+password changed email

logerzerox · logerzerox · commit 9f6868a02d73 · 2025-01-08T18:23:31.000+08:00
diff --git a/py/core/base/providers/email.py b/py/core/base/providers/email.py
@@ -19,6 +19,7 @@ class EmailConfig(ProviderConfig):
     reset_password_template_id: Optional[str] = None
     frontend_url: Optional[str] = None
     sender_name: Optional[str] = None
+    password_changed_template_id: Optional[str] = None
 
     @property
     def supported_providers(self) -> list[str]:
@@ -74,3 +75,12 @@ async def send_password_reset_email(
         self, to_email: str, reset_token: str, *args, **kwargs
     ) -> None:
         pass
+
+    @abstractmethod
+    async def send_password_changed_email(
+        self,
+        to_email: str,
+        *args,
+        **kwargs,
+    ) -> None:
+        pass
diff --git a/py/core/providers/auth/r2r_auth.py b/py/core/providers/auth/r2r_auth.py
@@ -392,6 +392,14 @@ async def change_password(
             id=user.id,
             new_hashed_password=hashed_new_password,
         )
+
+        try:
+            await self.email_provider.send_password_change_notification(
+                user.email, {"first_name": user.name.split(" ")[0]}
+            )
+        except Exception as e:
+            logger.error(f"Failed to send password change notification: {str(e)}")
+
         return {"message": "Password changed successfully"}
 
     async def request_password_reset(self, email: str) -> dict[str, str]:
@@ -447,9 +455,22 @@ async def confirm_password_reset(
             id=user_id,
             new_hashed_password=hashed_new_password,
         )
+
         await self.database_provider.users_handler.remove_reset_token(
             id=user_id
         )
+        
+         # Get the user information
+        user = await self.database_provider.users_handler.get_user_by_id(
+            id=user_id
+        )
+        logger.info(user)
+        try:
+            await self.email_provider.send_password_changed_email(
+                user.email, {"first_name": user.name.split(" ")[0]}
+            )
+        except Exception as e:
+            logger.error(f"Failed to send password change notification: {str(e)}")
         return {"message": "Password reset successfully"}
 
     async def logout(self, token: str) -> dict[str, str]:
diff --git a/py/core/providers/email/console_mock.py b/py/core/providers/email/console_mock.py
@@ -56,3 +56,19 @@ async def send_password_reset_email(
         -----------------------------
         """
         )
+
+    async def send_password_changed_email(
+        self, to_email: str, *args, **kwargs
+    ) -> None:
+        logger.info(
+            f"""
+            -------- Email Message --------
+            To: {to_email}
+            Subject: Your Password Has Been Changed
+            Body:
+            Your password has been successfully changed.
+            
+            For security reasons, you will need to log in again on all your devices.
+            -----------------------------
+            """
+        )
diff --git a/py/core/providers/email/sendgrid.py b/py/core/providers/email/sendgrid.py
@@ -37,6 +37,10 @@ def __init__(self, config: EmailConfig):
             config.reset_password_template_id
             or os.getenv("SENDGRID_RESET_TEMPLATE_ID")
         )
+        self.password_changed_template_id = (
+            config.password_changed_template_id
+            or os.getenv("SENDGRID_PASSWORD_CHANGED_TEMPLATE_ID")
+        )
         self.client = SendGridAPIClient(api_key=self.api_key)
         self.sender_name = config.sender_name
 
@@ -208,3 +212,46 @@ async def send_password_reset_email(
             )
             logger.error(error_msg)
             raise RuntimeError(error_msg) from e
+
+    async def send_password_changed_email(
+        self,
+        to_email: str,
+        dynamic_template_data: Optional[dict] = None,
+        *args,
+        **kwargs
+    ) -> None:
+        try:
+            if hasattr(self, 'password_changed_template_id') and self.password_changed_template_id:
+                await self.send_email(
+                    to_email=to_email,
+                    template_id=self.password_changed_template_id,
+                    dynamic_template_data=dynamic_template_data,
+                )
+            else:
+                subject = "Your Password Has Been Changed"
+                body = """
+                Your password has been successfully changed.
+
+                If you did not make this change, please contact support immediately and secure your account.
+
+                For security reasons, you will need to log in again on all your devices.
+                """
+                html_body = """
+                <div style="font-family: Arial, sans-serif; max-width: 600px; margin: 0 auto;">
+                    <h1>Password Changed Successfully</h1>
+                    <p>Your password has been successfully changed.</p>
+                    
+                    <p>For security reasons, you will need to log in again on all your devices.</p>
+                </div>
+                """
+                # Move send_email inside the else block
+                await self.send_email(
+                    to_email=to_email,
+                    subject=subject,
+                    html_body=html_body,
+                    body=body,
+                )
+        except Exception as e:
+            error_msg = f"Failed to send password change notification to {to_email}: {str(e)}"
+            logger.error(error_msg)
+            raise RuntimeError(error_msg) from e
diff --git a/py/core/providers/email/smtp.py b/py/core/providers/email/smtp.py
@@ -150,3 +150,32 @@ async def send_password_reset_email(
             body=body,
             html_body=html_body,
         )
+
+    async def send_password_changed_email(
+        self, 
+        to_email: str, 
+        *args, 
+        **kwargs
+    ) -> None:
+        body = """
+        Your password has been successfully changed.
+
+        If you did not make this change, please contact support immediately and secure your account.
+
+        For security reasons, you will need to log in again on all your devices.
+        """
+
+        html_body = """
+        <div style="font-family: Arial, sans-serif; max-width: 600px; margin: 0 auto;">
+            <h1>Password Changed Successfully</h1>
+            <p>Your password has been successfully changed.</p>
+            <p>For security reasons, you will need to log in again on all your devices.</p>
+        </div>
+        """
+
+        await self.send_email(
+            to_email=to_email,
+            subject="Your Password Has Been Changed",
+            body=body,
+            html_body=html_body,
+        )
