-
Notifications
You must be signed in to change notification settings - Fork 111
/
send-verification-email.ts
106 lines (96 loc) · 2.34 KB
/
send-verification-email.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
import { RequestHandler } from 'express';
import { v4 as uuidv4 } from 'uuid';
import { ReasonPhrases } from 'http-status-codes';
import {
gqlSdk,
generateTicketExpiresAt,
getUserByEmail,
ENV,
createEmailRedirectionLink,
} from '@/utils';
import { sendEmail } from '@/email';
import { sendError } from '@/errors';
import { Joi, email, redirectTo } from '@/validation';
import { EMAIL_TYPES } from '@/types';
export const userEmailSendVerificationEmailSchema = Joi.object({
email: email.required(),
options: Joi.object({
redirectTo,
}).default(),
}).meta({ className: 'UserEmailSendVerificationEmailSchema' });
export const userEmailSendVerificationEmailHandler: RequestHandler<
{},
{},
{
email: string;
options: {
redirectTo: string;
};
}
> = async (req, res) => {
const {
email,
options: { redirectTo },
} = req.body;
const user = await getUserByEmail(email);
if (!user) {
return sendError(res, 'user-not-found');
}
if (user.emailVerified) {
return sendError(res, 'email-already-verified');
}
// TODO: possibly check when last email was sent to minimize abuse
// TODO use createVerifyEmailTicket()
const ticket = `verifyEmail:${uuidv4()}`;
const ticketExpiresAt = generateTicketExpiresAt(60 * 60 * 24 * 30); // 30 days
// set newEmail for user
await gqlSdk.updateUser({
id: user.id,
user: {
ticket,
ticketExpiresAt,
},
});
const template = 'email-verify';
const link = createEmailRedirectionLink(
EMAIL_TYPES.VERIFY,
ticket,
redirectTo
);
await sendEmail({
template,
message: {
to: email,
headers: {
'x-ticket': {
prepared: true,
value: ticket,
},
'x-redirect-to': {
prepared: true,
value: redirectTo,
},
'x-email-template': {
prepared: true,
value: template,
},
'x-link': {
prepared: true,
value: link,
},
},
},
locals: {
link,
displayName: user.displayName,
email: user.email,
newEmail: user.newEmail,
ticket,
redirectTo: encodeURIComponent(redirectTo),
locale: user.locale ?? ENV.AUTH_LOCALE_DEFAULT,
serverUrl: ENV.AUTH_SERVER_URL,
clientUrl: ENV.AUTH_CLIENT_URL,
},
});
return res.json(ReasonPhrases.OK);
};