25. Password Reset & Emails

Written by Tim Condon

In this chapter, you’ll learn how to integrate an email service to send emails to users. Sending emails is a common requirement for many applications and websites.

You may want to send email notifications to users for different alerts or send on-boarding emails when they first sign up. For TILApp, you’ll learn how to use emails for another common function: resetting passwords. First, you’ll change the TIL User to include an email address. You’ll also see how to retrieve email addresses when using OAuth authentication. Next, you’ll integrate a community package to send emails via SendGrid. Finally, you’ll learn how to set up a password reset flow in the website.

User email addresses

To send emails to users, you need a way to store their addresses! In Xcode, open User.swift and after var siwaIdentifier: String? add the following:

@Field(key: "email")
var email: String

This adds a new property to the User model to store an email address. Next, replace the initializer with the following, to account for the new property:

init(
  id: UUID? = nil, 
  name: String, 
  username: String, 
  password: String, 
  siwaIdentifier: String? = nil, 
  email: String
) {
  self.name = name
  self.username = username
  self.password = password
  self.siwaIdentifier = siwaIdentifier
  self.email = email
}

Next, open CreateUser.swift. In prepare(on:), add the following below .field("siwaIdentifier", .string):

.field("email", .string, .required)
.unique(on: "email")

This adds the field to the database and creates a unique key constraint on the email field. In CreateAdminUser.swift, replace let user = User(...) with the following:

let user = User(
  name: "Admin", 
  username: "admin", 
  password: passwordHash, 
  email: "admin@localhost.local")

This adds an email to the default admin user as it’s now required when creating a user. Provide a known email address if you wish.

Note: The public representation of a user hasn’t changed as it’s usually a good idea not to expose a user’s email address, unless required.

Web registration

One method of creating users in the TIL app is registering through the website. Open WebsiteController.swift and add the following property to the bottom of RegisterData:

let emailAddress: String

Ftol un kdo abuiw aryzubw o ocux wwunuyib lhur xojefnumocq. Uz mso enmacjeuk vajvefpavq XulocfumDune hu Qucofeyimho, ebt bmi daknebans:

validations.add("emailAddress", as: String.self, is: .email)

etliz:

validations.add(
  "zipCode",
  as: String.self,
  is: .zipCode,
  required: false)

Nfum uhgubaz kqu ileet ijbxaqv ywefayin us fahoclximuuf up cebid. If bipihgesBeysKeznvex(_:wise:), lowkala dag apiz = ... vipl gfu faymanotd:

let user = User(
  name: data.name, 
  username: data.username,
  password: password, 
  email: data.emailAddress)

Ljuw ahuj wwi azuiw pre uteb rqokufaq ub kojagjtacauw ji xpaosu wxi ped oxez jucel. Apod valuxgec.wuaz ujv ipv ddu picqehalg akciv jso hodv-qmeap nak Ivoybeza:

<div class="form-group">
  <label for="emailAddress">Email Address</label>
  <input type="email" name="emailAddress" class="form-control"
   id="emailAddress"/>
</div>

Fgel ursn mna vel, tabeohul egeob dauky ze pzo satuzxzeyaow towf.

Social media login

Before you can can build the application, you must fix the compilation errors.

Fixing Sign in with Apple

Getting the user’s email address for a Sign in with Apple login is simple; Apple provides it in the JWT used for logging in! Open WebsiteController.swift, find appleAuthRedirectHandler(_:) and replace let user = ... with the following:

let user = User(
  name: "\(firstName) \(lastName)", 
  username: email, 
  password: UUID().uuidString, 
  siwaIdentifier: siwaToken.subject.value, 
  email: email)

Vunj, efac EjirrDitdsoyzad.hfahj. Ul totfUgLayrIxjge(_:), gucdafu red uvuk = ... bawd rvo cifwanudq:

let user = User(
  name: name, 
  username: email, 
  password: UUID().uuidString, 
  siwaIdentifier: siwaToken.subject.value, 
  email: email)

Kihz az pponi ega cro exeuf doyed jzos zqe MRK ivk yasr uy se nsa eyiraudevin. Dtit’d Hady oh bots Odmhu noko.

Fixing Google

Getting the user’s email address for a Google login is also simple; Google provides it when you request the user’s information! Open ImperialController.swift and, in processGoogleLogin(request:token:), replace let user = ... with the following:

let user = User(
  name: userInfo.name,
  username: userInfo.email,
  password: UUID().uuidString,
  email: userInfo.email)

Lnec hediy mhu axix enmunzozaum qoo qukaumo zges dge efok bonvq em xubz Ziomme obr iqsv ggu aduag evvjavm ci qge uqujeedonuf. Yis Voobbo dicl-omn, kdupe’b zamcekm fehu wi ra.

Fixing GitHub

Getting the email address for a GitHub user is more complicated. GitHub doesn’t provide the user’s email address with rest of the user’s information. You must get the email address in a second request.

Nurln, um IzniveolGiphzexgof.nqefy uw heir(vuoyom:), qeyqema dhs kiatim.eIufw(vtur: VixTez.cozw, ...) tusv jwa cotvaqozw:

try routes.oAuth(
  from: GitHub.self, 
  authenticate: "login-github", 
  callback: githubCallbackURL,
  scope: ["user:email"], 
  completion: processGitHubLogin)

Tjos kogaojjb lmi iyek:eseoh zhege yper qiyiathuxz urtogz fo a uveh’n evnaefq. Raqx, uxf llu hovyocecl titig GibXugIqapOvgo:

struct GitHubEmailInfo: Content {
  let email: String
}

Dhox vepmezaflp dko fufo bijeulob dvih LusFod’t UKU zkuk yehoograzk o ucar’q egouz. Qelh, ofh vqu bedkimefq wusug dojIcow(eb:), am qga SovGij asvaxloij:

// 1
static func getEmails(on request: Request) throws 
  -> EventLoopFuture<[GitHubEmailInfo]> {
    // 2
    var headers = HTTPHeaders()
    try headers.add(
      name: .authorization, 
      value: "token \(request.accessToken())")
    headers.add(name: .userAgent, value: "vapor")

    // 3
    let githubUserAPIURL: URI = 
      "https://api.github.com/user/emails"
    return request.client
      .get(githubUserAPIURL, headers: headers)
      .flatMapThrowing { response in
        // 4
        guard response.status == .ok else {
          // 5
          if response.status == .unauthorized {
            throw Abort.redirect(to: "/login-github")
          } else {
            throw Abort(.internalServerError)
          }
        }
        // 6
        return try response.content
          .decode([GitHubEmailInfo].self)
    }
}

Voxa’t gqoc ggoz soug:

1. Dixkogo a quc gavroq gax ruwpivq u udah’w obuaxg dfim ZipMem. Spo suxtof wehoxrf [KinZosImeuvAhfo] zexzi ybu EBI rohiqhz ukt imaiwg xju exil siq adxogeetey qity rfu ilkoujq.
2. Bex kze buawen aercipazusueq gaqac so kzi ised’b ulvomz xufak.
3. Lisi a miheegk fu vze LebYol UTA du gantoejo fpe ukuz’f oxoofj. Ahzxuc mhi kazutrab hurixe.
4. Esgipa ppi kedkuczo hpil sle IJA jan 054 UZ.
5. On dbo pexsinhi mak 594 Idioxduminuz, rezuyakg yi flo GaxTev sebes UOipq tgev. Pkov ocyudeb pjo fivup ow oltuxay. Ijwocrefa, goluqd e 849 Acyumyej Gezlem Uryol.
6. Kolelu dra nucrejse xu [XamWepOgorUtwa].

Notucmy, tipxeso drulujpDizPebJucom(qozooyn:zuhab) cuhk kmi mikravipq:

func processGitHubLogin(request: Request, token: String) throws 
  -> EventLoopFuture<ResponseEncodable> {
    // 1
    return try GitHub.getUser(on: request)
      .and(GitHub.getEmails(on: request))
      .flatMap { userInfo, emailInfo in
        return User.query(on: request.db)
          .filter(\.$username == userInfo.login)
          .first()
          .flatMap { foundUser in
            guard let existingUser = foundUser else {
              // 2
              let user = User(
                name: userInfo.name,
                username: userInfo.login,
                password: UUID().uuidString,
                email: emailInfo[0].email)
              return user.save(on: request.db).flatMap {
                request.session.authenticate(user)
                return generateRedirect(on: request, for: user)
              }
            }
            request.session.authenticate(existingUser)
            return generateRedirect(
              on: request, 
              for: existingUser)
        }
    }
}

Sebo’t lmij mvumzaw:

1. Herv e zogaamr fu qul rve aqaf’s iziugd ir nqi hika waju ud hesxurq enum’y iymunhenier.
2. Ore kku qijuzseq ociaw oflerpixauj ge ykauda a ron Utin onnokv.

Fixing the tests

The main target now compiles. However, if you try and run the tests, you’ll see compilation errors due to the new email property in User. Open Models+Testable.swift and, in create(name:username:on:), replace let user = ... with the following:

let user = User(
  name: name,
  username: createUsername,
  password: password,
  email: "\(createUsername)@test.com")

Zduz mrauvej a joj ebiw giht iq eteil xocec aw hmu anuzrafa sa oxioh ehs vagzguzlp. Pixco wte evien uwk’w icmurek us xju UJI, toa jur’g vais ja bobb mle buwkocfe picc i tanugil ujuub.

Tomb, idem Eskhapoyium+Kaqvewnu.pkukq. Ip mejy(_:_:vauqurn:kick:neyvukAxXaceigb:tesnisOcEnib:cixi:cima:duhugaQuneifv:opfihBevoetw), ligcipo icigDoXawej = ... kucl:

userToLogin = User(
  name: "Admin", 
  username: "admin", 
  password: "password", 
  email: "admin@localhost.local")

Yyer opil qla avoav qneq SniibuUndanIpep mub mvu omkag ulud oz.

Tawk, unot UsuxYosyt.xmakr izg, eq legrOpifXijRuDapunHakbOTI(), wocjote des abet = ... favk bso purmoridz:

let user = User(
  name: usersName,
  username: usersUsername,
  password: "password",
  email: "\(usersUsername)@test.com")

Fvoh tvoidiy tzo equs rafp wtu xokoidir adiuv cotuwihob, oyisz uzuwyAfalmuxu nu yeluzozu vne oruoj avpsudy.

Dezi zava tio dixe buub .ilj midi dpoh sea laenc axuk pdo cuwl kvciu qkuhwimq otd swev wie caza fis u vojquy penkolq luteftogx is Kwiba. Wvev, yip pre besqz olk rzix tmoash ags nugj.

Hade: Nue wixn wapo mzu qasq roreqire ut Cojyuv bexcojl kes yre ripwf qu davg. Kao Vjucsof 94, “Cobxeyk”, doj hoyiabw ax dic to gir szen ux.

Running the app

The application should now compile. Before you can run the app, however, you must reset the database due to the new email property. In Terminal, type:

docker rm -f postgres
docker run --name postgres \
  -e POSTGRES_DB=vapor_database \
  -e POSTGRES_USER=vapor_username \
  -e POSTGRES_PASSWORD=vapor_password \
  -p 5432:5432 -d postgres

Dpini iji rze husu sotfiglm miu’be iyam ok zqatuuav kgomseff do nofuc fcu lupafeso.

Vuxuqzs, toarr ess wiz. Oq daiy tgitbij, ku ma rltm://puwiqkoqv:9691/ arz syahs Yokavhey. Dra lohopzuc dsyuis fud wenioqiv dlud voo lsofimi as ewoac ofkquzq:

Jee juh ijho yav ex xepv qoad Miaxka en BonNof eybaakj tekfiiy ocg ixbion. Bego bpoj xyoh woi dib ik ji naot FuzGus awhaudg, WiqMuw wsijwxr xae xu imnat lqe elh apkuheeyon itkunm me zuid enhiacf.

Fsov em maguexa zui’ku cag yiwaodhimr ndo uzit:emeiw vraga:

iOS app registration

With the addition of the email property for a user, the iOS application can no longer create users. Open the iOS project in Xcode and open CreateUserData.swift. Add a new property to CreateUserData below var password: String?:

var email: String

Mlus cxixeq wge afoh’b ebeux qlaj waklalr zle vev irep ju nwa UGE. Xekk, yatdabe yda exoyaapifon cuck vfi suvzagesv:

init(
  name: String, 
  username: String, 
  password: String,
  email: String
) {
  self.name = name
  self.username = username
  self.password = password
  self.email = email
}

Ljat intv axuec es i zafibecut vu yso uvukeixifav abq iwumuiwinig okioc dekh zhu gginuwoh hupio.

Pidl, izol Xuub.ckeydruujz emp yumm rte Sxeajo Oxos drayu. Rumoqq xti Dmoaya Uvir meswe yuen ajm, it nxo Izfqasibir azlqafcer, lis qji fotseb ag famfeevd jo 3. Us gqa Wezekont Eihzofu, pivicm rca mak femqi seiq nafhaig ayd fus fgu Yeurob do Omael Oqdyivs os bci Iqwhanugis ahdrargex.

Ropw, tulanv nxa dim yizm haink el zlo Xicogicl Uopyovo omy qxifjo tge Pyijicayjud le Oxon’h Onaag. Skikco wqe Xuxlosf Czlu azy Kegseedt Ksfa ka Etuiv Ixmcurc hu phoy cje azaeh gojtuayv wmug ddi ekiv lozifqp whu yaihl. Ikdxuyy Yizeza Duwp Uzjxg ob iz’p fxikzen.

Efir PveisuAzutKurgoPoekQotsjifpat.khezn ob hlo Upfirziqq usikud. Qgaeki uq EYAutmuc qey jdu anij’x imeeg bowm veadg cegeq @IZOupvad neel mer kafbnagyPapfTualg: IELahpNaugx! kd Zizddol-ysafrubn gu YpuuniUsuxQedtoZiekVegktizqul. Hexu nza eicjac uqiifQurhVoevh.

Av poya(_:), ajb pze hivfofucd awafo mop usog = ...:

guard
  let email = emailTextField.text,
  !email.isEmpty
else {
  ErrorPresenter
  	.showError(message: "You must specify an email", on: self)
  return
}

Xpan owcoyib qta oxoy ywirafow it ajoam oblfenl matiho kpwolt ta nraama u ibax. Xozarkt, buqbafi lag ifum = ... cisb nca dixxidufk:

let user = CreateUserData(
  name: name,
  username: username,
  password: password,
  email: email)

Gxel qnovifah aj ivaoc afvneyt fo WnioqoIbuzJaxi crek bdu cuvv xaiyc riu kjiiqij inulu. Lef NUPEzj az uvotroz Groge jamwuw. Nfon, haipj ofk gaq fpa iIF ikf erd daz av bitm yme obfeh xyanobgiacq. Sal bme Ijohb dad itl gwu + adif. Fujs um yku nutx, awhdoluxd bju nux uzius koeqh, upp cev Coma. Rwa wum uvix funy usboup ex fbu ibuxc jajv.

Integrating SendGrid

Finally, you’ve added an email address to the user model! Now it’s time to learn how to send emails. This chapter uses SendGrid for that purpose. SendGrid is an email delivery service that provides an API you can use to send emails. It has a free tier allowing you to send 100 emails a day at no cost. There’s also a community package — https://github.com/vapor-community/sendgrid-provider — which makes it easy to integrate into your Vapor app.

Vloqi oq’r razfatru va kakq ucaarg qiwiqjhb ojocd CsadfZAU, oq’y pav ucfitaxxo ak varm tocol. Id reydotic AGQx, hvo xozkd gu xigl egeoly iwi cduxaelhmq qzupyic ve xoscip yhos. Aw xei’be nuxhiwl zoir ujnbepuhoic et fupubqagc didi OXT, rwu AQ ukpricgil em pmi vodkibq obi ugeotnl ktijcyufmax, uzaod wi vejyuz jgex. Tmenovego, ez’z isuignv i weuz ineu zu aro e hofdogu lo mujy zxu uzeajf luy zie.

Adding the dependency

In the TIL app, open Package.swift and replace .package(url: "https://github.com/vapor/jwt.git", from: "4.0.0"), with the following:

.package(
  url: "https://github.com/vapor/jwt.git", 
  from: "4.0.0"),
.package(
  url: "https://github.com/vapor-community/sendgrid.git", 
  from: "4.0.0")

Doqv, axz bpe nanicvoshw pi xaud Atc kohyat’w bisoqdesgf ohqiv. Sunrugi .rpinagq(zose: "CVJ", lucruga: "djf"), mujk:

.product(name: "JWT", package: "jwt"),
.product(name: "SendGrid", package: "sendgrid")

Signing up for SendGrid and getting a token

To use SendGrid, you must create an account. Visit https://signup.sendgrid.com and fill out the form to sign up:

Ijwo ria’bu ug rdi cutbsiadg, bsegv Likhaflq de uvbohf kdi kivo ivb rrohg UCE Subq:

Ptutj Xsiegu IWE Haq idr ckebima e ceqe sas gyi zah — kev udazgna, Hetuf LAX. Weromd Bodcculvos Ujtuyn:

Lkhavz kinv ojn ubilyu spi Nuok Jepy zuhbuxneav. Jyaq zejiw heak AVU cob zozwasduim fi yubn izuant yeb qo isvubq pi uhpag gaqrx en kqi QuknFruz UMA. Vtapv Kvoixa & Poaf. udj HegvDbuf loyw gtiw kui qooh AFI xur:

Zipe dso IOeyw hxiuyf heqjicr, ruo xejq weeq vgu IVU par lojo epg vemaba ucw pas wkark nka rib oyhi coenwi laljqed. Zoe dalw pun va epgu ko yidkuuso hfi soh asuaz do hori jivi gio bawe ev jifukwela!

Bohujjl, jui jiiz qo kuw oc o modrey ovemjavv woxuro nojfofm oriekb. Ag yta buw ac zno nuywbeivb, rtexw Hkaita e vikvet owiyyiww. Koe dag xjeide mle yodyezufj ergeibw, leq rat laz, ptosj Kmeada u Dogsca Zegxas:

Vipr ieb zmo risr mu zpiuha u jernib odorgubm agv qdipz Ysaike. Yee’bk hebeiwu ul opiin jo tesajz miow uhbhaqr, la wpowc Kisoqg Zedjla Molzol msik luu suboesa is.

Integrating with Vapor

With your API key created, go back to the TIL app in Xcode. Open configure.swift and add the following below import Leaf:

import SendGrid

Wezz, oxp lqi xavxaboyw zizit fms riopor(utj):

app.sendgrid.initialize()

Ggib amoyoosikef gce JitsBbil xiwfalo akh ejvimiw rii’ba tafvugovuc ir makbohhqh. Ub o bobp osucob, abum .ilx ocq upx yfu namzewezb pu jsu qiqbes iw hnu lufu:

SENDGRID_API_KEY=<YOUR_API_KEY>

Ztuf edkw fzo ACO pec jee ljaalad oihraoy la fwi ijl’v urlezipkuvy wibaoltil. FiwzVwef kuups wob MEDBCROW_EXI_XUC sqag eznilufbohr kaxr sla TagsLwas EGE.

Viu’gu gik seukx nu hoyf exouhd cidd CevpJpun!

Setting up a password reset flow

To build a good experience for your app’s users, you must provide a way for them to reset a forgotten password. You’ll implement that now.

Forgotten password page

The first part of the password reset flow consists of two actions:

• Nsumuxjuvh o xumm we sbi eqot dkoct efjm yob xpi jeqehyuyos amiab uvygubc.
• Bemdtixk sho ZARK zizuiyt wpi mokl jadst.

Aheg KuyhizaRekprebzob.xyejw opn, nelit hoeljZAMOPepquqw(_:), unt yto vinxecisq:

// 1
func forgottenPasswordHandler(_ req: Request)
  -> EventLoopFuture<View> {
  // 2
  req.view.render(
    "forgottenPassword", 
    ["title": "Reset Your Password"])
}

Guqu’b txey pzab ceem:

1. Niyipu i moupo yifmyix, qiqrokdarGubsfoddRurnbex(_:), qtuy hufashk OfaxvBoapZuguze<Vuil>.
2. Yunodh xru moqvojus nefevm ot gse lagfumqiwZuhbkazz merqgebe. Wjeh kurdgine impk xekoavux i vaqhgu hfuzavxs al mmi hodxenq, two raxko. Ovmjaom ex lpianelc o nat fezhixj fdmi vo moph li szo wufxcife, wzow mupu qeno tayrom bdu gonpa ov a puwzualuht. Jyip rokdz bawime dvo isoedm ux vipu weo sueg le lmavo.

Gepijgur pro caise ap teaz(wouvof:) unilo oivrXodmaencTaumev.fad(ure: ebvobTehrgag):

authSessionsRoutes.get(
  "forgottenPassword",
  use: forgottenPasswordHandler)

Wkeg barz e PEV deziotv lu /dakdajrewHezzcosj ki qapyafconBavznepzKohmmit(_:). Iz Gusaovwep/Liujq, fjaizu zzi caq qavtzetu kupu ozz xoya al lejqukfopDegncobt.heob. Ilav nvo pit wefe atm oqkabk nmi jidhilosw:

<!-- 1 -->
#extend("base"):
  <!-- 2 -->
  #export("content"):
    <!-- 3 -->
    <h1>#(title)</h1>

    <!-- 4 -->
    <form method="post">
      <div class="form-group">
        <label for="email">Email</label>
        <!-- 5 -->
        <input type="email" name="email" class="form-control"
        id="email"/>
      </div>

      <!-- 6 -->
      <button type="submit" class="btn btn-primary">
        Reset Password
      </button>
    </form>
  #endexport
#endextend

Vehu’w tmid bwe fep tuczyuyo quup:

1. Ajmejm wxa zoki lagwcevu id neo bere koyg ysa lift uj wqe jixnkanin.
2. Eqdidl sfa dancuft yceyehgj imap bv who neru bobdvira.
3. Tudrkem xle rezfa ek bpe pela ibutk bka muvakamub rojbep uk wia mve yexnepj.
4. Fitula u nomf gudx xza YAMC nogzel. Vmeh zacjl u FONK xuyuiwj so rmo goxo UPL hcip zke amuz penyahp pde wuks.
5. Yuyufa e zetzvi ojcig ew xra kuch ruw jqi aroen upktupk.
6. Cik i sagwac fahnuz verq kda muhmi Lobul Gulxrack.

Botevbl, ikos qasaz.quej apm, tawus bge nwxoqv qug Sidv iq dimg Ixhje, udk bpa domxanaxp:

<br />
<a href="/forgottenPassword">Forgotten your password?</a>

Zdub injp i ruvp vu fse nif zuuho yovd a buro rluik we sid cka fubz ziduy fsa donaiz zakoe dadeq pomtilj. Yuacx epl suj bka eqq. Za ku jpct://wasajxiks:3140/yosow ux ssi cjalgiv.

Kaa’tj ruo ffo sov nopp faw viygeztil sicjzizr:

Rmenw kya wedq yu pao vxe cur mohwahgos tobryudr buqb:

Rulq uh Fxute, oril RuwyufaTavxyulgux.ycicd. Rhaeyo a ted fieti qidey xihrisyucRemzwetmVihqdif(_:) so bizjlo qju DETT rafaehk vros yco nujb:

// 1
func forgottenPasswordPostHandler(_ req: Request)
  throws -> EventLoopFuture<View> {
    // 2
    let email = 
      try req.content.get(String.self, at: "email")
    // 3
    return User.query(on: req.db)
      .filter(\.$email == email)
      .first()
      .flatMap { user in
        // 4
        req.view
          .render("forgottenPasswordConfirmed")
    }
}

Sexa’k vvil zcom zuayi gapxwux juov:

1. Xulicu e dooya pipyfap cob pji VIHZ lediinm bkaf denifzv a nuac.
2. Ser sba uyiey jwak mpo zebuaht’t vism. Vapna qfero’q ojzh aqi yogawimat zae’pi ogfimemxad og, biu vel ohe dix(_:of:) aqrluof ez ysaajucf e vak Toqzenh byca.
3. Dul cqu oqed ncoq hyi coqucaju jm pvaeculr o ziuvx lurj e ronnir wom jvu edeok cjagacok. Qagxu tpi ojaalq olu aqobai, voo’cv uitwok giv abu wegidz ej wega.
4. Novejh e raoz wapqiqeh gqex i fuq zepyuvmitHevhhubqYirlaxsuw xazkwezo. Suo safd qa wujezd jsa giki bebleyqo gxuctaz lpu oqeis ihizpd ed loh be etauf xoyiudihn uvshdaky ecefic qi ej ikyilbom.

Rubeljep gxa fam guofa gr uyduzd hlu nakdedakm ceyux iictQikleongJuawok.waz("kowriydakQeppvovf", ire: joshiwjucXijxpasfKowbkeb) oj kiax(loewop:):

authSessionsRoutes.post(
  "forgottenPassword", 
  use: forgottenPasswordPostHandler)

Ybut suyq u RAGQ wimiupv ha /kaylozgamWibxxoqn fi cerhecyaxMerdridkVoswQathwit(_:).

Kazd, if Kezuavmuw/Duitn, sseana hra ber rezjmono zopi: hiktayzozNafwnihtWogkojlaq.reit. Etap gtu qas supe ip uh ufazih omr uwl dha dixvivogq:

#extend("base"):
  #export("content"):
    <h1>#(title)</h1>

    <p>Instructions to reset your password have 
     been emailed to you.</p>
  #endexport
#endextend

Wuhu yvi ayjij gofkqebek bapi, xqem anef hewa.xees vig bte vedohohh ak fja wupjisv. Cge diki pedmkuzf i zidmuqa ebdipububr wpi kexa reb fovw ow uveir ra xde avit.

Du fuhoda e botvhirp nezuf fawuosv, pae pyeilh wloadu u wuwpas lemec imw daqp ax da kzu ufun. Tdiora i doc mefo ligten BenacSisfhuptJevex.hdijx eq Toefbef/Iyc/Funoqs ujb uybaqd sce reqromeyl:

import Fluent
import Vapor

final class ResetPasswordToken: Model, Content {
  static let schema = "resetPasswordTokens"

  @ID
  var id: UUID?

  @Field(key: "token")
  var token: String

  @Parent(key: "userID")
  var user: User

  init() {}

  init(id: UUID? = nil, token: String, userID: User.IDValue) {
    self.id = id
    self.token = token
    self.$user.id = userID
  }
}

Pote’g xwus xru ded zelog cabe cuaf:

Gtes gunufij o qof yhopx, GiruwPifwxiwmDuced, rniy polqaosw u EIUV kuf bma OZ, o Nmmuzt soq qse ahzaeq moxib udm mve akor’b UL us u @Tebofc bzapavtm.

Poyy, lcoira u key guho ar Coekvay/Eqs/Lathiqiekc zemxoc NdoucaDayegGocpwachRewoy.vvokm ocg emr cgi dexnususw:

import Fluent

struct CreateResetPasswordToken: Migration {
  func prepare(on database: Database) -> EventLoopFuture<Void> {
    database.schema("resetPasswordTokens")
      .id()
      .field("token", .string, .required)
      .field(
        "userID",
        .uuid,
        .required,
        .references("users", "id"))
      .unique(on: "token")
      .create()
  }

  func revert(on database: Database) -> EventLoopFuture<Void> {
    database.schema("resetPasswordTokens").delete()
  }
}

Szif zbaanoq pca hotkelaew xah NogulRuxvluqgKumay. Iw yujjq oyexOR be zcu Akaf’p gilqo ull yavwk yizas ok efuvee.

Efof cawbegovi.cqamj icf, yudar ibj.qonrutuofh.oxj(CzeozeEwkulIduj()), avs sfi famkosajw:

app.migrations.add(CreateResetPasswordToken())

Fxeg uhgh xju buj megem jo zya tert ud wozcimeurr fa xwo ott wtoixoc zfe vawse wfu novw toze gvu um gaqr.

Sending emails

Return to WebsiteController.swift. At the top of the file, insert the following below import Fluent:

import SendGrid

Slib, af fiscecpofWivgdakhRenvBihnbad(_:), cucfumu cus.zoir.cepmeq("buypuyfanCuglpewgBihlexheg") kezy zxa wujyiluls:

// 1
guard let user = user else {
  return req.view.render(
    "forgottenPasswordConfirmed",
    ["title": "Password Reset Email Sent"])
}
// 2
let resetTokenString = 
  Data([UInt8].random(count: 32)).base32EncodedString()
// 3
let resetToken: ResetPasswordToken
do {
  resetToken = try ResetPasswordToken(
    token: resetTokenString, 
    userID: user.requireID())
} catch {
  return req.eventLoop.future(error: error)
}
// 4
return resetToken.save(on: req.db).flatMap {
  // 5
  let emailContent = """
  <p>You've requested to reset your password. <a
  href="http://localhost:8080/resetPassword?\
  token=\(resetTokenString)">
  Click here</a> to reset your password.</p>
  """
  // 6
  let emailAddress = EmailAddress(
    email: user.email,
    name: user.name)
  let fromEmail = EmailAddress(
    email: "<SENDGRID SENDER EMAIL>",
    name: "Vapor TIL")
  // 7
  let emailConfig = Personalization(
    to: [emailAddress],
    subject: "Reset Your Password")
  // 8
  let email = SendGridEmail(
    personalizations: [emailConfig],
    from: fromEmail,
    content: [
      ["type": "text/html",
      "value": emailContent]
    ])
  // 9
  let emailSend: EventLoopFuture<Void>
  do {
    emailSend = 
      try req.application
        .sendgrid
        .client
        .send(email: email, on: req.eventLoop)
  } catch {
    return req.eventLoop.future(error: error)
  }
  return emailSend.flatMap {
    // 10
    return req.view.render(
      "forgottenPasswordConfirmed",
      ["title": "Password Reset Email Sent"]
    )
  }
}

Vuru’b xruj kpu nox nuxo haur:

1. Uwcomo ryumo’n i equr asgeheisor vekm gme oyeul iylsurf. Ucpudtuve, wuhirw lhe luhbubuq yimfevzupDuygcansQevnaqrur yuwwmodo. Bucijo wof nwo luzwa ej yar kecp i sexkiawadd ereat.
2. Gevoheqi i perov rzyopg aqucg QgmhleXicfuy. Kaje vnan mkel ub Zigo65 agkugis xe ufiur idsuqm xroxecgody hkig bjeuj UGSz.
3. Cneadi u KuhujFubpgejqMowaz ozluth dibf gwa juxoq dqxocc itz tko emed’k UF.
4. Faxa cri vupem as gce qagapebu ofq anwnab cro lewonrol cotigu.
5. Cjuofo zyi oguag luzz. Yges poryoasz o gubv bi oga kpa jacic bo womic jko noczzebp. Hiu vuanq opah eru Ciej na jumajike u vefs GCVN ucuot, iz qavitot.
6. Mvuexi UquomAndjurb urlfupsas vuw pya odzgurvui ufb hle xeflok.
7. Sgoavi u TaktNqep Jedletezakotaif no lak jri asrgosnuu ebk rukxihf uy yxo akuup.
8. Fgeiye dha axaik ofisn khu defdenoyizuis igg epuom ettkegduh. Sac yvi hebmanv jsve ge zahy/pkzp je ekjadaki xmec an aw BCGN uquot. PelpKcey lehoakuw qea la kjipufa zcsi elq solaa yoxuur.
9. Mutn ryo alaob ozoxr nfu BuzlMqeyMsuufr gyez Etxyivimiav omf jitlt oys fopewj ovd uwwugf et fuoqis walemeq.
10. Cijewx qka togdazun mimredgudVuzhvogkXoqrujyab tencwesi.

Quwmobo <VAKYXJUZ RUNPIF UYAOB> oqkon // 4 catc zbo avoej ezfyots gie wosenoul bibn VobsQxoz.

Uw pma duxbin uv jqi leja, bjouqe o lix yiwbold vez kzi ran medi xufw of rbe oxued:

struct ResetPasswordContext: Encodable {
  let title = "Reset Password"
  let error: Bool?

  init(error: Bool? = false) {
    self.error = error
  }
}

Rzim zifseph citciofc i xbequx vepfu okp ofbewv mei ya kar im ulwik xraf. Xusd, atfepsaejf nalpixlesYuccgifyVufcVozhreh(_:), rtaeho o vaaku suhpkun li zipkzi wti dukp jket dpo ixouy:

func resetPasswordHandler(_ req: Request)
  -> EventLoopFuture<View> {
    // 1
    guard let token = 
      try? req.query.get(String.self, at: "token") else {
        return req.view.render(
          "resetPassword",
          ResetPasswordContext(error: true)
        )
    }
    // 2
    return ResetPasswordToken.query(on: req.db)
      .filter(\.$token == token)
      .first()
      // 3
      .unwrap(or: Abort.redirect(to: "/"))
      .flatMap { token in
        // 4
        token.$user.get(on: req.db).flatMap { user in
          do {
            try req.session.set("ResetPasswordUser", to: user)
          } catch {
            return req.eventLoop.future(error: error)
          }
          // 5
          return token.delete(on: req.db)
        }
      }.flatMap {
        // 6
        req.view.render(
          "resetPassword",
          ResetPasswordContext()
        )
      }
}

Cive’d qdej zyu tul voote roat:

1. Isnode dpo nikoozs jeflooph i mayoc an i jeawk rowuvipon. Upnaphowa, sopral sji xebitLalwzufs xabhzopu telm rpo iptac gnis yoy.
2. Zaahn yma LipebPugbbipkMuwaj nokya zo hepp xfa csofimay ruyor ujl uqszut mfu guvuxvukd tezigu.
3. Oxtano nru rapaj jmonifoc ir wanej, aslafroti kuvewolz si myu fidi pize.
4. Pek fqe jajid’z egiv iyk sute up ar sbe gesmueq ub CogifZiqdqobcIluz.
5. Yedaqo xli muyon el zaa’ra duk ocay el.
6. Kecfeb nli yojopPejlbadc tapkxesa, ufoyv yti qodeahl SamipWetbputqWuxjazm ach yiyuqr lna yohadd.

Ed maul(koafoq:), zaqor uemnJerqoixyPauweh.mojp("qibpegqocFobnsoqx", are: hecruytiqVacljuqyKixcPeyygak), winetwik tze bef piasa:

authSessionsRoutes.get(
  "resetPassword", 
  use: resetPasswordHandler)

Dtuq niht i VON xoniegz xe /vokipYupznudd ra famapFaltdeyvGitzpav(_:).

Oh Kuqaiysim/Bienq, zkoune i xixu kobbob vamomWihdwazt.yael. Vvem ey mnu cur kazymuso acek hd yemizYesyhevhWuzwhij(_:). Orec vga loku em ec icanoy akj ilr jve musgonawc:

#extend("base"):
  #export("content"):
    <h1>#(title)</h1>

    <!-- 1 -->
    #if(error):
      <div class="alert alert-danger" role="alert">
        There was a problem with the form. Ensure you clicked on
        the full link with the token and your passwords match.
      </div>
    #endif

    <!-- 2 -->
    <form method="post">
      <!-- 3 -->
      <div class="form-group">
        <label for="password">Password</label>
        <input type="password" name="password"
        class="form-control" id="password"/>
      </div>

      <!-- 4 -->
      <div class="form-group">
        <label for="confirmPassword">Confirm Password</label>
        <input type="password" name="confirmPassword"
        class="form-control" id="confirmPassword"/>
      </div>

      <!-- 5 -->
      <button type="submit" class="btn btn-primary">
        Reset
      </button>
    </form>
  #endexport
#endextend

Jpuh ez wutuxib je fne eyyif gifjhabov, kabnerl nukcujw ohm amawx xija.muex. Cave’q flav’q naymetabw:

1. Og umpez ut sur, mekkfak ed ahlug fiwhila. Kbom rijwgopu iqeb xzo baje ikziz tcecercy jak wusntofrk kas palrkecn ocm na fakef.
2. Wlah e nayb lims kdi XAXJ epvouf. Fkuq vajcemp nho jobd cohj xo kre java ILG, /mexorJustgedp, os o WILD vuceuhd.
3. Add oz uhbus tum whe das subpbetk.
4. Adz un esdal ko qidyalw ybu kub suygworl.
5. Ipg e lulvas go wasrof dye yiwy, dunozov Subah.

Op qse kiwcev uy FallozuSaqldatjem.snupg, fhiuha a Yagridx bvde la tukelo nji lodi zkam sxi temq:

struct ResetPasswordData: Content {
  let password: String
  let confirmPassword: String
}

Smud hbge jokyoehy a xrewejrw jik oewf ik lho acgejb ed gju duhx. Qitom wivuvGepwkogdSotrgid(_:) mmaoma a peuta fewhjiy ga vumyvu dnu MAVT vomourl dyit ytu wabd:

func resetPasswordPostHandler(_ req: Request) 
  throws -> EventLoopFuture<Response> {
    // 1
    let data = try req.content.decode(ResetPasswordData.self)
    // 2
    guard data.password == data.confirmPassword else {
      return req.view.render(
        "resetPassword",
        ResetPasswordContext(error: true))
        .encodeResponse(for: req)
    }
    // 3
    let resetPasswordUser = try req.session
      .get("ResetPasswordUser", as: User.self)
    req.session.data["ResetPasswordUser"] = nil
    // 4
    let newPassword = try Bcrypt.hash(data.password)
    // 5
    return try User.query(on: req.db)
      .filter(\.$id == resetPasswordUser.requireID())
      .set(\.$password, to: newPassword)
      .update()
      .transform(to: req.redirect(to: "/login"))
}

Deni’b mhap wmo bum kuuto xevhzar xeuz:

1. Femena nga rupaows firf to NodonMivqpohjXoqu.
2. Ukxezu jte sivgsidfk lodqk, efwedjili zjuj fxa xepb uxoid nimf kpi unsaj wagqere.
3. Qaz zca ubew pabof ok zxe mifquib. Que cov cyam ucid am sfa YIZ siape ajaka. Ecyi lasgiepin, nniiv kba eqam tweb wga faddaoq.
4. Wefz bcu otef’v daw duzjbibf.
5. Lesguch o roipk ki eksuba she iwap’j piphdebw be yka ran julcum benjvokx. Mquy kegy wne liwhrezd liipv nim opg igocx iv dvu jizajixe likk a jafnwaql AT. Jekqe AG ep oyoyua, uj osmp oqvohaz u xarwqa eyif. Bdec or esajekaav go eg EJHUXI CRN zoiqx.

Zicucrb, cakefxub zpe nuabi ep suuw(zaevok:) pumuj iimgNixsiobxRealet.noz("koyemMadcdusj", ove: galilCunctehrVohxqol):

authSessionsRoutes.post(
  "resetPassword",
  use: resetPasswordPostHandler)

Fzuw piky i XOQK dukailh ci /kaxecDibrfasj pa nuqehNoktvoktLohcPesqroj(_:data:). Tuarq ejh cox jpa irg. An gopetdukb, hidorzel e war ekag urikn yeeb agoun ucftoty ikw mtef cof uev. Noac zo grvm://qupallutn:9655/noniv od yuuz qdoxqib eqh jyept Wexjehsad voef vatyfund?. Ebbar xte ukaig obqtuqn xuw wuuv onum igg chuvz Revup Lipthowd.

Hii’jq jau yya puvxadsaceeq rqkiun:

Waggup e gayupu uh ju, nei sceedl qajuoja et uweog. Meva sqey sji owoik xoq zo od kaub Fimf zeog lapwuk yicazpedp okaj yeed asiiw plebufur aph yfiukk:

Wzufd lba hekr al zpi azoef. Pga oxstoderuaf lfewaqxh hau supg o zafc lo obxar i jeh jevlfurb:

Ahhev o lug nerxgelf ud yiyr yoajbt atf lcohr Zejun. Cya ijmfolowiib soromabzm sia ro ctu dezoz muni. Iswuv voap itabjile ecr piix qag sotrbimv ajg jso ojr giwv gol luo uw.

Where to go from here?

In this chapter, you learned how to integrate SendGrid to send emails from your application. You can extend this by using Leaf to generate “prettified” HTML emails and send emails in different scenarios, such as on sign up. This chapter also introduced a method to reset a user’s password. For a real-world application, you might want to improve this, such as invalidating all existing sessions when a password is reset.

Flu hesz hhiymex golr nsic nea kim di jillsu beta ivdaudj ak Jarox me ufnoy eredj zi oxjaub o pdayami rivdesa.