n8n 0.167.0 → 0.168.2

package/dist/src/UserManagement/routes/me.js

@@ -0,0 +1,85 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.meNamespace = void 0;
+const bcryptjs_1 = require("bcryptjs");
+const validator_1 = require("validator");
+const n8n_workflow_1 = require("n8n-workflow");
+const __1 = require("../..");
+const jwt_1 = require("../auth/jwt");
+const UserManagementHelper_1 = require("../UserManagementHelper");
+const GenericHelpers_1 = require("../../GenericHelpers");
+const User_1 = require("../../databases/entities/User");
+function meNamespace() {
+    this.app.get(`/${this.restEndpoint}/me`, __1.ResponseHelper.send(async (req) => {
+        return UserManagementHelper_1.sanitizeUser(req.user);
+    }));
+    this.app.patch(`/${this.restEndpoint}/me`, __1.ResponseHelper.send(async (req, res) => {
+        if (!req.body.email) {
+            n8n_workflow_1.LoggerProxy.debug('Request to update user email failed because of missing email in payload', {
+                userId: req.user.id,
+                payload: req.body,
+            });
+            throw new __1.ResponseHelper.ResponseError('Email is mandatory', undefined, 400);
+        }
+        if (!validator_1.default.isEmail(req.body.email)) {
+            n8n_workflow_1.LoggerProxy.debug('Request to update user email failed because of invalid email in payload', {
+                userId: req.user.id,
+                invalidEmail: req.body.email,
+            });
+            throw new __1.ResponseHelper.ResponseError('Invalid email address', undefined, 400);
+        }
+        const newUser = new User_1.User();
+        Object.assign(newUser, req.user, req.body);
+        await GenericHelpers_1.validateEntity(newUser);
+        const user = await __1.Db.collections.User.save(newUser);
+        n8n_workflow_1.LoggerProxy.info('User updated successfully', { userId: user.id });
+        await jwt_1.issueCookie(res, user);
+        const updatedkeys = Object.keys(req.body);
+        void __1.InternalHooksManager.getInstance().onUserUpdate({
+            user_id: req.user.id,
+            fields_changed: updatedkeys,
+        });
+        return UserManagementHelper_1.sanitizeUser(user);
+    }));
+    this.app.patch(`/${this.restEndpoint}/me/password`, __1.ResponseHelper.send(async (req, res) => {
+        const { currentPassword, newPassword } = req.body;
+        if (typeof currentPassword !== 'string' || typeof newPassword !== 'string') {
+            throw new __1.ResponseHelper.ResponseError('Invalid payload.', undefined, 400);
+        }
+        if (!req.user.password) {
+            throw new __1.ResponseHelper.ResponseError('Requesting user not set up.');
+        }
+        const isCurrentPwCorrect = await bcryptjs_1.compare(currentPassword, req.user.password);
+        if (!isCurrentPwCorrect) {
+            throw new __1.ResponseHelper.ResponseError('Provided current password is incorrect.', undefined, 400);
+        }
+        const validPassword = UserManagementHelper_1.validatePassword(newPassword);
+        req.user.password = bcryptjs_1.hashSync(validPassword, bcryptjs_1.genSaltSync(10));
+        const user = await __1.Db.collections.User.save(req.user);
+        n8n_workflow_1.LoggerProxy.info('Password updated successfully', { userId: user.id });
+        await jwt_1.issueCookie(res, user);
+        void __1.InternalHooksManager.getInstance().onUserUpdate({
+            user_id: req.user.id,
+            fields_changed: ['password'],
+        });
+        return { success: true };
+    }));
+    this.app.post(`/${this.restEndpoint}/me/survey`, __1.ResponseHelper.send(async (req) => {
+        const { body: personalizationAnswers } = req;
+        if (!personalizationAnswers) {
+            n8n_workflow_1.LoggerProxy.debug('Request to store user personalization survey failed because of empty payload', {
+                userId: req.user.id,
+            });
+            throw new __1.ResponseHelper.ResponseError('Personalization answers are mandatory', undefined, 400);
+        }
+        await __1.Db.collections.User.save({
+            id: req.user.id,
+            personalizationAnswers,
+        });
+        n8n_workflow_1.LoggerProxy.info('User survey updated successfully', { userId: req.user.id });
+        void __1.InternalHooksManager.getInstance().onPersonalizationSurveySubmitted(req.user.id, personalizationAnswers);
+        return { success: true };
+    }));
+}
+exports.meNamespace = meNamespace;
+//# sourceMappingURL=me.js.map

package/dist/src/UserManagement/routes/me.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"me.js","sourceRoot":"","sources":["../../../../src/UserManagement/routes/me.ts"],"names":[],"mappings":";;;AAGA,uCAA0D;AAE1D,yCAAkC;AAClC,+CAAqD;AAErD,6BAAiE;AACjE,qCAA0C;AAE1C,kEAAyE;AAEzE,yDAAsD;AACtD,wDAAqD;AAErD,SAAgB,WAAW;IAI1B,IAAI,CAAC,GAAG,CAAC,GAAG,CACX,IAAI,IAAI,CAAC,YAAY,KAAK,EAC1B,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAAyB,EAAuB,EAAE;QAC5E,OAAO,mCAAY,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC/B,CAAC,CAAC,CACF,CAAC;IAKF,IAAI,CAAC,GAAG,CAAC,KAAK,CACb,IAAI,IAAI,CAAC,YAAY,KAAK,EAC1B,kBAAc,CAAC,IAAI,CAClB,KAAK,EAAE,GAAuB,EAAE,GAAqB,EAAuB,EAAE;QAC7E,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,EAAE;YACpB,0BAAM,CAAC,KAAK,CAAC,yEAAyE,EAAE;gBACvF,MAAM,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE;gBACnB,OAAO,EAAE,GAAG,CAAC,IAAI;aACjB,CAAC,CAAC;YACH,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,oBAAoB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC7E;QAED,IAAI,CAAC,mBAAS,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE;YACvC,0BAAM,CAAC,KAAK,CAAC,yEAAyE,EAAE;gBACvF,MAAM,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE;gBACnB,YAAY,EAAE,GAAG,CAAC,IAAI,CAAC,KAAK;aAC5B,CAAC,CAAC;YACH,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,uBAAuB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAChF;QAED,MAAM,OAAO,GAAG,IAAI,WAAI,EAAE,CAAC;QAE3B,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,GAAG,CAAC,IAAI,EAAE,GAAG,CAAC,IAAI,CAAC,CAAC;QAE3C,MAAM,+BAAc,CAAC,OAAO,CAAC,CAAC;QAE9B,MAAM,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAEtD,0BAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;QAE9D,MAAM,iBAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAE7B,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC1C,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,YAAY,CAAC;YACpD,OAAO,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE;YACpB,cAAc,EAAE,WAAW;SAC3B,CAAC,CAAC;QAEH,OAAO,mCAAY,CAAC,IAAI,CAAC,CAAC;IAC3B,CAAC,CACD,CACD,CAAC;IAKF,IAAI,CAAC,GAAG,CAAC,KAAK,CACb,IAAI,IAAI,CAAC,YAAY,cAAc,EACnC,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAAuB,EAAE,GAAqB,EAAE,EAAE;QAC5E,MAAM,EAAE,eAAe,EAAE,WAAW,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAElD,IAAI,OAAO,eAAe,KAAK,QAAQ,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE;YAC3E,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,kBAAkB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC3E;QAED,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE;YACvB,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,6BAA6B,CAAC,CAAC;SACtE;QAED,MAAM,kBAAkB,GAAG,MAAM,kBAAO,CAAC,eAAe,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC7E,IAAI,CAAC,kBAAkB,EAAE;YACxB,MAAM,IAAI,kBAAc,CAAC,aAAa,CACrC,yCAAyC,EACzC,SAAS,EACT,GAAG,CACH,CAAC;SACF;QAED,MAAM,aAAa,GAAG,uCAAgB,CAAC,WAAW,CAAC,CAAC;QAEpD,GAAG,CAAC,IAAI,CAAC,QAAQ,GAAG,mBAAQ,CAAC,aAAa,EAAE,sBAAW,CAAC,EAAE,CAAC,CAAC,CAAC;QAE7D,MAAM,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACvD,0BAAM,CAAC,IAAI,CAAC,+BAA+B,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;QAElE,MAAM,iBAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAE7B,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,YAAY,CAAC;YACpD,OAAO,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE;YACpB,cAAc,EAAE,CAAC,UAAU,CAAC;SAC5B,CAAC,CAAC;QAEH,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC,CAAC,CACF,CAAC;IAKF,IAAI,CAAC,GAAG,CAAC,IAAI,CACZ,IAAI,IAAI,CAAC,YAAY,YAAY,EACjC,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAA4B,EAAE,EAAE;QAC1D,MAAM,EAAE,IAAI,EAAE,sBAAsB,EAAE,GAAG,GAAG,CAAC;QAE7C,IAAI,CAAC,sBAAsB,EAAE;YAC5B,0BAAM,CAAC,KAAK,CACX,8EAA8E,EAC9E;gBACC,MAAM,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE;aACnB,CACD,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CACrC,uCAAuC,EACvC,SAAS,EACT,GAAG,CACH,CAAC;SACF;QAED,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,IAAI,CAAC;YAC/B,EAAE,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE;YACf,sBAAsB;SACtB,CAAC,CAAC;QAEH,0BAAM,CAAC,IAAI,CAAC,kCAAkC,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;QAEzE,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,gCAAgC,CACvE,GAAG,CAAC,IAAI,CAAC,EAAE,EACX,sBAAsB,CACtB,CAAC;QAEF,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC,CAAC,CACF,CAAC;AACH,CAAC;AAzID,kCAyIC"}

package/dist/src/UserManagement/routes/owner.d.ts

@@ -0,0 +1,2 @@
+import { N8nApp } from '../Interfaces';
+export declare function ownerNamespace(this: N8nApp): void;

package/dist/src/UserManagement/routes/owner.js

@@ -0,0 +1,68 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ownerNamespace = void 0;
+const bcryptjs_1 = require("bcryptjs");
+const validator_1 = require("validator");
+const n8n_workflow_1 = require("n8n-workflow");
+const __1 = require("../..");
+const config = require("../../../config");
+const GenericHelpers_1 = require("../../GenericHelpers");
+const jwt_1 = require("../auth/jwt");
+const UserManagementHelper_1 = require("../UserManagementHelper");
+function ownerNamespace() {
+    this.app.post(`/${this.restEndpoint}/owner`, __1.ResponseHelper.send(async (req, res) => {
+        const { email, firstName, lastName, password } = req.body;
+        const { id: userId } = req.user;
+        if (config.get('userManagement.isInstanceOwnerSetUp')) {
+            n8n_workflow_1.LoggerProxy.debug('Request to claim instance ownership failed because instance owner already exists', {
+                userId,
+            });
+            throw new __1.ResponseHelper.ResponseError('Invalid request', undefined, 400);
+        }
+        if (!email || !validator_1.default.isEmail(email)) {
+            n8n_workflow_1.LoggerProxy.debug('Request to claim instance ownership failed because of invalid email', {
+                userId,
+                invalidEmail: email,
+            });
+            throw new __1.ResponseHelper.ResponseError('Invalid email address', undefined, 400);
+        }
+        const validPassword = UserManagementHelper_1.validatePassword(password);
+        if (!firstName || !lastName) {
+            n8n_workflow_1.LoggerProxy.debug('Request to claim instance ownership failed because of missing first name or last name in payload', { userId, payload: req.body });
+            throw new __1.ResponseHelper.ResponseError('First and last names are mandatory', undefined, 400);
+        }
+        let owner = await __1.Db.collections.User.findOne(userId, {
+            relations: ['globalRole'],
+        });
+        if (!owner || (owner.globalRole.scope === 'global' && owner.globalRole.name !== 'owner')) {
+            n8n_workflow_1.LoggerProxy.debug('Request to claim instance ownership failed because user shell does not exist or has wrong role!', {
+                userId,
+            });
+            throw new __1.ResponseHelper.ResponseError('Invalid request', undefined, 400);
+        }
+        owner = Object.assign(owner, {
+            email,
+            firstName,
+            lastName,
+            password: bcryptjs_1.hashSync(validPassword, bcryptjs_1.genSaltSync(10)),
+        });
+        await GenericHelpers_1.validateEntity(owner);
+        owner = await __1.Db.collections.User.save(owner);
+        n8n_workflow_1.LoggerProxy.info('Owner was set up successfully', { userId: req.user.id });
+        await __1.Db.collections.Settings.update({ key: 'userManagement.isInstanceOwnerSetUp' }, { value: JSON.stringify(true) });
+        config.set('userManagement.isInstanceOwnerSetUp', true);
+        n8n_workflow_1.LoggerProxy.debug('Setting isInstanceOwnerSetUp updated successfully', { userId: req.user.id });
+        await jwt_1.issueCookie(res, owner);
+        void __1.InternalHooksManager.getInstance().onInstanceOwnerSetup({
+            user_id: userId,
+        });
+        return UserManagementHelper_1.sanitizeUser(owner);
+    }));
+    this.app.post(`/${this.restEndpoint}/owner/skip-setup`, __1.ResponseHelper.send(async (_req, _res) => {
+        await __1.Db.collections.Settings.update({ key: 'userManagement.skipInstanceOwnerSetup' }, { value: JSON.stringify(true) });
+        config.set('userManagement.skipInstanceOwnerSetup', true);
+        return { success: true };
+    }));
+}
+exports.ownerNamespace = ownerNamespace;
+//# sourceMappingURL=owner.js.map

package/dist/src/UserManagement/routes/owner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"owner.js","sourceRoot":"","sources":["../../../../src/UserManagement/routes/owner.ts"],"names":[],"mappings":";;;AAEA,uCAAiD;AAEjD,yCAAkC;AAClC,+CAAqD;AAErD,6BAAiE;AACjE,0CAA2C;AAC3C,yDAAsD;AAEtD,qCAA0C;AAE1C,kEAAyE;AAEzE,SAAgB,cAAc;IAK7B,IAAI,CAAC,GAAG,CAAC,IAAI,CACZ,IAAI,IAAI,CAAC,YAAY,QAAQ,EAC7B,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAAsB,EAAE,GAAqB,EAAE,EAAE;QAC3E,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAC1D,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAEhC,IAAI,MAAM,CAAC,GAAG,CAAC,qCAAqC,CAAC,EAAE;YACtD,0BAAM,CAAC,KAAK,CACX,kFAAkF,EAClF;gBACC,MAAM;aACN,CACD,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,iBAAiB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC1E;QAED,IAAI,CAAC,KAAK,IAAI,CAAC,mBAAS,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE;YACxC,0BAAM,CAAC,KAAK,CAAC,qEAAqE,EAAE;gBACnF,MAAM;gBACN,YAAY,EAAE,KAAK;aACnB,CAAC,CAAC;YACH,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,uBAAuB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAChF;QAED,MAAM,aAAa,GAAG,uCAAgB,CAAC,QAAQ,CAAC,CAAC;QAEjD,IAAI,CAAC,SAAS,IAAI,CAAC,QAAQ,EAAE;YAC5B,0BAAM,CAAC,KAAK,CACX,kGAAkG,EAClG,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,CAAC,IAAI,EAAE,CAC7B,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CACrC,oCAAoC,EACpC,SAAS,EACT,GAAG,CACH,CAAC;SACF;QAED,IAAI,KAAK,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,OAAO,CAAC,MAAM,EAAE;YACtD,SAAS,EAAE,CAAC,YAAY,CAAC;SACzB,CAAC,CAAC;QAEH,IAAI,CAAC,KAAK,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,UAAU,CAAC,IAAI,KAAK,OAAO,CAAC,EAAE;YACzF,0BAAM,CAAC,KAAK,CACX,iGAAiG,EACjG;gBACC,MAAM;aACN,CACD,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,iBAAiB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC1E;QAED,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,EAAE;YAC5B,KAAK;YACL,SAAS;YACT,QAAQ;YACR,QAAQ,EAAE,mBAAQ,CAAC,aAAa,EAAE,sBAAW,CAAC,EAAE,CAAC,CAAC;SAClD,CAAC,CAAC;QAEH,MAAM,+BAAc,CAAC,KAAK,CAAC,CAAC;QAE5B,KAAK,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAE/C,0BAAM,CAAC,IAAI,CAAC,+BAA+B,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;QAEtE,MAAM,MAAE,CAAC,WAAW,CAAC,QAAS,CAAC,MAAM,CACpC,EAAE,GAAG,EAAE,qCAAqC,EAAE,EAC9C,EAAE,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAC/B,CAAC;QAEF,MAAM,CAAC,GAAG,CAAC,qCAAqC,EAAE,IAAI,CAAC,CAAC;QAExD,0BAAM,CAAC,KAAK,CAAC,mDAAmD,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;QAE3F,MAAM,iBAAW,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QAE9B,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,oBAAoB,CAAC;YAC5D,OAAO,EAAE,MAAM;SACf,CAAC,CAAC;QAEH,OAAO,mCAAY,CAAC,KAAK,CAAC,CAAC;IAC5B,CAAC,CAAC,CACF,CAAC;IAKF,IAAI,CAAC,GAAG,CAAC,IAAI,CACZ,IAAI,IAAI,CAAC,YAAY,mBAAmB,EAExC,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,IAA0B,EAAE,IAAsB,EAAE,EAAE;QAChF,MAAM,MAAE,CAAC,WAAW,CAAC,QAAS,CAAC,MAAM,CACpC,EAAE,GAAG,EAAE,uCAAuC,EAAE,EAChD,EAAE,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAC/B,CAAC;QAEF,MAAM,CAAC,GAAG,CAAC,uCAAuC,EAAE,IAAI,CAAC,CAAC;QAE1D,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC,CAAC,CACF,CAAC;AACH,CAAC;AA1GD,wCA0GC"}

package/dist/src/UserManagement/routes/passwordReset.d.ts

@@ -0,0 +1,2 @@
+import { N8nApp } from '../Interfaces';
+export declare function passwordResetNamespace(this: N8nApp): void;

package/dist/src/UserManagement/routes/passwordReset.js

@@ -0,0 +1,129 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.passwordResetNamespace = void 0;
+const uuid_1 = require("uuid");
+const url_1 = require("url");
+const bcryptjs_1 = require("bcryptjs");
+const validator_1 = require("validator");
+const typeorm_1 = require("typeorm");
+const n8n_workflow_1 = require("n8n-workflow");
+const __1 = require("../..");
+const UserManagementHelper_1 = require("../UserManagementHelper");
+const UserManagementMailer = require("../email");
+const jwt_1 = require("../auth/jwt");
+const config = require("../../../config");
+function passwordResetNamespace() {
+    this.app.post(`/${this.restEndpoint}/forgot-password`, __1.ResponseHelper.send(async (req) => {
+        if (config.get('userManagement.emails.mode') === '') {
+            n8n_workflow_1.LoggerProxy.debug('Request to send password reset email failed because emailing was not set up');
+            throw new __1.ResponseHelper.ResponseError('Email sending must be set up in order to request a password reset email', undefined, 500);
+        }
+        const { email } = req.body;
+        if (!email) {
+            n8n_workflow_1.LoggerProxy.debug('Request to send password reset email failed because of missing email in payload', { payload: req.body });
+            throw new __1.ResponseHelper.ResponseError('Email is mandatory', undefined, 400);
+        }
+        if (!validator_1.default.isEmail(email)) {
+            n8n_workflow_1.LoggerProxy.debug('Request to send password reset email failed because of invalid email in payload', { invalidEmail: email });
+            throw new __1.ResponseHelper.ResponseError('Invalid email address', undefined, 400);
+        }
+        const user = await __1.Db.collections.User.findOne({ email, password: typeorm_1.Not(typeorm_1.IsNull()) });
+        if (!user || !user.password) {
+            n8n_workflow_1.LoggerProxy.debug('Request to send password reset email failed because no user was found for the provided email', { invalidEmail: email });
+            return;
+        }
+        user.resetPasswordToken = uuid_1.v4();
+        const { id, firstName, lastName, resetPasswordToken } = user;
+        const resetPasswordTokenExpiration = Math.floor(Date.now() / 1000) + 7200;
+        await __1.Db.collections.User.update(id, { resetPasswordToken, resetPasswordTokenExpiration });
+        const baseUrl = UserManagementHelper_1.getInstanceBaseUrl();
+        const url = new url_1.URL(`${baseUrl}/change-password`);
+        url.searchParams.append('userId', id);
+        url.searchParams.append('token', resetPasswordToken);
+        try {
+            const mailer = await UserManagementMailer.getInstance();
+            await mailer.passwordReset({
+                email,
+                firstName,
+                lastName,
+                passwordResetUrl: url.toString(),
+                domain: baseUrl,
+            });
+        }
+        catch (error) {
+            void __1.InternalHooksManager.getInstance().onEmailFailed({
+                user_id: user.id,
+                message_type: 'Reset password',
+            });
+            if (error instanceof Error) {
+                throw new __1.ResponseHelper.ResponseError(`Please contact your administrator: ${error.message}`, undefined, 500);
+            }
+        }
+        n8n_workflow_1.LoggerProxy.info('Sent password reset email successfully', { userId: user.id, email });
+        void __1.InternalHooksManager.getInstance().onUserTransactionalEmail({
+            user_id: id,
+            message_type: 'Reset password',
+        });
+        void __1.InternalHooksManager.getInstance().onUserPasswordResetRequestClick({
+            user_id: id,
+        });
+    }));
+    this.app.get(`/${this.restEndpoint}/resolve-password-token`, __1.ResponseHelper.send(async (req) => {
+        const { token: resetPasswordToken, userId: id } = req.query;
+        if (!resetPasswordToken || !id) {
+            n8n_workflow_1.LoggerProxy.debug('Request to resolve password token failed because of missing password reset token or user ID in query string', {
+                queryString: req.query,
+            });
+            throw new __1.ResponseHelper.ResponseError('', undefined, 400);
+        }
+        const currentTimestamp = Math.floor(Date.now() / 1000);
+        const user = await __1.Db.collections.User.findOne({
+            id,
+            resetPasswordToken,
+            resetPasswordTokenExpiration: typeorm_1.MoreThanOrEqual(currentTimestamp),
+        });
+        if (!user) {
+            n8n_workflow_1.LoggerProxy.debug('Request to resolve password token failed because no user was found for the provided user ID and reset password token', {
+                userId: id,
+                resetPasswordToken,
+            });
+            throw new __1.ResponseHelper.ResponseError('', undefined, 404);
+        }
+        n8n_workflow_1.LoggerProxy.info('Reset-password token resolved successfully', { userId: id });
+        void __1.InternalHooksManager.getInstance().onUserPasswordResetEmailClick({
+            user_id: id,
+        });
+    }));
+    this.app.post(`/${this.restEndpoint}/change-password`, __1.ResponseHelper.send(async (req, res) => {
+        const { token: resetPasswordToken, userId, password } = req.body;
+        if (!resetPasswordToken || !userId || !password) {
+            n8n_workflow_1.LoggerProxy.debug('Request to change password failed because of missing user ID or password or reset password token in payload', {
+                payload: req.body,
+            });
+            throw new __1.ResponseHelper.ResponseError('Missing user ID or password or reset password token', undefined, 400);
+        }
+        const validPassword = UserManagementHelper_1.validatePassword(password);
+        const currentTimestamp = Math.floor(Date.now() / 1000);
+        const user = await __1.Db.collections.User.findOne({
+            id: userId,
+            resetPasswordToken,
+            resetPasswordTokenExpiration: typeorm_1.MoreThanOrEqual(currentTimestamp),
+        });
+        if (!user) {
+            n8n_workflow_1.LoggerProxy.debug('Request to resolve password token failed because no user was found for the provided user ID and reset password token', {
+                userId,
+                resetPasswordToken,
+            });
+            throw new __1.ResponseHelper.ResponseError('', undefined, 404);
+        }
+        await __1.Db.collections.User.update(userId, {
+            password: bcryptjs_1.hashSync(validPassword, bcryptjs_1.genSaltSync(10)),
+            resetPasswordToken: null,
+            resetPasswordTokenExpiration: null,
+        });
+        n8n_workflow_1.LoggerProxy.info('User password updated successfully', { userId });
+        await jwt_1.issueCookie(res, user);
+    }));
+}
+exports.passwordResetNamespace = passwordResetNamespace;
+//# sourceMappingURL=passwordReset.js.map

package/dist/src/UserManagement/routes/passwordReset.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"passwordReset.js","sourceRoot":"","sources":["../../../../src/UserManagement/routes/passwordReset.ts"],"names":[],"mappings":";;;AAIA,+BAAkC;AAClC,6BAA0B;AAC1B,uCAAiD;AACjD,yCAAkC;AAClC,qCAAuD;AACvD,+CAAqD;AAErD,6BAAiE;AAEjE,kEAA+E;AAC/E,iDAAiD;AAEjD,qCAA0C;AAC1C,0CAA2C;AAE3C,SAAgB,sBAAsB;IAMrC,IAAI,CAAC,GAAG,CAAC,IAAI,CACZ,IAAI,IAAI,CAAC,YAAY,kBAAkB,EACvC,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAA+B,EAAE,EAAE;QAC7D,IAAI,MAAM,CAAC,GAAG,CAAC,4BAA4B,CAAC,KAAK,EAAE,EAAE;YACpD,0BAAM,CAAC,KAAK,CAAC,6EAA6E,CAAC,CAAC;YAC5F,MAAM,IAAI,kBAAc,CAAC,aAAa,CACrC,yEAAyE,EACzE,SAAS,EACT,GAAG,CACH,CAAC;SACF;QAED,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAE3B,IAAI,CAAC,KAAK,EAAE;YACX,0BAAM,CAAC,KAAK,CACX,iFAAiF,EACjF,EAAE,OAAO,EAAE,GAAG,CAAC,IAAI,EAAE,CACrB,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,oBAAoB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC7E;QAED,IAAI,CAAC,mBAAS,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE;YAC9B,0BAAM,CAAC,KAAK,CACX,iFAAiF,EACjF,EAAE,YAAY,EAAE,KAAK,EAAE,CACvB,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,uBAAuB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAChF;QAGD,MAAM,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,aAAG,CAAC,gBAAM,EAAE,CAAC,EAAE,CAAC,CAAC;QAEpF,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE;YAC5B,0BAAM,CAAC,KAAK,CACX,8FAA8F,EAC9F,EAAE,YAAY,EAAE,KAAK,EAAE,CACvB,CAAC;YACF,OAAO;SACP;QAED,IAAI,CAAC,kBAAkB,GAAG,SAAI,EAAE,CAAC;QAEjC,MAAM,EAAE,EAAE,EAAE,SAAS,EAAE,QAAQ,EAAE,kBAAkB,EAAE,GAAG,IAAI,CAAC;QAE7D,MAAM,4BAA4B,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC;QAE1E,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,kBAAkB,EAAE,4BAA4B,EAAE,CAAC,CAAC;QAE5F,MAAM,OAAO,GAAG,yCAAkB,EAAE,CAAC;QACrC,MAAM,GAAG,GAAG,IAAI,SAAG,CAAC,GAAG,OAAO,kBAAkB,CAAC,CAAC;QAClD,GAAG,CAAC,YAAY,CAAC,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QACtC,GAAG,CAAC,YAAY,CAAC,MAAM,CAAC,OAAO,EAAE,kBAAkB,CAAC,CAAC;QAErD,IAAI;YACH,MAAM,MAAM,GAAG,MAAM,oBAAoB,CAAC,WAAW,EAAE,CAAC;YACxD,MAAM,MAAM,CAAC,aAAa,CAAC;gBAC1B,KAAK;gBACL,SAAS;gBACT,QAAQ;gBACR,gBAAgB,EAAE,GAAG,CAAC,QAAQ,EAAE;gBAChC,MAAM,EAAE,OAAO;aACf,CAAC,CAAC;SACH;QAAC,OAAO,KAAK,EAAE;YACf,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,aAAa,CAAC;gBACrD,OAAO,EAAE,IAAI,CAAC,EAAE;gBAChB,YAAY,EAAE,gBAAgB;aAC9B,CAAC,CAAC;YACH,IAAI,KAAK,YAAY,KAAK,EAAE;gBAC3B,MAAM,IAAI,kBAAc,CAAC,aAAa,CACrC,sCAAsC,KAAK,CAAC,OAAO,EAAE,EACrD,SAAS,EACT,GAAG,CACH,CAAC;aACF;SACD;QAED,0BAAM,CAAC,IAAI,CAAC,wCAAwC,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAClF,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,wBAAwB,CAAC;YAChE,OAAO,EAAE,EAAE;YACX,YAAY,EAAE,gBAAgB;SAC9B,CAAC,CAAC;QAEH,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,+BAA+B,CAAC;YACvE,OAAO,EAAE,EAAE;SACX,CAAC,CAAC;IACJ,CAAC,CAAC,CACF,CAAC;IAOF,IAAI,CAAC,GAAG,CAAC,GAAG,CACX,IAAI,IAAI,CAAC,YAAY,yBAAyB,EAC9C,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAAqC,EAAE,EAAE;QACnE,MAAM,EAAE,KAAK,EAAE,kBAAkB,EAAE,MAAM,EAAE,EAAE,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAE5D,IAAI,CAAC,kBAAkB,IAAI,CAAC,EAAE,EAAE;YAC/B,0BAAM,CAAC,KAAK,CACX,6GAA6G,EAC7G;gBACC,WAAW,EAAE,GAAG,CAAC,KAAK;aACtB,CACD,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,EAAE,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC3D;QAGD,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAEvD,MAAM,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,OAAO,CAAC;YAC/C,EAAE;YACF,kBAAkB;YAClB,4BAA4B,EAAE,yBAAe,CAAC,gBAAgB,CAAC;SAC/D,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,EAAE;YACV,0BAAM,CAAC,KAAK,CACX,sHAAsH,EACtH;gBACC,MAAM,EAAE,EAAE;gBACV,kBAAkB;aAClB,CACD,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,EAAE,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC3D;QAED,0BAAM,CAAC,IAAI,CAAC,4CAA4C,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;QAC1E,KAAK,wBAAoB,CAAC,WAAW,EAAE,CAAC,6BAA6B,CAAC;YACrE,OAAO,EAAE,EAAE;SACX,CAAC,CAAC;IACJ,CAAC,CAAC,CACF,CAAC;IAOF,IAAI,CAAC,GAAG,CAAC,IAAI,CACZ,IAAI,IAAI,CAAC,YAAY,kBAAkB,EACvC,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAAqC,EAAE,GAAqB,EAAE,EAAE;QAC1F,MAAM,EAAE,KAAK,EAAE,kBAAkB,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAEjE,IAAI,CAAC,kBAAkB,IAAI,CAAC,MAAM,IAAI,CAAC,QAAQ,EAAE;YAChD,0BAAM,CAAC,KAAK,CACX,6GAA6G,EAC7G;gBACC,OAAO,EAAE,GAAG,CAAC,IAAI;aACjB,CACD,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CACrC,qDAAqD,EACrD,SAAS,EACT,GAAG,CACH,CAAC;SACF;QAED,MAAM,aAAa,GAAG,uCAAgB,CAAC,QAAQ,CAAC,CAAC;QAGjD,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAEvD,MAAM,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,OAAO,CAAC;YAC/C,EAAE,EAAE,MAAM;YACV,kBAAkB;YAClB,4BAA4B,EAAE,yBAAe,CAAC,gBAAgB,CAAC;SAC/D,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,EAAE;YACV,0BAAM,CAAC,KAAK,CACX,sHAAsH,EACtH;gBACC,MAAM;gBACN,kBAAkB;aAClB,CACD,CAAC;YACF,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,EAAE,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAC3D;QAED,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,MAAM,CAAC,MAAM,EAAE;YACzC,QAAQ,EAAE,mBAAQ,CAAC,aAAa,EAAE,sBAAW,CAAC,EAAE,CAAC,CAAC;YAClD,kBAAkB,EAAE,IAAI;YACxB,4BAA4B,EAAE,IAAI;SAClC,CAAC,CAAC;QAEH,0BAAM,CAAC,IAAI,CAAC,oCAAoC,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;QAE9D,MAAM,iBAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IAC9B,CAAC,CAAC,CACF,CAAC;AACH,CAAC;AAvMD,wDAuMC"}

package/dist/src/UserManagement/routes/users.d.ts

@@ -0,0 +1,2 @@
+import { N8nApp } from '../Interfaces';
+export declare function usersNamespace(this: N8nApp): void;