SMTP fixes for user management backend

packages/cli/commands/start.ts

@@ -11,7 +11,6 @@ import { BinaryDataManager, IBinaryDataConfig, TUNNEL_SUBDOMAIN_ENV, UserSetting
 import { Command, flags } from '@oclif/command';
 // eslint-disable-next-line import/no-extraneous-dependencies
 import * as Redis from 'ioredis';
-import { AES, enc } from 'crypto-js';
 
 import { IDataObject, LoggerProxy } from 'n8n-workflow';
 import { createHash } from 'crypto';
@@ -219,38 +218,6 @@ export class Start extends Command {
 					throw new Error(RESPONSE_ERROR_MESSAGES.NO_ENCRYPTION_KEY);
 				}
 
-				if (config.get('userManagement.emails.mode') === 'smtp') {
-					const { auth, ...rest } = config.get('userManagement.emails.smtp');
-
-					const encryptedAuth = {
-						user: auth.user,
-						pass: AES.encrypt(auth.pass, encryptionKey).toString(),
-					};
-
-					await Db.collections.Settings!.save({
-						key: 'userManagement.emails.smtp',
-						value: JSON.stringify({ ...rest, auth: encryptedAuth }),
-						loadOnStartup: false,
-					});
-				} else {
-					// If we don't have SMTP settings, try loading from db.
-					const smtpSetting = await Db.collections.Settings!.findOne({
-						key: 'userManagement.emails.smtp',
-					});
-
-					if (smtpSetting) {
-						const { auth, ...rest } = JSON.parse(smtpSetting.value) as SmtpConfig;
-
-						const decryptedAuth = {
-							user: auth.user,
-							pass: AES.decrypt(auth.pass, encryptionKey).toString(enc.Utf8),
-						};
-
-						config.set('userManagement.emails.mode', 'smtp');
-						config.set('userManagement.emails.smtp', { ...rest, auth: decryptedAuth });
-					}
-				}
-
 				// Load settings from database and set them to config.
 				const databaseSettings = await Db.collections.Settings!.find({ loadOnStartup: true });
 				databaseSettings.forEach((setting) => {

packages/cli/config/index.ts

@@ -598,47 +598,47 @@ const config = convict({
 			mode: {
 				doc: 'How to send emails',
 				format: ['', 'smtp'],
-				default: '',
-				env: 'N8N_UM_EMAIL_MODE',
+				default: 'smtp',
+				env: 'N8N_MODE',
 			},
 			smtp: {
 				host: {
 					doc: 'SMTP server host',
-					format: String,
-					default: 'smtp.gmail.com',
-					env: 'N8N_UM_EMAIL_SMTP_HOST',
+					format: String, // e.g. 'smtp.gmail.com'
+					default: '',
+					env: 'N8N_SMTP_HOST',
 				},
 				port: {
-					doc: 'SMTP Server port',
+					doc: 'SMTP server port',
 					format: Number,
 					default: 465,
-					env: 'N8N_UM_EMAIL_SMTP_PORT',
+					env: 'N8N_SMTP_PORT',
 				},
 				secure: {
-					doc: 'Whether or not to use SSL',
+					doc: 'Whether or not to use SSL for SMTP',
 					format: Boolean,
 					default: true,
-					env: 'N8N_UM_EMAIL_SMTP_SSL',
+					env: 'N8N_SMTP_SSL',
 				},
 				auth: {
 					user: {
-						doc: 'SMTP Login username',
-						format: String,
-						default: 'youremail@gmail.com',
-						env: 'N8N_UM_EMAIL_SMTP_USER',
+						doc: 'SMTP login username',
+						format: String, // e.g.'you@gmail.com'
+						default: '',
+						env: 'N8N_SMTP_USER',
 					},
 					pass: {
-						doc: 'SMTP Login password',
+						doc: 'SMTP login password',
 						format: String,
-						default: 'my-super-password',
-						env: 'N8N_UM_EMAIL_SMTP_PASS',
+						default: '',
+						env: 'N8N_SMTP_PASS',
 					},
 				},
 				sender: {
 					doc: 'How to display sender name',
 					format: String,
-					default: '"n8n rocks" <n8n@n8n.io>',
-					env: 'N8N_UM_EMAIL_SMTP_SENDER',
+					default: '',
+					env: 'N8N_SMTP_SENDER',
 				},
 			},
 			templates: {

packages/cli/src/UserManagement/email/Interfaces.ts

@@ -1,5 +1,6 @@
 export interface UserManagementMailerImplementation {
 	sendMail: (mailData: MailData) => Promise<SendEmailResult>;
+	verifyConnection: () => Promise<void>;
 }
 
 export type InviteEmailData = {

packages/cli/src/UserManagement/email/NodeMailer.ts

@@ -19,10 +19,37 @@ export class NodeMailer implements UserManagementMailerImplementation {
 		});
 	}
 
+	async verifyConnection(): Promise<void> {
+		const host = config.get('userManagement.emails.smtp.host') as string;
+		const user = config.get('userManagement.emails.smtp.auth.user') as string;
+		const pass = config.get('userManagement.emails.smtp.auth.pass') as string;
+
+		return new Promise((resolve, reject) => {
+			this.transport.verify((error: Error) => {
+				if (!error) resolve();
+
+				const message = [];
+
+				if (!host) message.push('SMTP host not defined (N8N_SMTP_HOST).');
+				if (!user) message.push('SMTP user not defined (N8N_SMTP_USER).');
+				if (!pass) message.push('SMTP pass not defined (N8N_SMTP_PASS).');
+
+				reject(new Error(message.join(' ')));
+			});
+		});
+	}
+
 	async sendMail(mailData: MailData): Promise<SendEmailResult> {
+		let sender = config.get('userManagement.emails.smtp.sender');
+		const user = config.get('userManagement.emails.smtp.auth.user') as string;
+
+		if (!sender && user.includes('@')) {
+			sender = user;
+		}
+
 		try {
 			await this.transport.sendMail({
-				from: config.get('userManagement.emails.smtp.sender'),
+				from: sender,
 				to: mailData.emailRecipients,
 				subject: mailData.subject,
 				text: mailData.textOnly,

packages/cli/src/UserManagement/email/UserManagementMailer.ts

@@ -50,6 +50,12 @@ export class UserManagementMailer {
 		}
 	}
 
+	async verifyConnection(): Promise<void> {
+		if (!this.mailer) return Promise.reject();
+
+		return this.mailer.verifyConnection();
+	}
+
 	async invite(inviteEmailData: InviteEmailData): Promise<SendEmailResult> {
 		let template = await getTemplate('invite', 'invite.html');
 		template = replaceStrings(template, inviteEmailData);

packages/cli/src/UserManagement/email/templates/invite.html

@@ -1,6 +1,4 @@
 <p>Hi there,</p>
-<p>You have been invited to join n8n {{domain}}.</p>
-<p>Please click on the following link, or paste it into your browser to complete the process. The link is valid for 2 hours.</p>
+<p>You have been invited to join n8n ({{ domain }}).</p>
+<p>To accept, click the following link. It is valid for 2 hours.</p>
 <p><a href="{{ inviteAcceptUrl }}" target="_blank">{{ inviteAcceptUrl }}</a></p>
-<br>
-<p>Thanks!</p>

packages/cli/src/UserManagement/email/templates/passwordReset.html

@@ -1,9 +1,5 @@
 <p>Hi {{firstName}},</p>
-<p>You are receiving this because you (or someone else) requested a password reset for your account {{email}} on n8n {{domain}}.</p>
-<p>Please click on the following link, or paste it into your browser to complete the process:</p>
+<p>Somebody asked to reset your password on n8n ({{ domain }}).</p>
+<p>If it was not you, you can safely ignore this email.</p>
+<p>Click the following link to choose a new password:</p>
 <a href="{{ passwordResetUrl }}">{{ passwordResetUrl }}</a>
-<br><br>
-<p>If you received this in error, you can safely ignore it.</p>
-<p>Contact your n8n instance owner if you did not request to reset your password.</p>
-<br>
-<p>Thanks!</p>

packages/cli/src/UserManagement/routes/passwordReset.ts

@@ -78,7 +78,21 @@ export function passwordResetNamespace(this: N8nApp): void {
 			url.searchParams.append('userId', id);
 			url.searchParams.append('token', resetPasswordToken);
 
-			await UserManagementMailer.getInstance().passwordReset({
+			const mailer = UserManagementMailer.getInstance();
+
+			try {
+				await mailer.verifyConnection();
+			} catch (error) {
+				if (error instanceof Error) {
+					throw new ResponseHelper.ResponseError(
+						`Please contact your administrator: ${error.message}`,
+						undefined,
+						500,
+					);
+				}
+			}
+
+			await mailer.passwordReset({
 				email,
 				firstName,
 				lastName,

packages/cli/src/UserManagement/routes/users.ts

@@ -37,6 +37,20 @@ export function usersNamespace(this: N8nApp): void {
 				);
 			}
 
+			const mailer = getInstance();
+
+			try {
+				await mailer.verifyConnection();
+			} catch (error) {
+				if (error instanceof Error) {
+					throw new ResponseHelper.ResponseError(
+						`There is a problem with your SMTP setup: ${error.message}`,
+						undefined,
+						500,
+					);
+				}
+			}
+
 			if (!config.get('userManagement.isInstanceOwnerSetUp')) {
 				Logger.debug(
 					'Request to send email invite(s) to user(s) failed because emailing was not set up',
@@ -131,7 +145,7 @@ export function usersNamespace(this: N8nApp): void {
 				throw new ResponseHelper.ResponseError('An error occurred during user creation');
 			}
 
-			Logger.info('Created user shells successfully', { userId: req.user.id });
+			Logger.info('Created user shell(s) successfully', { userId: req.user.id });
 			Logger.verbose(total > 1 ? `${total} user shells created` : `1 user shell created`, {
 				userShells: createUsers,
 			});
@@ -141,7 +155,6 @@ export function usersNamespace(this: N8nApp): void {
 			const usersPendingSetup = Object.entries(createUsers).filter(([email, id]) => id && email);
 
 			// send invite email to new or not yet setup users
-			const mailer = getInstance();
 
 			const emailingResults = await Promise.all(
 				usersPendingSetup.map(async ([email, id]) => {
@@ -455,7 +468,17 @@ export function usersNamespace(this: N8nApp): void {
 			const baseUrl = getInstanceBaseUrl();
 			const inviteAcceptUrl = `${baseUrl}/signup?inviterId=${req.user.id}&inviteeId=${reinvitee.id}`;
 
-			const result = await getInstance().invite({
+			const mailer = getInstance();
+
+			try {
+				await mailer.verifyConnection();
+			} catch (error) {
+				if (error instanceof Error) {
+					throw new ResponseHelper.ResponseError(error.message, undefined, 500);
+				}
+			}
+
+			const result = await mailer.invite({
 				email: reinvitee.email,
 				inviteAcceptUrl,
 				domain: baseUrl,

packages/editor-ui/src/plugins/i18n/locales/en.json

@@ -1097,7 +1097,6 @@
 	},
 	"BASIC_INFORMATION": "Basic Information",
 	"CHANGE_PASSWORD": "Change Password",
-	"CHECK_INBOX_AND_SPAM": "Please check your inbox (and perhaps your spam folder)",
 	"CONFIRM_DATA_HANDLING_AFTER_DELETION": "What should we do with their data?",
 	"CONFIRM_USER_DELETION": "Are you sure you want to delete this invited user?",
 	"CURRENT_PASSWORD": "Current password",
@@ -1114,6 +1113,7 @@
 	"FINISH_ACCOUNT_SETUP": "Finish account setup",
 	"FIRST_NAME": "First name",
 	"FORGOT_MY_PASSWORD": "Forgot my password",
+	"FORGOT_PASSWORD_SUCCESS_MESSAGE": "We’ve emailed {email} (if there’s a matching account)",
 	"GET_RECOVERY_LINK": "Email me a recovery link",
 	"GO_BACK": "Go back",
 	"INVALID_EMAIL_ERROR": "{email} is not a valid email",
@@ -1175,7 +1175,7 @@
 	"TRANSFERRED_TO_USER": "Transferred to {user}",
 	"TRANSFER_WORKFLOWS_AND_CREDENTIALS": "Transfer their workflows and credentials to another user",
 	"USERS": "Users",
-	"USERS_INVITED_ERROR": "Users could not be invited",
+	"USERS_INVITED_ERROR": "Could not invite users",
 	"USERS_INVITED_SUCCESS": "Users invited",
 	"USER_DELETE_ERROR": "Problem while deleting user",
 	"USER_DELETE_SUCCESS": "User deleted",

packages/editor-ui/src/views/ForgotMyPasswordView.vue

@@ -72,15 +72,18 @@ export default mixins(
 		},
 	},
 	methods: {
-		async onSubmit(values: {[key: string]: string}) {
+		async onSubmit(values: { email: string }) {
 			try {
 				this.loading = true;
 				await this.$store.dispatch('users/sendForgotPasswordEmail', values);
 
 				this.$showMessage({
 					type: 'success',
 					title: this.$locale.baseText('RECOVERY_EMAIL_SENT'),
-					message: this.$locale.baseText('CHECK_INBOX_AND_SPAM'),
+					message: this.$locale.baseText(
+						'FORGOT_PASSWORD_SUCCESS_MESSAGE',
+						{ interpolate: { email: values.email }},
+					),
 				});
 			} catch (error) {
 				this.$showError(error, this.$locale.baseText('SENDING_EMAIL_ERROR'));