Skip to content
This repository has been archived by the owner on Sep 10, 2024. It is now read-only.

Commit

Permalink
Code-split the password channge page
Browse files Browse the repository at this point in the history
  • Loading branch information
@sandhose
sandhose committed Jul 17, 2024
1 parent bd35984 commit 2649d66
Show file tree
Hide file tree
Showing 3 changed files with 347 additions and 306 deletions.
4 changes: 3 additions & 1 deletion frontend/src/routeTree.gen.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -53,7 +53,9 @@ const ClientsIdRoute = ClientsIdImport.update({
const PasswordChangeIndexRoute = PasswordChangeIndexImport.update({
path: '/password/change/',
getParentRoute: () => rootRoute,
} as any)
} as any).lazy(() =>
import('./routes/password.change.index.lazy').then((d) => d.Route),
)

const AccountSessionsIndexRoute = AccountSessionsIndexImport.update({
path: '/sessions/',
Expand Down
343 changes: 343 additions & 0 deletions frontend/src/routes/password.change.index.lazy.tsx
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,343 @@
// Copyright 2024 The Matrix.org Foundation C.I.C.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

import {
createLazyFileRoute,
notFound,
useRouter,
} from "@tanstack/react-router";
import IconLockSolid from "@vector-im/compound-design-tokens/assets/web/icons/lock-solid";
import { Alert, Form, Progress, Separator } from "@vector-im/compound-web";
import {
FormEvent,
useDeferredValue,
useEffect,
useRef,
useState,
} from "react";
import { useTranslation } from "react-i18next";
import { useMutation, useQuery } from "urql";

import BlockList from "../components/BlockList";
import { ButtonLink } from "../components/ButtonLink";
import Layout from "../components/Layout";
import LoadingSpinner from "../components/LoadingSpinner";
import PageHeading from "../components/PageHeading";
import { graphql } from "../gql";
import { SetPasswordStatus } from "../gql/graphql";
import {
PasswordComplexity,
estimatePasswordComplexity,
} from "../utils/password_complexity";

const QUERY = graphql(/* GraphQL */ `
query PasswordChangeQuery {
viewer {
__typename
... on Node {
id
}
}
siteConfig {
id
minimumPasswordComplexity
}
}
`);

const CHANGE_PASSWORD_MUTATION = graphql(/* GraphQL */ `
mutation ChangePassword(
$userId: ID!
$oldPassword: String!
$newPassword: String!
) {
setPassword(
input: {
userId: $userId
currentPassword: $oldPassword
newPassword: $newPassword
}
) {
status
}
}
`);

export const Route = createLazyFileRoute("/password/change/")({
component: ChangePassword,
});

const usePasswordComplexity = (password: string): PasswordComplexity => {
const { t } = useTranslation();
const [result, setResult] = useState<PasswordComplexity>({
score: 0,
scoreText: t("frontend.password_strength.placeholder"),
improvementsText: [],
});
const deferredPassword = useDeferredValue(password);

useEffect(() => {
if (deferredPassword === "") {
setResult({
score: 0,
scoreText: t("frontend.password_strength.placeholder"),
improvementsText: [],
});
} else {
estimatePasswordComplexity(deferredPassword, t).then((response) =>
setResult(response),
);
}
}, [deferredPassword, t]);

return result;
};

function ChangePassword(): React.ReactNode {
const { t } = useTranslation();
const [queryResult] = useQuery({ query: QUERY });
const router = useRouter();
if (queryResult.error) throw queryResult.error;
if (queryResult.data?.viewer.__typename !== "User") throw notFound();
const userId = queryResult.data.viewer.id;
const minPasswordComplexity =
queryResult.data.siteConfig.minimumPasswordComplexity;

const currentPasswordRef = useRef<HTMLInputElement>(null);
const newPasswordRef = useRef<HTMLInputElement>(null);
const newPasswordAgainRef = useRef<HTMLInputElement>(null);
const [newPassword, setNewPassword] = useState("");

const [result, changePassword] = useMutation(CHANGE_PASSWORD_MUTATION);

const onSubmit = async (event: FormEvent<HTMLFormElement>): Promise<void> => {
event.preventDefault();

const formData = new FormData(event.currentTarget);

const oldPassword = formData.get("current_password") as string;
const newPassword = formData.get("new_password") as string;
const newPasswordAgain = formData.get("new_password_again") as string;

if (newPassword !== newPasswordAgain) {
throw new Error("passwords mismatch; this should be checked by the form");
}

const response = await changePassword({ userId, oldPassword, newPassword });

if (response.data?.setPassword.status === SetPasswordStatus.Allowed) {
router.navigate({ to: "/password/change/success" });
}
};

const unhandleableError = result.error !== undefined;

const errorMsg: string | undefined = ((): string | undefined => {
switch (result.data?.setPassword.status) {
case SetPasswordStatus.NoCurrentPassword:
return t(
"frontend.password_change.failure.description.no_current_password",
);
case SetPasswordStatus.PasswordChangesDisabled:
return t(
"frontend.password_change.failure.description.password_changes_disabled",
);

case SetPasswordStatus.WrongPassword:
case SetPasswordStatus.InvalidNewPassword:
// These cases are shown as inline errors in the form itself.
return undefined;

case SetPasswordStatus.Allowed:
case undefined:
return undefined;

default:
throw new Error(
`unexpected error when changing password: ${result.data!.setPassword.status}`,
);
}
})();

const passwordComplexity = usePasswordComplexity(newPassword);
let passwordStrengthTint;
if (newPassword === "") {
passwordStrengthTint = undefined;
} else {
passwordStrengthTint = ["red", "red", "orange", "lime", "green"][
passwordComplexity.score
] as "red" | "orange" | "lime" | "green" | undefined;
}

return (
<Layout>
<BlockList>
<PageHeading
Icon={IconLockSolid}
title={t("frontend.password_change.title")}
subtitle={t("frontend.password_change.subtitle")}
/>

<Form.Root onSubmit={onSubmit} method="POST">
{/*
In normal operation, the submit event should be `preventDefault()`ed.
method = POST just prevents sending passwords in the query string,
which could be logged, if for some reason the event handler fails.
*/}
{unhandleableError && (
<Alert
type="critical"
title={t("frontend.password_change.failure.title")}
>
{t("frontend.password_change.failure.description.unspecified")}
</Alert>
)}

{errorMsg !== undefined && (
<Alert
type="critical"
title={t("frontend.password_change.failure.title")}
>
{errorMsg}
</Alert>
)}

<Form.Field
name="current_password"
serverInvalid={
result.data?.setPassword.status ===
SetPasswordStatus.WrongPassword
}
>
<Form.Label>
{t("frontend.password_change.current_password_label")}
</Form.Label>

<Form.PasswordControl
required
autoComplete="current-password"
ref={currentPasswordRef}
/>

<Form.ErrorMessage match="valueMissing">
{t("frontend.errors.field_required")}
</Form.ErrorMessage>

{result.data &&
result.data.setPassword.status ===
SetPasswordStatus.WrongPassword && (
<Form.ErrorMessage>
{t(
"frontend.password_change.failure.description.wrong_password",
)}
</Form.ErrorMessage>
)}
</Form.Field>

<Separator />

<Form.Field name="new_password">
<Form.Label>
{t("frontend.password_change.new_password_label")}
</Form.Label>

<Form.PasswordControl
required
autoComplete="new-password"
ref={newPasswordRef}
onBlur={() =>
newPasswordAgainRef.current!.value &&
newPasswordAgainRef.current!.reportValidity()
}
onChange={(e) => setNewPassword(e.target.value)}
/>

<Progress
size="sm"
getValueLabel={() => passwordComplexity.scoreText}
tint={passwordStrengthTint}
max={4}
value={passwordComplexity.score}
/>

{passwordComplexity.improvementsText.map((suggestion) => (
<Form.HelpMessage>{suggestion}</Form.HelpMessage>
))}

{passwordComplexity.score < minPasswordComplexity && (
<Form.ErrorMessage match={() => true}>
{t("frontend.password_strength.too_weak")}
</Form.ErrorMessage>
)}

<Form.ErrorMessage match="valueMissing">
{t("frontend.errors.field_required")}
</Form.ErrorMessage>

{result.data &&
result.data.setPassword.status ===
SetPasswordStatus.InvalidNewPassword && (
<Form.ErrorMessage>
{t(
"frontend.password_change.failure.description.invalid_new_password",
)}
</Form.ErrorMessage>
)}
</Form.Field>

<Form.Field name="new_password_again">
{/*
TODO This field has validation defects,
some caused by Radix-UI upstream bugs.
https://github.com/matrix-org/matrix-authentication-service/issues/2855
*/}
<Form.Label>
{t("frontend.password_change.new_password_again_label")}
</Form.Label>

<Form.PasswordControl
required
ref={newPasswordAgainRef}
autoComplete="new-password"
/>

<Form.ErrorMessage match="valueMissing">
{t("frontend.errors.field_required")}
</Form.ErrorMessage>

<Form.ErrorMessage
match={(v, form) => v !== form.get("new_password")}
>
{t("frontend.password_change.passwords_no_match")}
</Form.ErrorMessage>

<Form.SuccessMessage match="valid">
{t("frontend.password_change.passwords_match")}
</Form.SuccessMessage>
</Form.Field>

<Form.Submit kind="primary" disabled={result.fetching}>
{!!result.fetching && <LoadingSpinner inline />}
{t("action.save")}
</Form.Submit>

<ButtonLink to="/" kind="tertiary">
{t("action.cancel")}
</ButtonLink>
</Form.Root>
</BlockList>
</Layout>
);
}
Loading

0 comments on commit 2649d66

Please sign in to comment.