Merge pull request Organisasjonskollegiet#172 from Organisasjonskolle…

…giet/feat/change_password feat: provide change password links for Auth0
dotkom · Jun 10, 2022 · 16f3060 · 16f3060
2 parents 8c7560f + 379679b
commit 16f3060
Show file tree

Hide file tree

Showing 5 changed files with 31 additions and 1 deletion.
diff --git a/src/__generated__/nexus-typegen.ts b/src/__generated__/nexus-typegen.ts
diff --git a/src/__generated__/schema.graphql b/src/__generated__/schema.graphql
diff --git a/src/lib/permissions/index.ts b/src/lib/permissions/index.ts
@@ -47,6 +47,7 @@ const permissions = shield(
                 and(isParticipantOfVotation, resultIsPublished, votesNotHidden)
             ),
             numberOfUpcomingVotations: and(isParticipantOfMeeting),
+            updateMyPassword: and(isAuthenticated),
         },
         Mutation: {
             addParticipants: and(isAdminOfMeetingId),

diff --git a/src/schema/auth/mutation.ts b/src/schema/auth/mutation.ts
@@ -8,7 +8,7 @@ export const DeleteUserMutation = mutationField('deleteMe', {
     description: 'Delete your own user.',
     args: {},
     resolve: async (_, __, ctx) => {
-        var auth0 = new ManagementClient({
+        const auth0 = new ManagementClient({
             domain: process.env.AUTH0_DOMAIN!,
             clientId: process.env.CLIENT_ID,
             clientSecret: process.env.CLIENT_SECRET,

diff --git a/src/schema/auth/query.ts b/src/schema/auth/query.ts
@@ -1,3 +1,4 @@
+import { ManagementClient } from 'auth0';
 import { queryField } from 'nexus';
 import { GetUserResult } from './typedefs/results';
 import { EXPOSED_USER_FIELDS } from './utils';
@@ -13,3 +14,26 @@ export const UserQuery = queryField('user', {
         return { __typename: 'User', ...user };
     },
 });
+
+export const UpdatePasswordLinkQuery = queryField('updateMyPassword', {
+    type: 'String',
+    description: 'Provides a ticket to change Auth0 password.',
+    args: {},
+    resolve: async (_, __, ctx) => {
+        const auth0 = new ManagementClient({
+            domain: process.env.AUTH0_DOMAIN!,
+            clientId: process.env.CLIENT_ID,
+            clientSecret: process.env.CLIENT_SECRET,
+            // scope: 'delete:users'
+        });
+
+        const res = auth0.createPasswordChangeTicket({
+            user_id: `auth0|${ctx.userId}`,
+            ttl_sec: 1200,
+            includeEmailInRedirect: false,
+            result_url: process.env.AUTH0_CALLBACK_URL,
+        });
+
+        return (await res).ticket;
+    },
+});