Theme overhaul - missing files

2026-05-08 17:48:55 -04:00 · 2025-07-31 18:37:45 -04:00
parent 8a2565adad
commit 2a4f78a762
17 changed files with 2953 additions and 0 deletions
@@ -0,0 +1,101 @@
+import { type NextRequest, NextResponse } from "next/server";
+import { eq } from "drizzle-orm";
+import { db } from "~/server/db";
+import { users } from "~/server/db/schema";
+import { Resend } from "resend";
+import { env } from "~/env";
+import { generatePasswordResetEmailTemplate } from "~/lib/email-templates";
+import crypto from "crypto";
+
+export async function POST(request: NextRequest) {
+  try {
+    const { email } = (await request.json()) as { email: string };
+
+    if (!email || typeof email !== "string") {
+      return NextResponse.json({ error: "Email is required" }, { status: 400 });
+    }
+
+    // Validate email format
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    if (!emailRegex.test(email)) {
+      return NextResponse.json(
+        { error: "Invalid email format" },
+        { status: 400 },
+      );
+    }
+
+    // Check if user exists
+    const user = await db.query.users.findFirst({
+      where: eq(users.email, email.toLowerCase()),
+    });
+
+    // Always return success to prevent email enumeration attacks
+    // Don't reveal whether the user exists or not
+    if (!user) {
+      return NextResponse.json(
+        {
+          success: true,
+          message:
+            "If an account with that email exists, password reset instructions have been sent.",
+        },
+        { status: 200 },
+      );
+    }
+
+    // Generate reset token
+    const resetToken = crypto.randomBytes(32).toString("hex");
+    const resetTokenExpiry = new Date(Date.now() + 24 * 60 * 60 * 1000); // 24 hours
+
+    // Update user with reset token
+    await db
+      .update(users)
+      .set({
+        resetToken,
+        resetTokenExpiry,
+      })
+      .where(eq(users.id, user.id));
+
+    // Send password reset email using Resend
+    try {
+      const resend = new Resend(env.RESEND_API_KEY);
+      const resetUrl = `${process.env.NEXTAUTH_URL ?? "http://localhost:3000"}/auth/reset-password?token=${resetToken}`;
+
+      const emailTemplate = generatePasswordResetEmailTemplate({
+        userEmail: email,
+        userName: user.name ?? undefined,
+        resetToken,
+        resetUrl,
+        expiryHours: 24,
+      });
+
+      await resend.emails.send({
+        from: "beenvoice <noreply@beenvoice.com>",
+        to: email,
+        subject: emailTemplate.subject,
+        html: emailTemplate.html,
+        text: emailTemplate.text,
+      });
+
+      console.log(`Password reset email sent to: ${email}`);
+    } catch (emailError) {
+      console.error("Failed to send password reset email:", emailError);
+      // Continue execution - don't fail the request if email fails
+      // This prevents revealing whether an account exists based on email delivery
+    }
+
+    return NextResponse.json(
+      {
+        success: true,
+        message:
+          "If an account with that email exists, password reset instructions have been sent.",
+      },
+      { status: 200 },
+    );
+  } catch (error) {
+    console.error("Password reset error:", error);
+    return NextResponse.json(
+      { error: "An error occurred while processing your request" },
+      { status: 500 },
+    );
+  }
+}
@@ -0,0 +1,74 @@
+import { type NextRequest, NextResponse } from "next/server";
+import { eq, and, gt } from "drizzle-orm";
+import bcrypt from "bcryptjs";
+import { db } from "~/server/db";
+import { users } from "~/server/db/schema";
+
+export async function POST(request: NextRequest) {
+  try {
+    const { token, password } = (await request.json()) as {
+      token: string;
+      password: string;
+    };
+
+    if (!token || typeof token !== "string") {
+      return NextResponse.json({ error: "Token is required" }, { status: 400 });
+    }
+
+    if (!password || typeof password !== "string") {
+      return NextResponse.json(
+        { error: "Password is required" },
+        { status: 400 },
+      );
+    }
+
+    if (password.length < 8) {
+      return NextResponse.json(
+        { error: "Password must be at least 8 characters long" },
+        { status: 400 },
+      );
+    }
+
+    // Find user with valid reset token that hasn't expired
+    const user = await db.query.users.findFirst({
+      where: and(
+        eq(users.resetToken, token),
+        gt(users.resetTokenExpiry, new Date()),
+      ),
+    });
+
+    if (!user) {
+      return NextResponse.json(
+        { error: "Invalid or expired token" },
+        { status: 400 },
+      );
+    }
+
+    // Hash the new password
+    const hashedPassword = await bcrypt.hash(password, 12);
+
+    // Update user with new password and clear reset token
+    await db
+      .update(users)
+      .set({
+        password: hashedPassword,
+        resetToken: null,
+        resetTokenExpiry: null,
+      })
+      .where(eq(users.id, user.id));
+
+    return NextResponse.json(
+      {
+        success: true,
+        message: "Password has been reset successfully",
+      },
+      { status: 200 },
+    );
+  } catch (error) {
+    console.error("Password reset error:", error);
+    return NextResponse.json(
+      { error: "An error occurred while resetting your password" },
+      { status: 500 },
+    );
+  }
+}
@@ -0,0 +1,37 @@
+import { type NextRequest, NextResponse } from "next/server";
+import { eq, and, gt } from "drizzle-orm";
+import { db } from "~/server/db";
+import { users } from "~/server/db/schema";
+
+export async function POST(request: NextRequest) {
+  try {
+    const { token } = (await request.json()) as { token: string };
+
+    if (!token || typeof token !== "string") {
+      return NextResponse.json({ error: "Token is required" }, { status: 400 });
+    }
+
+    // Find user with valid reset token that hasn't expired
+    const user = await db.query.users.findFirst({
+      where: and(
+        eq(users.resetToken, token),
+        gt(users.resetTokenExpiry, new Date()),
+      ),
+    });
+
+    if (!user) {
+      return NextResponse.json(
+        { error: "Invalid or expired token" },
+        { status: 400 },
+      );
+    }
+
+    return NextResponse.json({ valid: true }, { status: 200 });
+  } catch (error) {
+    console.error("Token validation error:", error);
+    return NextResponse.json(
+      { error: "An error occurred while validating the token" },
+      { status: 500 },
+    );
+  }
+}