npm - sumba - Versions diffs - 1.0.20 → 1.0.21 - Mend

sumba 1.0.20 → 1.0.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (39) hide show

package/bajo/config.json CHANGED Viewed

@@ -58,12 +58,15 @@
     "signout": "sumba:/signout",
     "afterSignout": "/"
   },
-  "userPassword": {
-    "minUppercase": 1,
-    "minLowercase": 1,
-    "minSpecialChar": 1,
-    "minNumeric": 1,
-    "noWhitespace": false,
-    "latinOnlyChars": false
+  "siteSetting": {
+    "forgotPasswordExpDur": "5m",
+    "userPassword": {
+      "minUppercase": 1,
+      "minLowercase": 1,
+      "minSpecialChar": 1,
+      "minNumeric": 1,
+      "noWhitespace": false,
+      "latinOnlyChars": false
+    }
   }
 }

package/bajo/hook/dobo.sumba-user@after-record-create.js ADDED Viewed

@@ -0,0 +1,12 @@
+async function afterRecordCreate (body, options = {}, rec) {
+  if (!(this.app.masohi && this.app.masohiMail)) return
+  options.tpl = 'sumba.template:/_mail/user-signup-success.html'
+  const { data } = rec
+  const to = `${data.firstName} ${data.lastName} <${data.email}>`
+  const subject = options.req.t('newUserSignup')
+  try {
+    await this.app.masohi.send({ to, subject, message: data, options })
+  } catch (err) {}
+}
+export default afterRecordCreate

package/bajo/hook/dobo.sumba-user@after-record-update.js ADDED Viewed

@@ -0,0 +1,13 @@
+async function afterRecordUpdate (id, body, options = {}, rec) {
+  if (!(this.app.masohi && this.app.masohiMail)) return
+  const { data, oldData } = rec
+  if (!(oldData.status === 'UNVERIFIED' && data.status === 'ACTIVE')) return
+  options.tpl = 'sumba.template:/_mail/user-activation-success.html'
+  const to = `${data.firstName} ${data.lastName} <${data.email}>`
+  const subject = options.req.t('userActivation')
+  try {
+    await this.app.masohi.send({ to, subject, message: data, options })
+  } catch (err) {}
+}
+export default afterRecordUpdate

package/bajo/hook/dobo.sumba-user@before-record-validation.js CHANGED Viewed

@@ -2,7 +2,7 @@ import passwordRule from '../../lib/password-rule.js'
 async function doboSumbaUserBeforeRecordValidation (body, options = {}) {
   const { set } = this.app.bajo.lib._
-  const password = await passwordRule.call(this)
+  const password = await passwordRule.call(this, options.req)
   const rule = { password }
   set(options, 'validation.params.rule', rule)
 }

package/bajo/intl/en-US.json CHANGED Viewed

@@ -24,7 +24,7 @@
   "signin": "Signin",
   "yourStuff": "Your Stuff",
   "forgotPassword": "Forgot Password",
-  "userActivation": "User Activation",
+  "userActivation": "Account Activation",
   "signup": "Signup",
   "newUserSignup": "New User Signup",
   "updateProfile": "Update Profile",
@@ -58,9 +58,6 @@
   "help": "Help",
   "troubleTickets": "Trouble Tickets",
   "guest": "Guest",
-  "formSubmitted": "Form submitted successfully",
-  "formSubmittedInfo": "Please allow us to read your submission thoroughly and we'll get back to you rightaway",
-  "thankYou": "Thank you!",
   "warningMemberOnly%s": "Please authenticate yourself first, because the <a href=\"%s\">page<a> your're trying to access is a member only page",
   "collectingRouteGuards": "Collecting route guards:",
   "secureRoutes%d": "- Secure routes: %d",
@@ -72,6 +69,11 @@
   "yourReply": "Your Reply",
   "you": "You",
   "us": "Us",
+  "support": "Support",
+  "unknownUsernameEmailOrInactive": "Unknown username/email or account is inactive",
+  "emailSent": "An email has been sent to your address",
+  "forgotPasswordLink": "Forgot Password Link",
+  "forgotPasswordChanged": "Password Successfully Changed",
   "field": {
     "currentPassword": "Current Password",
     "newPassword": "New Password",

package/bajo/intl/id.json CHANGED Viewed

@@ -24,7 +24,7 @@
   "signin": "Masuk",
   "yourStuff": "Perkakas Anda",
   "forgotPassword": "Lupa Kata Sandi",
-  "userActivation": "Aktivasi Pengguna",
+  "userActivation": "Aktivasi Akun",
   "signup": "Pendaftaran",
   "newUserSignup": "Pendaftaran Pengguna Baru",
   "updateProfile": "Perbarui Profil",
@@ -52,15 +52,12 @@
   "cookiePolicy": "Kebijakan Cookie",
   "privacy": "Privasi",
   "privacyStatement": "Pernyataan Privasi",
-  "terms": "Terms",
+  "terms": "Ketentuan",
   "termsConditions": "Term dan Kondisi",
   "legalInfo": "Info Legal",
   "help": "Bantuan",
   "troubleTickets": "Tiket Masalah",
   "guest": "Tamu",
-  "formSubmitted": "Formulir sukses dikirim",
-  "formSubmittedInfo": "Kami akan mereview sebentar kiriman Anda dan akan menghubungi Anda kembali secepatnya",
-  "thankYou": "Thank you!",
   "warningMemberOnly%s": "Silahkan melalukan otentikasi terlebih dahulu karena <a href=\"%s\">halaman<a> yang akan Anda akses adalah salah satu halaman khusus anggota saja",
   "collectingRouteGuards": "Mengoleksi pertahanan jalur:",
   "secureRoutes%d": "- Jalur aman: %d",
@@ -73,6 +70,11 @@
   "yourReply": "Balasan Anda",
   "you": "Anda",
   "us": "Kami",
+  "support": "Bantuan",
+  "unknownUsernameEmailOrInactive": "Nama pengguna/surel tidak dikenal atau akun belum aktif",
+  "emailSent": "Sebuah surel telah dikirim ke alamat Anda",
+  "forgotPasswordLink": "Tautan Lupa Kata Sandi",
+  "forgotPasswordChanged": "Kata Sandi Sukses Diubah",
   "field": {
     "currentPassword": "Kata Sandi Saat Ini",
     "newPassword": "Kata Sandi Baru",

package/lib/check-site-id.js CHANGED Viewed

@@ -1,5 +1,5 @@
 async function mergeSetting (req) {
-  const { defaultsDeep } = this.app.bajo
+  const { defaultsDeep, parseObject } = this.app.bajo
   const { trim, get, filter } = this.app.bajo.lib._
   const { recordFind } = this.app.dobo
   const defSetting = {}
@@ -21,7 +21,7 @@ async function mergeSetting (req) {
       nsSetting[ns][item.key] = value
     }
   }
-  req.site.setting = defaultsDeep({}, nsSetting, defSetting)
+  req.site.setting = parseObject(defaultsDeep({}, nsSetting, defSetting))
 }
 const omitted = ['status']

package/lib/password-rule.js CHANGED Viewed

@@ -1,6 +1,6 @@
 import { joiPasswordExtendCore } from 'joi-password'
-async function passwordRule () {
+async function passwordRule (req) {
   const { importPkg } = this.app.bajo
   const joi = await importPkg('dobo:joi')
   const joiPassword = joi.extend(joiPasswordExtendCore)
@@ -9,12 +9,13 @@ async function passwordRule () {
     .min(8)
     .max(100)
     .required()
-  if (this.config.userPassword.minUppercase) password = password.minOfUppercase(this.config.userPassword.minUppercase)
-  if (this.config.userPassword.minLowercase) password = password.minOfLowercase(this.config.userPassword.minLowercase)
-  if (this.config.userPassword.minSpecialChar) password = password.minOfSpecialCharacters(this.config.userPassword.minSpecialChar)
-  if (this.config.userPassword.minNumeric) password = password.minOfNumeric(this.config.userPassword.minNumeric)
-  if (this.config.userPassword.noWhitespace) password = password.noWhiteSpaces()
-  if (this.config.userPassword.latinOnlyChars) password = password.onlyLatinCharacters()
+  const cfg = req.site.setting.sumba.userPassword
+  if (cfg.minUppercase) password = password.minOfUppercase(cfg.minUppercase)
+  if (cfg.minLowercase) password = password.minOfLowercase(cfg.minLowercase)
+  if (cfg.minSpecialChar) password = password.minOfSpecialCharacters(cfg.minSpecialChar)
+  if (cfg.minNumeric) password = password.minOfNumeric(cfg.minNumeric)
+  if (cfg.noWhitespace) password = password.noWhiteSpaces()
+  if (cfg.latinOnlyChars) password = password.onlyLatinCharacters()
   return password
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "sumba",
-  "version": "1.0.20",
+  "version": "1.0.21",
   "description": "Bajo Framework's Biz Suite",
   "main": "index.js",
   "scripts": {

package/waibuMpa/partial/_mail/user-activation-success.html ADDED Viewed

@@ -0,0 +1,9 @@
+<p>Congratulations, your account with username <strong><%= username %></strong>
+has been successfully activated. Thus you can now access the Members-only pages
+according to the permissions set by your Admin.</p>
+<p>If you still have questions, please don't hesitate to
+fill out the form on the <strong>Help</strong> page.
+We will be happy to answer all your questions.</p>
+<p>Thank you!</p>

package/waibuMpa/partial/_mail/user-activation-success.id.html ADDED Viewed

@@ -0,0 +1,10 @@
+<p>Selamat, akun Anda dengan nama pengguna <strong><%= username %></strong>
+telah berhasil diaktivkan. Dengan demikian Anda telah bisa mengakses
+halaman-halaman khusus Anggota sesuai dengan permisi yang ditetapkan oleh
+Admin Anda.</p>
+<p>Jika Anda masih memiliki pertanyaan-pertanyaan, silahkan untuk tidak segan
+mengisi formulir di halaman <strong>Bantuan</strong>. Dengan senang hati
+kami akan menjawab semua pertanyaan Anda.</p>
+<p>Terima kasih!</p>

package/waibuMpa/partial/_mail/user-forgot-password-changed.html ADDED Viewed

@@ -0,0 +1,4 @@
+<p>Your password has been successfully changed via the <b>Forgot Password</b> page.
+Therefore, please use a new password because the old one is no longer valid.</p>
+<p>Please contact us if you are still having trouble, thank you!</p>

package/waibuMpa/partial/_mail/user-forgot-password-changed.id.html ADDED Viewed

@@ -0,0 +1,4 @@
+<p>Kata sandi Anda telah sukses diganti via fasilitas <b>Lupa Kata Sandi</b>. Untuk itu
+silahkan menggunakan kata sandi yang baru karena yang lama sudah tidak berlaku lagi.</p>
+<p>Silahkan hubungi kami jika Anda masih mengalami kendala, terima kasih!</p>

package/waibuMpa/partial/_mail/user-forgot-password-link.html ADDED Viewed

@@ -0,0 +1,9 @@
+<p>Here is a special password change link for you:</p>
+<% const url = 'http://' + _meta.hostHeader + _routePath('sumba:/user/forgot-password') + '/' + fpToken %>
+<p><a href="<%= url %>"><%= url %></a></p>
+<p>Please make the change immediately because after <strong>5 minutes</strong> the link above
+is no longer valid.</p>
+<p>Please contact us if you still have questions, thank you!</p>

package/waibuMpa/partial/_mail/user-forgot-password-link.id.html ADDED Viewed

@@ -0,0 +1,9 @@
+<p>Berikut adalah tautan khusus pergantian password untuk Anda:</p>
+<% const url = 'http://' + _meta.hostHeader + _routePath('sumba:/user/forgot-password') + '/' + fpToken %>
+<p><a href="<%= url %>"><%= url %></a></p>
+<p>Silahkan melakukan pergantian segera karena setelah <strong>5 menit</strong> tautan diatas
+tidak berlaku kembali.</p>
+<p>Silahkan hubungi kami jika Anda masih memiliki pertanyaan, terima kasih!</p>

package/waibuMpa/partial/_mail/user-signup-success.html ADDED Viewed

@@ -0,0 +1,16 @@
+<p>Welcome and thank your for joining us in <%= _meta.site.title %>.
+Please click the following link to activate your account:</p>
+<p><% const url = _meta.hostHeader + _routePath("sumba:/user/activation") + "?key=" + token %>
+<a href="http://<%= url %>">http://<%= url %></a></p>
+<p>If you are unable to click the link above, please visit our website
+at http://<%= _meta.hostHeader %>, then visit the <strong>Account Activation</strong> from
+the link available in the footer.</p>
+<p>Please copy the key below, then enter it in the input box on the page and press
+the <strong>Submit</strong> button:</p>
+<strong><%= token %></strong>
+<p>Once again, thank you for joining us. We hope our services will benefit you.<p>

package/waibuMpa/partial/_mail/user-signup-success.id.html ADDED Viewed

@@ -0,0 +1,17 @@
+<p>Selamat datang dan telah bergabung di <%= _meta.site.title %>. Selanjutnya,
+silahkan mengklik link dibawah ini untuk melakukan aktivasi akun anda:</p>
+<p><% const url = _meta.hostHeader + _routePath("sumba:/user/activation") + "?key=" + token %>
+<a href="http://<%= url %>">http://<%= url %></a></p>
+<p>Jika Ada tidak bisa mengklik link diatas, silahkan kunjungi situs kami
+di http://<%= _meta.hostHeader %>, kemudian kunjungi di halaman <strong>Aktivasi
+Akun</strong> dari link yang tersedia di catatan kaki.</p>
+<p>Silahkan kopi kunci dibawah ini, kemudian masukkan di kotak masukan yang
+ada di halaman tersebut dan tekan tombol <strong>Kirim</strong>:</p>
+<strong><%= token %></strong>
+<p>Sekali lagi terimakasih telah bergabung bersama kami, semoga layanan kami
+membawa manfaat untuk Anda.<p>

package/waibuMpa/partial/list-item/member-links.html CHANGED Viewed

@@ -8,4 +8,7 @@
 <c:list-item href="sumba:/signin" t:content="signin" />
 <c:list-item href="sumba:/user/signup" t:content="signup" />
 <c:list-item href="sumba:/user/forgot-password" t:content="forgotPassword" />
+  <% if (_hasPlugin('masohi') && _hasPlugin('masohiMail')) { %>
+  <c:list-item href="sumba:/user/activation" t:content="userActivation" />
+  <% } %>
 <% } %>

package/waibuMpa/partial/user/forgot-password-nomail.id.md ADDED Viewed

@@ -0,0 +1,4 @@
+Anda lupa dengan kata sandi Anda? Tidak masalah, silahkan hubungi kami
+segera!
+Dengan senang hati kami akan membantu Anda!

package/waibuMpa/partial/user/forgot-password.html CHANGED Viewed

@@ -1,6 +1,10 @@
+<% if (_hasPlugin('masohiMail')) { %>
 <c:form button reset-validation>
   <c:form-input name="usernameEmail" label-floating wrapper-margin="bottom-2" t:hint="linkPasswordWillbeSent"/>
 </c:form>
+<% } else { %>
+<c:include resource="sumba.partial:/user/forgot-password-nomail.md" />
+<% } %>
 <% if (!page.noLinks) { %>
 <c:list type="unstyled" margin="start-3">
   <c:include resource="sumba.partial:/list-item/signin.html" />

package/waibuMpa/partial/user/fpl-invalid.html ADDED Viewed

	@@ -0,0 +1 @@
1	+ <c:include resource="sumba.partial:/user/fpl-invalid.md" />

package/waibuMpa/partial/user/fpl-invalid.id.md ADDED Viewed

@@ -0,0 +1,3 @@
+Link lupa kata sandi yang Anda masukkan salah atau sudah kadaluarsa dan tidak berlaku lagi. Silahkan membuatnya sekali lagi jika Anda masih menginginkannya.
+Untuk itu selalu pastikan bahwa Anda mengkliknya dari link yang dikirim melalui email, terima kasih!

package/waibuMpa/partial/user/fpl-invalid.md ADDED Viewed

@@ -0,0 +1,3 @@
+The forgot password link that you entered is incorrect or has expired and is no longer valid. Please make it again if you still want it.
+Therefore always make sure that you click on it from the link sent via email, thank you!

package/waibuMpa/partial/user/fpl.html ADDED Viewed

@@ -0,0 +1,5 @@
+<c:form button reset-validation referer>
+  <c:form-plaintext name="username" label-floating wrapper-margin="bottom-2" />
+  <c:form-password name="newPassword" label-floating wrapper-margin="bottom-2" />
+  <c:form-password name="verifyNewPassword" label-floating wrapper-margin="bottom-3" />
+</c:form>

package/waibuMpa/partial/user/signup/success-mail.id.md ADDED Viewed

@@ -0,0 +1,5 @@
+Formulir sukses dikirim.
+Sebuah email telah dikirimkan ke alamat email Anda berisikan link aktivasi akun Anda. Mohon untuk dicek dan melakukan aktivasi secepatnya.
+Terima kasih!

package/waibuMpa/partial/user/signup/success-mail.md ADDED Viewed

@@ -0,0 +1,5 @@
+Form submitted successfully.
+An email has been sent to your email address containing your account activation link. Please check and activate as soon as possible.
+Thank You!

package/waibuMpa/partial/user/signup/success-nomail.id.md ADDED Viewed

@@ -0,0 +1,5 @@
+Formulir sukses dikirim.
+Kami akan segera melakukan review kiriman Anda dan akan menghubungi Anda kembali secepatnya.
+Thank you!

package/waibuMpa/partial/user/signup/success-nomail.md ADDED Viewed

@@ -0,0 +1,5 @@
+Form submitted successfully.
+Please allow us to read your submission thoroughly and we'll get back to you as soon as possible.
+Thank you!

package/waibuMpa/partial/user/signup/success.html CHANGED Viewed

@@ -1,6 +1,8 @@
-<c:p t:content="formSubmitted" />
-<c:p t:content="formSubmittedInfo" />
-<c:p t:content="thankYou" />
+<% if (_hasPlugin('masohiMail')) { %>
+<c:include resource="sumba.partial:/user/signup/success-mail.md" />
+<% } else { %>
+<c:include resource="sumba.partial:/user/signup/success-nomail.md" />
+<% } %>
 <% if (!page.noLinks) { %>
 <c:list type="unstyled" margin="start-3">
   <c:list-item t:content="gotoHome" href="/" icon="house"/>

package/waibuMpa/route/my-stuff/change-password.js CHANGED Viewed

@@ -12,7 +12,7 @@ const profile = {
     let error
     if (req.method === 'POST') {
       try {
-        const newPassword = await passwordRule.call(this)
+        const newPassword = await passwordRule.call(this, req)
         const schema = Joi.object({
           currentPassword: Joi.string().min(8).max(50).required(),
           newPassword,
@@ -26,11 +26,11 @@ const profile = {
         const rec = await recordGet(model, req.user.id)
         const verified = await bcrypt.compare(req.body.currentPassword, rec.password)
         if (!verified) throw this.error('invalidCurrentPassword', { details: [{ field: 'currentPassword', error: 'invalidPassword' }], statusCode: 400 })
-        await recordUpdate(model, req.user.id, { password: req.body.newPassword })
+        await recordUpdate(model, req.user.id, { password: req.body.newPassword }, { req, noFlash: true })
         // signout and redirect to signin
         req.session.user = null
         req.flash('notify', req.t('passwordChangedReSignin'))
-        return reply.redirectTo('sumba:/signin')
+        return reply.redirectTo(this.config.redirect.signin)
       } catch (err) {
         error = err
       }

package/waibuMpa/route/user/activation.js CHANGED Viewed

@@ -1,16 +1,18 @@
+const model = 'SumbaUser'
 const userActivation = {
   method: ['GET', 'POST'],
   handler: async function (req, reply) {
     const { defaultsDeep } = this.app.bajo
-    const { recordFind, recordUpdate } = this.app.dobo
+    const { recordFind, recordUpdate } = this.app.waibuDb
     const form = defaultsDeep(req.body, { key: req.query.key })
     let error
     if (req.method === 'POST') {
       try {
         const query = { status: 'UNVERIFIED', token: req.body.key }
-        const result = await recordFind('SumbaUser', { query }, { noHook: true })
+        const result = await recordFind({ model, req, reply, options: { dataOnly: true, query, limit: 1, noHook: true } })
         if (result.length === 0) throw this.error('validationError', { details: [{ field: 'key', error: 'invalidActivationKey' }] })
-        await recordUpdate('SumbaUser', result[0].id, { status: 'ACTIVE' }, { noHook: true, noValidation: true, noFlash: true })
+        await recordUpdate({ model, req, reply, id: result[0].id, body: { status: 'ACTIVE' }, options: { noValidation: true, noFlash: true } })
         req.flash('notify', req.t('userActivated'))
         return reply.redirectTo(this.config.redirect.signin, req)
       } catch (err) {

package/waibuMpa/route/user/forgot-password/@fpl.js ADDED Viewed

@@ -0,0 +1,59 @@
+import passwordRule from '../../../../lib/password-rule.js'
+const model = 'SumbaUser'
+async function getUser (req, reply) {
+  const { dayjs } = this.app.bajo.lib
+  const { recordFind } = this.app.waibuDb
+  const invalidFpl = 'sumba.template:/user/fpl-invalid.html'
+  if (Buffer.from(req.params.fpl, 'base64').toString('base64') !== req.params.fpl) return invalidFpl
+  const fpToken = Buffer.from(req.params.fpl, 'base64').toString()
+  const [token, sec] = fpToken.split(':')
+  if (dayjs().unix() > Number(sec)) return invalidFpl
+  const query = { token, status: 'ACTIVE' }
+  const users = await recordFind({ model, req, reply, options: { query, limit: 1, dataOnly: true, noHook: true } })
+  if (users.length === 0) return invalidFpl
+  return users[0]
+}
+const forgotPasswordLink = {
+  method: ['GET', 'POST'],
+  handler: async function (req, reply) {
+    const { defaultsDeep, importPkg } = this.app.bajo
+    const { isString } = this.app.bajo.lib._
+    const { recordUpdate } = this.app.dobo
+    const Joi = await importPkg('dobo:joi')
+    const form = defaultsDeep(req.body, {})
+    const user = await getUser.call(this, req, reply)
+    if (isString(user)) return reply.view(user)
+    form.username = user.username
+    let error
+    if (req.method === 'POST') {
+      try {
+        const newPassword = await passwordRule.call(this, req)
+        const schema = Joi.object({
+          newPassword,
+          verifyNewPassword: Joi.ref('newPassword')
+        })
+        try {
+          await schema.validateAsync(req.body, this.app.dobo.config.validationParams)
+        } catch (err) {
+          throw this.error('validationError', { details: err.details, values: err.values, ns: this.name, statusCode: 422, code: 'DB_VALIDATION' })
+        }
+        await recordUpdate(model, user.id, { password: req.body.newPassword }, { req, noFlash: true })
+        const to = `${user.firstName} ${user.lastName} <${user.email}>`
+        const subject = req.t('forgotPasswordChanged')
+        const options = { req, reply, tpl: 'sumba.template:/_mail/user-forgot-password-changed.html' }
+        await this.app.masohi.send({ to, subject, message: user, options })
+        req.flash('notify', req.t('passwordChangedReSignin'))
+        return reply.redirectTo(this.config.redirect.signin)
+      } catch (err) {
+        console.log(err)
+        error = err
+      }
+    }
+    return reply.view('sumba.template:/user/fpl.html', { form, error })
+  }
+}
+export default forgotPasswordLink

package/waibuMpa/route/user/forgot-password.js CHANGED Viewed

@@ -1,7 +1,33 @@
+const model = 'SumbaUser'
 const profile = {
   method: ['GET', 'POST'],
   handler: async function (req, reply) {
-    return reply.view('sumba.template:/user/forgot-password.html')
+    if (!this.app.masohiMail) return reply.view('sumba.template:/user/forgot-password.html')
+    const { defaultsDeep } = this.app.bajo
+    const { dayjs } = this.app.bajo.lib
+    const { recordFind } = this.app.dobo
+    const form = defaultsDeep(req.body, {})
+    let error
+    if (req.method === 'POST') {
+      try {
+        const query = { status: 'ACTIVE', $or: [{ username: req.body.usernameEmail }, { email: req.body.usernameEmail }] }
+        const result = await recordFind(model, { query, limit: 1 }, { dataOnly: true, noHook: true, forceNoHidden: true })
+        if (result.length === 0) throw this.error('validationError', { details: [{ field: 'usernameEmail', error: 'unknownUsernameEmailOrInactive' }] })
+        const data = result[0]
+        const to = `${data.firstName} ${data.lastName} <${data.email}>`
+        const subject = req.t('forgotPasswordLink')
+        const options = { req, reply, tpl: 'sumba.template:/_mail/user-forgot-password-link.html' }
+        const exp = req.site.setting.sumba.forgotPasswordExpDur
+        data.fpToken = Buffer.from(`${data.token}:${dayjs().add(exp, 'ms').unix()}`).toString('base64')
+        await this.app.masohi.send({ to, subject, message: data, options })
+        req.flash('notify', req.t('emailSent'))
+        return reply.redirectTo(this.config.redirect.signin)
+      } catch (err) {
+        error = err
+      }
+    }
+    return reply.view('sumba.template:/user/forgot-password.html', { form, error })
   }
 }

package/waibuMpa/template/_mail/user-activation-success.html ADDED Viewed

@@ -0,0 +1,3 @@
+---
+layout: waibuMpa.layout:/email.html
+---

package/waibuMpa/template/_mail/user-forgot-password-changed.html ADDED Viewed

@@ -0,0 +1,3 @@
+---
+layout: waibuMpa.layout:/email.html
+---

package/waibuMpa/template/_mail/user-forgot-password-link.html ADDED Viewed

@@ -0,0 +1,3 @@
+---
+layout: waibuMpa.layout:/email.html
+---

package/waibuMpa/template/_mail/user-signup-success.html ADDED Viewed

@@ -0,0 +1,3 @@
+---
+layout: waibuMpa.layout:/email.html
+---

package/waibuMpa/template/user/fpl-invalid.html ADDED Viewed

@@ -0,0 +1,3 @@
+---
+t:title: forgotPassword
+---

package/waibuMpa/template/user/fpl.html ADDED Viewed

@@ -0,0 +1,3 @@
+---
+t:title: forgotPassword
+---