Search code examples
c#.net-coreamazon-cognitoamazon-cognito-triggers

How to use Forgot password custom template on .net using AWS cognito?

I'm sending a custom email using cognito for forgot password.Where do i need to set the code without trigger lambda?

Solution

  • Forgot Password Request :-

    public async Task<Result> ForgotPassword(string email)
    {
        using (var cognito = new AmazonCognitoIdentityProviderClient(AWSConnection.AWS_AccessKey, AWSConnection.AWS_SecretKey, AWSConnection.AWSRegion))
        {
            ListUsersRequest listUsersRequest = new ListUsersRequest();
            listUsersRequest.UserPoolId = _openIdConnect.MetadataAddress.Split("/")[3];
            listUsersRequest.Filter = string.Format("email = \"{0}\"", email.ToLower()); //Get Data by Email from UserPool
            ListUsersResponse listUsersResponse = await cognito.ListUsersAsync(listUsersRequest);
            if (listUsersResponse.Users.Any())
            {
                ForgotPasswordRequest forgotPasswordRequest = new ForgotPasswordRequest();
                forgotPasswordRequest.Username = listUsersResponse.Users.Select(x => x.Username).FirstOrDefault();
                forgotPasswordRequest.ClientId = _openIdConnect.ClientId;
                ForgotPasswordResponse forgotPasswordResponse = await cognito.ForgotPasswordAsync(forgotPasswordRequest).ConfigureAwait(false);
                return Result.Execute(StatusCodes.Status200OK, GlobalMessages.FETCH_SUCCESS, forgotPasswordResponse);
            }
            else
            {
                return Result.Execute(StatusCodes.Status200OK, GlobalMessages.UserNotFound);
            }
        }
    }

    trigger CustomMessage_ForgotPassword Lambda :- 

    public RootObject FunctionHandler(RootObject input, ILambdaContext context)
    {
        string link = $"https://your-website.com/reset-password?confirmation_code=${input.request.codeParameter}&userName=${input.userName};
        var CustomMessage_ForgotPassword = string.Format("Follow this link to reset your Password.{0}", link);
        if (input.userPoolId == "YOUR USER POOL ID")
        {
            Console.WriteLine(input.userPoolId);
            if (input.triggerSource == "CustomMessage_ForgotPassword")
            {
                input.response.emailSubject = "Forgot Password";
                input.response.emailMessage = CustomMessage_ForgotPassword;
            }
        }
        return input;
    }

    Models in lambda function:- 

         public class CallerContext
    {
        public string awsSdkVersion { get; set; }
        public string clientId { get; set; }
    }

    public class UserAttributes
    {
        public string sub { get; set; }
        public string email_verified { get; set; }
        public string name { get; set; }
        public string phone_number_verified { get; set; }
        public string phone_number { get; set; }
        public string email { get; set; }
    }

    public class Request
    {
        public UserAttributes userAttributes { get; set; }
        public string codeParameter { get; set; } = "####";
        public string linkParameter { get; set; }
        public object usernameParameter { get; set; }
    }

    public class Response
    {
        public object smsMessage { get; set; }
        public object emailMessage { get; set; }
        public object emailSubject { get; set; }
    }

    public class RootObject
    {
        public string version { get; set; }
        public string region { get; set; }
        public string userPoolId { get; set; }
        public string userName { get; set; }
        public CallerContext callerContext { get; set; }
        public string triggerSource { get; set; }
        public Request request { get; set; }
        public Response response { get; set; }
    }

    Confirm Forgot Password :- 

      public async Task<Result> ConfirmForgotPassword(ConfirmForgotPasswordDTO confirmForgotPasswordDTO)
    {            
        using (var cognito = new AmazonCognitoIdentityProviderClient(AWSConnection.AWS_AccessKey, AWSConnection.AWS_SecretKey, AWSConnection.AWSRegion))
        {
            ConfirmForgotPasswordRequest confirmForgotPasswordRequest = new ConfirmForgotPasswordRequest();
            confirmForgotPasswordRequest.Username = ConfirmForgotPasswordDTO.UserName;
            confirmForgotPasswordRequest.ClientId = _openIdConnect.ClientId;
            confirmForgotPasswordRequest.Password = confirmForgotPasswordDTO.Password;
            confirmForgotPasswordRequest.ConfirmationCode = confirmForgotPasswordDTO.ConfirmationCode;
            ConfirmForgotPasswordResponse confirmForgotPasswordResponse = new ConfirmForgotPasswordResponse();
            string message = string.Empty;
            try
            {
                confirmForgotPasswordResponse = await cognito.ConfirmForgotPasswordAsync(confirmForgotPasswordRequest).ConfigureAwait(false);
            }
            catch (ExpiredCodeException ex)
            {
                message = ex.Message;
            }
            catch (InvalidPasswordException ex)
            {
                message = ex.Message;
            }
            catch (Amazon.CognitoIdentityProvider.Model.LimitExceededException ex)
            {
                message = ex.Message;
            }
            catch (UserNotFoundException ex)
            {
                message = ex.Message;
            }
            catch (UserNotConfirmedException ex)
            {
                message = ex.Message;
            }
            if (confirmForgotPasswordResponse.HttpStatusCode == HttpStatusCode.OK)
            {
                return Result.Execute(StatusCodes.Status200OK, GlobalMessages.PasswordChangedSuccessfully, confirmForgotPasswordResponse);
            }
            return Result.Execute(StatusCodes.Status400BadRequest, message);
        }
    }

    Confirm forgot password:- 

    public class ConfirmForgotPasswordDTO
    {
        public string ConfirmationCode { get; set; }
        public string UserName { get; set; }
        public string Password { get; set; }