reset password in asp.net core

Author: nitish-kaushik

Webgentle.BookStore/Webgentle.BookStore/Controllers/AccountController.cs

@@ -187,5 +187,38 @@ public async Task<IActionResult> ForgotPassword(ForgotPasswordModel model)
             }
             return View(model);
         }
+
+        [AllowAnonymous, HttpGet("reset-password")]
+        public IActionResult ResetPassword(string uid, string token)
+        {
+            ResetPasswordModel resetPasswordModel = new ResetPasswordModel
+            {
+                Token = token,
+                UserId = uid
+            };
+            return View(resetPasswordModel);
+        }
+
+        [AllowAnonymous, HttpPost("reset-password")]
+        public async Task<IActionResult> ResetPassword(ResetPasswordModel model)
+        {
+            if (ModelState.IsValid)
+            {
+                model.Token = model.Token.Replace(' ', '+');
+                var result = await  _accountRepository.ResetPasswordAsync(model);
+                if (result.Succeeded)
+                {
+                    ModelState.Clear();
+                    model.IsSuccess = true;
+                    return View(model);
+                }
+
+                foreach (var error in result.Errors)
+                {
+                    ModelState.AddModelError("", error.Description);
+                }
+            }
+            return View(model);
+        }
     }
 }

Webgentle.BookStore/Webgentle.BookStore/EmailTemplate/ForgotPassword.html

@@ -9,6 +9,6 @@
         Hello {{UserName}}, <br />
         Click on the following link to reset your password. <br /><br />
 
-        <a href="{{Link}}">Verify email</a>
+        <a href="{{Link}}">Reset password</a>
 </body>
 </html>

Webgentle.BookStore/Webgentle.BookStore/Models/ResetPasswordModel.cs

@@ -0,0 +1,26 @@
+using System;
+using System.Collections.Generic;
+using System.ComponentModel.DataAnnotations;
+using System.Linq;
+using System.Threading.Tasks;
+
+namespace Webgentle.BookStore.Models
+{
+    public class ResetPasswordModel
+    {
+        [Required]
+        public string UserId { get; set; }
+
+        [Required]
+        public string Token { get; set; }
+
+        [Required, DataType(DataType.Password)]
+        public string NewPassword { get; set; }
+
+        [Required, DataType(DataType.Password)]
+        [Compare("NewPassword")]
+        public string ConfirmNewPassword { get; set; }
+
+        public bool IsSuccess { get; set; }
+    }
+}

Webgentle.BookStore/Webgentle.BookStore/Repository/AccountRepository.cs

@@ -94,6 +94,11 @@ public async Task<IdentityResult> ConfirmEmailAsync(string uid, string token)
             return await _userManager.ConfirmEmailAsync(await _userManager.FindByIdAsync(uid), token);
         }
 
+        public async Task<IdentityResult> ResetPasswordAsync(ResetPasswordModel model)
+        {
+            return await _userManager.ResetPasswordAsync(await _userManager.FindByIdAsync(model.UserId), model.Token, model.NewPassword);
+        }
+
         private async Task SendEmailConfirmationEmail(ApplicationUser user, string token)
         {
             string appDomain = _configuration.GetSection("Application:AppDomain").Value;

Webgentle.BookStore/Webgentle.BookStore/Repository/IAccountRepository.cs

@@ -21,5 +21,7 @@ public interface IAccountRepository
         Task GenerateEmailConfirmationTokenAsync(ApplicationUser user);
 
         Task GenerateForgotPasswordTokenAsync(ApplicationUser user);
+
+        Task<IdentityResult> ResetPasswordAsync(ResetPasswordModel model);
     }
 }

Webgentle.BookStore/Webgentle.BookStore/Views/Account/ResetPassword.cshtml

@@ -0,0 +1,46 @@
+@model Webgentle.BookStore.Models.ResetPasswordModel
+
+@{
+    ViewData["Title"] = "ResetPassword";
+}
+<div class="container">
+
+    <h1 class="display-4">Reset password</h1>
+
+    <hr />
+    <div class="row">
+        <div class="offset-4 col-md-4">
+            @if (Model?.IsSuccess == true)
+            {
+                <div class="alert alert-success" role="alert">
+                    <p>
+                       You have updated your password successfully.
+                    </p>
+                </div>
+            }
+            else
+            {
+                <form asp-action="ResetPassword">
+                    <div asp-validation-summary="ModelOnly" class="text-danger"></div>
+                    <input type="hidden" asp-for="UserId" class="form-control" />
+                    <input type="hidden" asp-for="Token" class="form-control" />
+                    <div class="form-group">
+                        <label asp-for="NewPassword" class="control-label"></label>
+                        <input asp-for="NewPassword" class="form-control" />
+                        <span asp-validation-for="NewPassword" class="text-danger"></span>
+                    </div>
+                    <div class="form-group">
+                        <label asp-for="ConfirmNewPassword" class="control-label"></label>
+                        <input asp-for="ConfirmNewPassword" class="form-control" />
+                        <span asp-validation-for="ConfirmNewPassword" class="text-danger"></span>
+                    </div>
+                    <div class="form-group">
+                        <input type="submit" value="Reset password" class="btn btn-primary" />
+                    </div>
+                </form>
+            }
+
+        </div>
+    </div>
+
+</div>