Elizhium/litlyx
1
0
Fork 0
mirror of https://github.com/Litlyx/litlyx synced 2025-12-11 00:08:37 +01:00
Code Issues Packages Projects Releases Wiki Activity

new selfhosted version

Browse Source
This commit is contained in:
antonio
2025-11-28 14:11:51 +01:00
parent afda29997d
commit 951860f67e
1046 changed files with 72586 additions and 574750 deletions
Download Patch File Download Diff File Expand all files Collapse all files

31
dashboard/server/api/user/set_new_password.post.ts Normal file
View File

@@ -0,0 +1,31 @@
import z from 'zod';
import { PasswordModel } from '~/shared/schema/PasswordSchema';
import crypto from 'crypto';
const ZResetPasswordBody = z.object({
email: z.string().email(),
password: z.string().min(6).max(64),
jwt: z.string()
})
export default defineEventHandler(async event => {
const ctx = await getRequestContext(event, 'flag:allowAnon');
const { email, password, jwt } = await readValidatedBody(event, ZResetPasswordBody.parse);
const { RESET_PASSWORD_SECRET } = useRuntimeConfig();
const readHash = crypto.createHash('sha256');
const hashedSecret = readHash.update(`${RESET_PASSWORD_SECRET}:${email}`).digest('hex');
const ok = hashedSecret === jwt;
if (!ok) throw createError({ status: 400, message: 'Error during password set. Please contact support.' });
const userNewPassword = await hashPassword(password)
await PasswordModel.updateOne({ email }, { password: userNewPassword });
return { ok: true }
});