Skip to content
This repository was archived by the owner on Oct 30, 2022. It is now read-only.

Forgot password and Reset password feature #112

Merged
merged 8 commits into from
Dec 17, 2021
Merged

Forgot password and Reset password feature #112

merged 8 commits into from
Dec 17, 2021

Conversation

@iamrahulrnair
Copy link
Contributor

@iamrahulrnair iamrahulrnair commented Dec 16, 2021

The workflow includes:-

  • user clicks on forgot password button
  • will be prompted to enter the email of user
  • if the email is valid, creates a JWT token ,valid for 10 minutes and send to the mail id (this need to be tested since i don't have the nodemailer acc id and password. testing will be simple just uncomment the transporter segment of code and raise a forgot password )
  • user can click on that link and reroutes to front-end reset password page,
  • user types password and confirm password then server validates by checking the jwt expiry and updates the password for user.
  • user cannot raise another request with the same token since that will be security vulnerability.

lemme know if i am missing anything,
thanks :-)

codewithvk
codewithvk suggested changes Dec 16, 2021
View reviewed changes
Copy link
Collaborator

@codewithvk codewithvk left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You are doing great work. Please check the above changes!

@Code-Deeper Code-Deeper deleted a comment from iamrahulrnair Dec 16, 2021
@iamrahulrnair
Update pwd.controllers.js
fbcd943 
updated controller, and removed comments
@iamrahulrnair
Update server.js
cd5bc90 
removed comments
@iamrahulrnair
Update pwd.route.js
e84a0a2 
Added middleware for rate limiting
@iamrahulrnair
Create ratelimiter.middleware.js
eb74a96 
Added a middleware which returns the rate limit function, configuration change can be addressed in a single location
codewithvk
codewithvk approved these changes Dec 17, 2021
View reviewed changes
Copy link
Collaborator

@codewithvk codewithvk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍🏻

@codewithvk codewithvk merged commit ba47389 into Code-Deeper:main Dec 17, 2021
@codewithvk
Copy link
Collaborator

codewithvk commented Dec 17, 2021

@iamrahulrnair Thank you for contributing to our project. Looking forward to work together :)

@akshita-kamani akshita-kamani linked an issue Dec 17, 2021 that may be closed by this pull request
Forgot Password with JWT #96
Closed
2 tasks
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@codewithvk codewithvk codewithvk approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@iamrahulrnair iamrahulrnair

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Forgot Password with JWT

2 participants

@iamrahulrnair @codewithvk