@@ -97,12 +97,12 @@ public async Task<IActionResult> ConfirmToken(string userId, string code, string
9797 }
9898 case TokenType . RESET_PASSWORD :
9999 {
100- if ( ! await UserManager . VerifyUserTokenAsync ( user , TokenOptions . DefaultProvider , "ResetPassword" , code ) )
101- return BadRequest ( "Invalid token ." ) ;
100+ // if (!await UserManager.VerifyUserTokenAsync(user, TokenOptions.DefaultProvider, "ResetPassword", code))
101+ return BadRequest ( "Password reset is temporarily disabled due to some issues. It should be back soon. We apologize for the inconvenience ." ) ;
102102
103- var authorizationCode = await UserManager . GenerateUserTokenAsync ( user , TokenOptions . DefaultProvider , "PasswordResetAuthorizationCode" ) ;
104- var redirectUrl = $ "{ client . AccountRecoveryRedirectURL } ?userId={ userId } &code={ authorizationCode } ";
105- return RedirectPermanent ( redirectUrl ) ;
103+ // var authorizationCode = await UserManager.GenerateUserTokenAsync(user, TokenOptions.DefaultProvider, "PasswordResetAuthorizationCode");
104+ // var redirectUrl = $"{client.AccountRecoveryRedirectURL}?userId={userId}&code={authorizationCode}";
105+ // return RedirectPermanent(redirectUrl);
106106 }
107107 default :
108108 return BadRequest ( "Invalid type." ) ;
@@ -149,21 +149,22 @@ public async Task<IActionResult> GetUserAccount()
149149 [ EnableRateLimiting ( "strict" ) ]
150150 public async Task < IActionResult > ResetUserPassword ( [ FromForm ] ResetPasswordForm form )
151151 {
152- var client = Clients . FindClientById ( form . ClientId ) ;
153- if ( client == null ) return BadRequest ( "Invalid client_id." ) ;
154-
155- var user = await UserManager . FindByEmailAsync ( form . Email ) ?? throw new Exception ( "User not found." ) ;
156- if ( ! await UserService . IsUserValidAsync ( UserManager , user , form . ClientId ) ) return Ok ( ) ;
157-
158- var code = await UserManager . GenerateUserTokenAsync ( user , TokenOptions . DefaultProvider , "ResetPassword" ) ;
159- var callbackUrl = Url . TokenLink ( user . Id . ToString ( ) , code , client . Id , TokenType . RESET_PASSWORD ) ;
160- #if ( DEBUG || STAGING )
161- return Ok ( callbackUrl ) ;
162- #else
163- logger . LogInformation ( "Password reset email sent to: {Email}, callback URL: {CallbackUrl}" , user . Email , callbackUrl ) ;
164- await EmailSender . SendPasswordResetEmailAsync ( user . Email , callbackUrl , client ) ;
165- return Ok ( ) ;
166- #endif
152+ return BadRequest ( new { error = "Password reset is temporarily disabled due to some issues. It should be back soon. We apologize for the inconvenience." } ) ;
153+ // var client = Clients.FindClientById(form.ClientId);
154+ // if (client == null) return BadRequest("Invalid client_id.");
155+
156+ // var user = await UserManager.FindByEmailAsync(form.Email) ?? throw new Exception("User not found.");
157+ // if (!await UserService.IsUserValidAsync(UserManager, user, form.ClientId)) return Ok();
158+
159+ // var code = await UserManager.GenerateUserTokenAsync(user, TokenOptions.DefaultProvider, "ResetPassword");
160+ // var callbackUrl = Url.TokenLink(user.Id.ToString(), code, client.Id, TokenType.RESET_PASSWORD);
161+ // #if (DEBUG || STAGING)
162+ // return Ok(callbackUrl);
163+ // #else
164+ // logger.LogInformation("Password reset email sent to: {Email}, callback URL: {CallbackUrl}", user.Email, callbackUrl);
165+ // await EmailSender.SendPasswordResetEmailAsync(user.Email, callbackUrl, client);
166+ // return Ok();
167+ // #endif
167168 }
168169
169170 [ HttpPost ( "logout" ) ]
@@ -250,31 +251,33 @@ public async Task<IActionResult> UpdateAccount([FromForm] UpdateUserForm form)
250251 }
251252 case "change_password" :
252253 {
253- ArgumentNullException . ThrowIfNull ( form . OldPassword ) ;
254- ArgumentNullException . ThrowIfNull ( form . NewPassword ) ;
255- var result = await UserManager . ChangePasswordAsync ( user , form . OldPassword , form . NewPassword ) ;
256- if ( result . Succeeded )
257- {
258- await SendLogoutMessageAsync ( user . Id . ToString ( ) , "Password changed." ) ;
259- return Ok ( ) ;
260- }
261- return BadRequest ( result . Errors . ToErrors ( ) ) ;
254+ return BadRequest ( new { error = "Password change is temporarily disabled due to some issues. It should be back soon. We apologize for the inconvenience." } ) ;
255+ // ArgumentNullException.ThrowIfNull(form.OldPassword);
256+ // ArgumentNullException.ThrowIfNull(form.NewPassword);
257+ // var result = await UserManager.ChangePasswordAsync(user, form.OldPassword, form.NewPassword);
258+ // if (result.Succeeded)
259+ // {
260+ // await SendLogoutMessageAsync(user.Id.ToString(), "Password changed.");
261+ // return Ok();
262+ // }
263+ // return BadRequest(result.Errors.ToErrors());
262264 }
263265 case "reset_password" :
264266 {
265- ArgumentNullException . ThrowIfNull ( form . NewPassword ) ;
266- var result = await UserManager . RemovePasswordAsync ( user ) ;
267- if ( result . Succeeded )
268- {
269- await MFAService . ResetMFAAsync ( user ) ;
270- result = await UserManager . AddPasswordAsync ( user , form . NewPassword ) ;
271- if ( result . Succeeded )
272- {
273- await SendLogoutMessageAsync ( user . Id . ToString ( ) , "Password reset." ) ;
274- return Ok ( ) ;
275- }
276- }
277- return BadRequest ( result . Errors . ToErrors ( ) ) ;
267+ return BadRequest ( new { error = "Password reset is temporarily disabled due to some issues. It should be back soon. We apologize for the inconvenience." } ) ;
268+ // ArgumentNullException.ThrowIfNull(form.NewPassword);
269+ // var result = await UserManager.RemovePasswordAsync(user);
270+ // if (result.Succeeded)
271+ // {
272+ // await MFAService.ResetMFAAsync(user);
273+ // result = await UserManager.AddPasswordAsync(user, form.NewPassword);
274+ // if (result.Succeeded)
275+ // {
276+ // await SendLogoutMessageAsync(user.Id.ToString(), "Password reset.");
277+ // return Ok();
278+ // }
279+ // }
280+ // return BadRequest(result.Errors.ToErrors());
278281 }
279282 case "change_marketing_consent" :
280283 {
0 commit comments