1 files changed, 34 insertions, 0 deletions

diff --git a/server/src/Endpoints/Internal/PasswordResetRequests/FulfillResetRequestRoute.cs b/server/src/Endpoints/Internal/PasswordResetRequests/FulfillResetRequestRoute.cs
new file mode 100644
index 0000000..e33a4fb
--- /dev/null
+++ b/server/src/Endpoints/Internal/PasswordResetRequests/FulfillResetRequestRoute.cs
@@ -0,0 +1,34 @@
+
+namespace IOL.GreatOffice.Api.Endpoints.Internal.PasswordResetRequests;
+
+/// <inheritdoc />
+public class FulfillResetRequestRoute : RouteBaseAsync.WithRequest<FulfillResetRequestPayload>.WithActionResult
+{
+	private readonly ForgotPasswordService _forgotPasswordService;
+
+	/// <inheritdoc />
+	public FulfillResetRequestRoute(ForgotPasswordService forgotPasswordService) {
+		_forgotPasswordService = forgotPasswordService;
+	}
+
+	/// <summary>
+	/// Fulfill a password reset request.
+	/// </summary>
+	/// <param name="request"></param>
+	/// <param name="cancellationToken"></param>
+	/// <returns></returns>
+	[AllowAnonymous]
+	[HttpPost("~/_/forgot-password-requests/fulfill")]
+	public override async Task<ActionResult> HandleAsync(FulfillResetRequestPayload request, CancellationToken cancellationToken = default) {
+		try {
+			var fulfilled = await _forgotPasswordService.FullFillRequestAsync(request.Id, request.NewPassword, cancellationToken);
+			return Ok(fulfilled);
+		} catch (Exception e) {
+			if (e is ForgotPasswordRequestNotFoundException or UserNotFoundException) {
+				return NotFound();
+			}
+
+			throw;
+		}
+	}
+}