[#94] Backend

https://project.mdnd-it.cc/work_packages/94

SerpentRace_Backend/dist/Application/User/commands/RequestPasswordResetCommandHandler.js

@@ -0,0 +1,57 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RequestPasswordResetCommandHandler = void 0;
+const EmailService_1 = require("../../Services/EmailService");
+const TokenService_1 = require("../../Services/TokenService");
+const Logger_1 = require("../../Services/Logger");
+class RequestPasswordResetCommandHandler {
+    constructor(userRepo) {
+        this.userRepo = userRepo;
+        this.emailService = new EmailService_1.EmailService();
+    }
+    async execute(cmd) {
+        try {
+            if (!cmd.email) {
+                throw new Error('Email is required');
+            }
+            // Find user by email
+            const user = await this.userRepo.findByEmail(cmd.email);
+            if (!user) {
+                // Don't reveal if user exists or not for security reasons
+                // Still return true but don't send email
+                (0, Logger_1.logAuth)(`Password reset requested for non-existent email: ${cmd.email}`);
+                return true;
+            }
+            // Generate password reset token
+            const resetTokenData = TokenService_1.TokenService.generatePasswordResetToken();
+            // Update user with reset token
+            user.token = await TokenService_1.TokenService.hashToken(resetTokenData.token);
+            user.TokenExpires = resetTokenData.expiresAt;
+            await this.userRepo.update(user.id, user);
+            // Send password reset email
+            try {
+                const baseUrl = process.env.APP_BASE_URL || 'http://localhost:3000';
+                const resetUrl = TokenService_1.TokenService.generatePasswordResetUrl(baseUrl, resetTokenData.token);
+                const emailSent = await this.emailService.sendPasswordResetEmail(user.email, `${user.fname} ${user.lname}`, resetTokenData.token, resetUrl);
+                if (!emailSent) {
+                    (0, Logger_1.logWarning)(`Failed to send password reset email to ${user.email}`);
+                    // Don't throw error - request should still succeed even if email fails
+                }
+                else {
+                    (0, Logger_1.logAuth)(`Password reset email sent successfully to ${user.email}`);
+                }
+            }
+            catch (emailError) {
+                (0, Logger_1.logError)('Error sending password reset email', emailError instanceof Error ? emailError : new Error(String(emailError)));
+                // Don't throw error - request should still succeed even if email fails
+            }
+            return true;
+        }
+        catch (error) {
+            (0, Logger_1.logError)('Password reset request error', error instanceof Error ? error : new Error(String(error)));
+            throw error;
+        }
+    }
+}
+exports.RequestPasswordResetCommandHandler = RequestPasswordResetCommandHandler;
+//# sourceMappingURL=RequestPasswordResetCommandHandler.js.map