#77 Better error handling after password creation

2017-04-28 14:21:10 -04:00 · 2017-04-28 14:21:10 -04:00 · 0f338b0d6f
parent 49c6a105a7
commit 0f338b0d6f
2 changed files with 52 additions and 39 deletions
--- a/config/routes/auth.js
+++ b/config/routes/auth.js
@ -5,6 +5,7 @@ const
 	mail = require('../mail.js'),
 	User = require('../models.js').user,
 	crypto = require('crypto'),
+	moment = require('moment'),
 	env = require('../env/env.js');

 module.exports = (app, passport) => {
@ -61,26 +62,36 @@ module.exports = (app, passport) => {
 			function sendToken(user){
 				
 				// Create a password token
-				user.createPassToken((err,token)=>{
-					if (err){ mw.throwErr(err,req); }
-					
-					// Email the instructions to continue
-					mail.send({
-							from: mail.from,
-							to: `<${user.email}>`,
-							subject: 'Complete your Tracman registration',
-							text: mail.text(`Welcome to Tracman!  \n\nTo complete your registration, follow this link and set your password:\n${env.url}/settings/password/${token}`),
-							html: mail.html(`<p>Welcome to Tracman! </p><p>To complete your registration, follow this link and set your password:<br><a href="${env.url}/settings/password/${token}">${env.url}/settings/password/${token}</a></p>`)
-						})
-					.then(()=>{
-						req.flash('success', `An email has been sent to <u>${user.email}</u>. Check your inbox to complete your registration. `);
-						res.redirect('/login');
-					})
-					.catch((err)=>{
+				user.createPassToken((err,token,expires)=>{
+					if (err){
 						mw.throwErr(err,req);
 						res.redirect('/login#signup');
-					});
+					}
+					else {
+					
+						// Figure out expiration time
+						let expirationTimeString = (req.query.tz)?
+							moment(expires).utcOffset(req.query.tz).toDate().toLocaleTimeString(req.acceptsLanguages[0]):
+							moment(expires).toDate().toLocaleTimeString(req.acceptsLanguages[0])+" UTC";
 						
+						// Email the instructions to continue
+						mail.send({
+								from: mail.from,
+								to: `<${user.email}>`,
+								subject: 'Complete your Tracman registration',
+								text: mail.text(`Welcome to Tracman!  \n\nTo complete your registration, follow this link and set your password:\n${env.url}/settings/password/${token}\n\nThis link will expire at ${expirationTimeString}.  `),
+								html: mail.html(`<p>Welcome to Tracman! </p><p>To complete your registration, follow this link and set your password:<br><a href="${env.url}/settings/password/${token}">${env.url}/settings/password/${token}</a></p><p>This link will expire at ${expirationTimeString}. </p>`)
+							})
+						.then(()=>{
+							req.flash('success', `An email has been sent to <u>${user.email}</u>. Check your inbox and follow the link to complete your registration. (Your registration link will expire in one hour). `);
+							res.redirect('/login');
+						})
+						.catch((err)=>{
+							mw.throwErr(err,req);
+							res.redirect('/login#signup');
+						});
+						
+					}
 				});
 				
 			}
--- a/config/routes/settings.js
+++ b/config/routes/settings.js
@ -232,30 +232,32 @@ router.route('/password')
 				mw.throwErr(err,req);
 				res.redirect((req.user)?'/settings':'/login');
 			}
+			else {
 			
-			// Figure out expiration time
-			let expirationTimeString = (req.query.tz)?
-				moment(expires).utcOffset(req.query.tz).toDate().toLocaleTimeString(req.acceptsLanguages[0]):
-				moment(expires).toDate().toLocaleTimeString(req.acceptsLanguages[0])+" UTC";
-			
-			// Confirm password change request by email.
-			mail.send({
-				to: mail.to(req.user),
-				from: mail.from,
-				subject: 'Request to change your Tracman password',
-				text: mail.text(`A request has been made to change your tracman password.  If you did not initiate this request, please contact support at keith@tracman.org.  \n\nTo change your password, follow this link:\n${env.url}/settings/password/${token}. \n\nThis request will expire at ${expirationTimeString}. `),
-				html: mail.html(`<p>A request has been made to change your tracman password.  If you did not initiate this request, please contact support at <a href="mailto:keith@tracman.org">keith@tracman.org</a>.  </p><p>To change your password, follow this link:<br><a href="${env.url}/settings/password/${token}">${env.url}/settings/password/${token}</a>. </p><p>This request will expire at ${expirationTimeString}. </p>`)
-			})
-			.then( ()=>{
-				// Alert user to check email.
-				req.flash('success',`An link has been sent to <u>${req.user.email}</u>.  Click on the link to complete your password change.  This link will expire in one hour (${expirationTimeString}). `);
-				res.redirect((req.user)?'/settings':'/login');
-			})
-			.catch( (err)=>{
-				mw.throwErr(err,req);
-				res.redirect((req.user)?'/settings':'/login');
-			});
+				// Figure out expiration time
+				let expirationTimeString = (req.query.tz)?
+					moment(expires).utcOffset(req.query.tz).toDate().toLocaleTimeString(req.acceptsLanguages[0]):
+					moment(expires).toDate().toLocaleTimeString(req.acceptsLanguages[0])+" UTC";
+				
+				// Confirm password change request by email.
+				mail.send({
+					to: mail.to(req.user),
+					from: mail.from,
+					subject: 'Request to change your Tracman password',
+					text: mail.text(`A request has been made to change your tracman password.  If you did not initiate this request, please contact support at keith@tracman.org.  \n\nTo change your password, follow this link:\n${env.url}/settings/password/${token}. \n\nThis request will expire at ${expirationTimeString}. `),
+					html: mail.html(`<p>A request has been made to change your tracman password.  If you did not initiate this request, please contact support at <a href="mailto:keith@tracman.org">keith@tracman.org</a>.  </p><p>To change your password, follow this link:<br><a href="${env.url}/settings/password/${token}">${env.url}/settings/password/${token}</a>. </p><p>This request will expire at ${expirationTimeString}. </p>`)
+				})
+				.then( ()=>{
+					// Alert user to check email.
+					req.flash('success',`An link has been sent to <u>${req.user.email}</u>.  Click on the link to complete your password change.  This link will expire in one hour (${expirationTimeString}). `);
+					res.redirect((req.user)?'/settings':'/login');
+				})
+				.catch( (err)=>{
+					mw.throwErr(err,req);
+					res.redirect((req.user)?'/settings':'/login');
+				});
 			
+			}
 		});

 	} );