wip

mcelicalderon · mcelicalderon · commit 83f83af30f1f · 2019-09-14T13:09:19.000-05:00
diff --git a/app/graphql/graphql_devise/mutations/send_password_reset.rb b/app/graphql/graphql_devise/mutations/send_password_reset.rb
@@ -0,0 +1,29 @@
+module GraphqlDevise
+  module Mutations
+    class SendPasswordReset < Base
+      argument :email,         String, required: true, prepare: ->(email, _) { email.downcase }
+      argument :redirect_url,  String, required: true
+
+      def resolve(email:, redirect_url:)
+        resource = controller.find_resource(:uid, email)
+
+        if resource
+          yield resource if block_given?
+          resource.send_reset_password_instructions(
+            email:        email,
+            provider:     'email',
+            redirect_url: redirect_url
+          )
+
+          if resource.errors.empty?
+            { authenticable: resource }
+          else
+            raise_user_error_list(I18n.t('graphql_devise.invalid_resource'), errors: resource.errors.full_messages)
+          end
+        else
+          raise_user_error(I18n.t('graphql_devise.user_not_found'))
+        end
+      end
+    end
+  end
+end
diff --git a/app/helpers/graphql_devise/mailer_helper.rb b/app/helpers/graphql_devise/mailer_helper.rb
@@ -9,6 +9,19 @@ def confirmation_query(resource_name)
           }
         }
       GRAPHQL
+      ERB::Util.url_encode(raw.delete("\n").delete(' '))
+    end
+
+    def password_reset_query(token:, redirect_url:, resource_name:)
+      raw = <<-GRAPHQL
+        mutation($token:ID!,redirectUrl:String!){
+          #{resource_name.camelize(:lower)}CheckPasswordToken(token:$token,redirectUrl:$redirectUrl
+            ){
+            authenticable{ email }
+          }
+        }&variables={token:"#{token}",redirectUrl:"#{redirect_url}"}
+      GRAPHQL
+
       raw.delete("\n").delete(' ')
     end
   end
diff --git a/app/views/devise/mailer/reset_password_instructions.html.erb b/app/views/devise/mailer/reset_password_instructions.html.erb
@@ -0,0 +1,8 @@
+<p><%= t(:hello).capitalize %> <%= @resource.email %>!</p>
+
+<p><%= t '.request_reset_link_msg' %></p>
+
+<p><%= link_to t('.password_change_link'), url_for(controller: 'graphql_devise/graphql', action: :auth, query: password_reset_query(token: @token, redirect_url: message['redirect-url'], resource_name: @resource.class.to_s).html_safe) %></p>
+
+<p><%= t '.ignore_mail_msg' %></p>
+<p><%= t '.no_changes_msg' %></p>
diff --git a/config/locales/en.yml b/config/locales/en.yml
@@ -4,6 +4,7 @@ en:
     resource_build_failed: "Resource couldn't be built, execution stopped."
     not_authenticated: "User is not logged in."
     user_not_found: "User was not found or was not logged in."
+    invalid_resource: "Errors present in the resource."
     passwords:
       update_password_error: "Unable to update user password"
       missing_passwords: "You must fill out the fields labeled 'Password' and 'Password confirmation'."
diff --git a/lib/graphql_devise/rails/routes.rb b/lib/graphql_devise/rails/routes.rb
@@ -22,6 +22,7 @@ def mount_graphql_devise_for(resource, opts = {})
         logout:               GraphqlDevise::Mutations::Logout,
         sign_up:              GraphqlDevise::Mutations::SignUp,
         update_password:      GraphqlDevise::Mutations::UpdatePassword,
+        send_reset_password:  GraphqlDevise::Mutations::SendPasswordReset,
         check_password_token: GraphqlDevise::Mutations::CheckPasswordToken
       }.freeze
 
@@ -57,7 +58,7 @@ def mount_graphql_devise_for(resource, opts = {})
         GraphqlDevise::Types::QueryType.field("#{mapping_name}_#{action}", resolver: used_query)
       end
 
-      Devise.mailer.send(:add_template_helper, GraphqlDevise::MailerHelper)
+      Devise.mailer.helper(GraphqlDevise::MailerHelper)
 
       devise_scope mapping_name.to_sym do
         post "#{path}/graphql_auth", to: 'graphql_devise/graphql#auth'
diff --git a/spec/dummy/config/locales/en.yml b/spec/dummy/config/locales/en.yml
@@ -30,4 +30,4 @@
 # available at http://guides.rubyonrails.org/i18n.html.
 
 en:
-  hello: "Hello world"
+  hello_world: "Hello world"
diff --git a/spec/requests/mutations/send_password_reset_spec.rb b/spec/requests/mutations/send_password_reset_spec.rb
@@ -0,0 +1,32 @@
+require 'rails_helper'
+
+RSpec.describe 'Send Password Reset Requests' do
+  include_context 'with graphql query request'
+
+  let(:user)         { create(:user, :confirmed) }
+  let(:redirect_url) { Faker::Internet.url }
+  let(:query) do
+    <<-GRAPHQL
+      mutation {
+        userSendResetPassword(
+          email:       "#{user.email}",
+          redirectUrl: "#{redirect_url}"
+        ) {
+          authenticable {
+            email
+          }
+        }
+      }
+    GRAPHQL
+  end
+
+  context 'when params are correct' do
+    it 'sends password reset  email' do
+      expect { post_request }.to change(ActionMailer::Base.deliveries, :count).by(1)
+
+      email = ActionMailer::Base.deliveries.last
+      query = ERB::Util.url_encode("mutation($token:ID!,redirectUrl:String!){userCheckPasswordToken(token:$token,redirectUrl:$redirectUrl){authenticable{email}}}&variables={token:").html_safe
+      expect(email.body.decoded).to match(/query=#{query}/)
+    end
+  end
+end
