = new Sib.TransactionalEmailsApi();
+        const sender = {
+            email: "chiragraj106@gmail.com",
+            name: "Chirag Raj",
+        };
+        const receivers = [{ email: email }];
+        await transEmailApi.sendTransacEmail({
+            sender,
+            To: receivers,
+            subject: "Expense Tracker Reset Password",
+            // textContent: "Link Below", (no need of text content because html content overide on textcontent)
+            htmlContent: `<h3> Hii! We got the request from you for reset the password. Here is the link below >>> </h3>
+        <a href="http://localhost:9000/resetPasswordPage/{{params.requestId}}"> Reset your Password from here </a>`,
+            params: {
+                requestId: requestId,
+            },
+        });
+        return res.status(200).json({
+            message:
+                "Link for reset the password is successfully send on your Mail Id!",
+        });
+    } catch (error) {
+        console.log("error");
+        return res.status(409).json({ message: "failed changing password" });
+    }
+};
+
+module.exports.resetPasswordPage = async (req, res, next) => {
+    try {
+        res.status(200).sendFile(path.join(__dirname, "../public/views/resetPassword.html"));
+    } catch (error) {
+        console.log(error);
+    }
+    // here we can acess req.params and req.url
+};
+
+module.exports.resetPassword = async (req, res, next) => {
+    try {
+        const password = req.body.password;
+        const requestId = req.headers.referer.split("/"); //req.headers.referer - it provide the address or url of the just previous web page.
+        //req.url  - this gives same as req.headers.referer but of the current reuest, and we cannot use this because of the request is chnage, see carefullly this is diifrent route
+        //req.params - see carefullly this is diifrent route, we cannot find params from this reset password controller beacuse request is change after clicking reset paasword button means rout and controller change and req object is also change
+        // see just abouve controller name as module.exports.resetPasswordPage there we can acess req.url and req.parms
+
+        const checkResetRequest = await ResetPassword.findAll({
+            where: { id: requestId[requestId.length - 1], isActive: true },
+        });
+
+        if (checkResetRequest[0]) {
+            await ResetPassword.update(
+                { isActive: false },
+                { where: { id: requestId[requestId.length - 1] } }
+            );
+            const userId = checkResetRequest[0].dataValues.userId;
+            await User.update(
+                { password: password },
+                { where: { id: userId } }
+            );
+            return res.status(200).json({ message: "Successfully changed password!" });
+        }
+        else {
+            return res.status(409).json({ message: "Link is already Used Once, Request for new Link!" });
+        }
+    } catch (err) {
+        console.log(err);
+        return res.status(409).json({ message: "Failed to change password!" });
+    }
+};

models/resetPassword.js

@@ -0,0 +1,13 @@
+const Sequelize = require("sequelize");
+const sequelize = require("../util/database");
+
+const ResetPassword = sequelize.define("ResetPassword", {
+    id: {
+        type: Sequelize.STRING,
+        primaryKey: true,
+        allowNull: false,
+    },
+    isActive: Sequelize.BOOLEAN,
+});
+
+module.exports = ResetPassword;