wpcodevo
diff --git a/‎.gitignore
Lines changed: 2 additions & 0 deletions b/‎.gitignore
Lines changed: 2 additions & 0 deletions
diff --git a/‎config/custom-environment-variables.ts
Lines changed: 7 additions & 0 deletions b/‎config/custom-environment-variables.ts
Lines changed: 7 additions & 0 deletions
diff --git a/‎example.env
Lines changed: 26 additions & 0 deletions b/‎example.env
Lines changed: 26 additions & 0 deletions
diff --git a/‎package.json
Lines changed: 8 additions & 2 deletions b/‎package.json
Lines changed: 8 additions & 2 deletions
diff --git a/‎prisma/migrations/20220509153453_added_user_model/migration.sql renamed to ‎prisma/migrations/20220516191659_user_model/migration.sql
Lines changed: 7 additions & 0 deletions b/‎prisma/migrations/20220509153453_added_user_model/migration.sql renamed to ‎prisma/migrations/20220516191659_user_model/migration.sql
Lines changed: 7 additions & 0 deletions
diff --git a/‎prisma/migrations/20220516193511_removed_unique/migration.sql
Lines changed: 2 additions & 0 deletions b/‎prisma/migrations/20220516193511_removed_unique/migration.sql
Lines changed: 2 additions & 0 deletions
diff --git a/‎prisma/migrations/20220516194638_added_unique/migration.sql
Lines changed: 12 additions & 0 deletions b/‎prisma/migrations/20220516194638_added_unique/migration.sql
Lines changed: 12 additions & 0 deletions
diff --git a/‎prisma/schema.prisma
Lines changed: 5 additions & 0 deletions b/‎prisma/schema.prisma
Lines changed: 5 additions & 0 deletions
diff --git a/‎src/app.ts
Lines changed: 12 additions & 0 deletions b/‎src/app.ts
Lines changed: 12 additions & 0 deletions
diff --git a/‎src/controllers/auth.controller.ts
Lines changed: 89 additions & 8 deletions b/‎src/controllers/auth.controller.ts
Lines changed: 89 additions & 8 deletions
@@ -1,3 +1,5 @@
 node_modules
 # Keep environment variables out of version control
 .env
+
+build/
@@ -5,4 +5,11 @@ export default {
   accessTokenPublicKey: 'JWT_ACCESS_TOKEN_PUBLIC_KEY',
   refreshTokenPrivateKey: 'JWT_REFRESH_TOKEN_PRIVATE_KEY',
   refreshTokenPublicKey: 'JWT_REFRESH_TOKEN_PUBLIC_KEY',
+
+  smtp: {
+    host: 'EMAIL_HOST',
+    pass: 'EMAIL_PASS',
+    port: 'EMAIL_PORT',
+    user: 'EMAIL_USER',
+  },
 };
@@ -0,0 +1,26 @@
+# Environment variables declared in this file are automatically made available to Prisma.
+# See the documentation for more detail: https://pris.ly/d/prisma-schema#accessing-environment-variables-from-the-schema
+
+# Prisma supports the native connection string format for PostgreSQL, MySQL, SQLite, SQL Server, MongoDB and CockroachDB (Preview).
+# See the documentation for all the connection string options: https://pris.ly/d/connection-strings
+
+DATABASE_URL=postgresql://admin:password123@localhost:6500/node_prisma?schema=public
+
+PORT=8000
+NODE_ENV=development
+
+POSTGRES_HOST=127.0.0.1
+POSTGRES_PORT=6500
+POSTGRES_USER=admin
+POSTGRES_PASSWORD=password123
+POSTGRES_DB=node_prisma
+
+EMAIL_USER=maycgho4gm6paqnq@ethereal.email
+EMAIL_PASS=RbVrQdN94Ax5CJdnwp
+EMAIL_HOST=smtp.ethereal.email
+EMAIL_PORT=587
+
+JWT_ACCESS_TOKEN_PRIVATE_KEY=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
+JWT_ACCESS_TOKEN_PUBLIC_KEY=LS0tLS1CRUdJTiBQVUJMSUMgS0VZLS0tLS0KTUZ3d0RRWUpLb1pJaHZjTkFRRUJCUUFEU3dBd1NBSkJBSjdVblpyNUxpUGJxbDRENlo3VHVKK2NFMkI0Y3Fzbgp1M3lCWlB6NjZramQ4SU9URXY5TUpEdmhMQ05PczYyWHBZcmFZYU5HS3UrN3Q4YVVjcWNoRzJNQ0F3RUFBUT09Ci0tLS0tRU5EIFBVQkxJQyBLRVktLS0tLQ==
+JWT_REFRESH_TOKEN_PRIVATE_KEY=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
+JWT_REFRESH_TOKEN_PUBLIC_KEY=LS0tLS1CRUdJTiBQVUJMSUMgS0VZLS0tLS0KTUZzd0RRWUpLb1pJaHZjTkFRRUJCUUFEU2dBd1J3SkFmTmJzOVJhUGNnVG5RalB4cExLUXkvRHdBSVh5NFNiUQpnZXoxTVNqcFp6M0NLbE13aVlsMm5IUVg5Rk5NcU1pMmxnL29yUjJDTUJxRzFNdnlvN1EyTVFJREFRQUIKLS0tLS1FTkQgUFVCTElDIEtFWS0tLS0t
@@ -13,25 +13,31 @@
     "@types/cookie-parser": "^1.4.3",
     "@types/cors": "^2.8.12",
     "@types/express": "^4.17.13",
+    "@types/html-to-text": "^8.1.0",
     "@types/jsonwebtoken": "^8.5.8",
     "@types/lodash": "^4.14.182",
     "@types/morgan": "^1.9.3",
     "@types/node": "^17.0.31",
-    "prisma": "^3.13.0",
+    "@types/nodemailer": "^6.4.4",
+    "@types/pug": "^2.0.6",
+    "prisma": "^3.14.0",
     "typescript": "^4.6.4"
   },
   "dependencies": {
-    "@prisma/client": "^3.13.0",
+    "@prisma/client": "^3.14.0",
     "bcryptjs": "^2.4.3",
     "config": "^3.3.7",
     "cookie-parser": "^1.4.6",
     "cors": "^2.8.5",
     "dotenv": "^16.0.0",
     "envalid": "^7.3.1",
     "express": "^4.18.1",
+    "html-to-text": "^8.2.0",
     "jsonwebtoken": "^8.5.1",
     "lodash": "^4.17.21",
     "morgan": "^1.10.0",
+    "nodemailer": "^6.7.5",
+    "pug": "^3.0.2",
     "redis": "^4.1.0",
     "ts-node-dev": "^1.1.8",
     "zod": "^3.15.1"
 
@@ -10,6 +10,7 @@ CREATE TABLE "users" (
     "verified" BOOLEAN DEFAULT false,
     "password" TEXT NOT NULL,
     "role" "RoleEnumType" DEFAULT E'user',
+    "verificationCode" TEXT,
     "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
     "updatedAt" TIMESTAMP(3) NOT NULL,
 
@@ -18,3 +19,9 @@ CREATE TABLE "users" (
 
 -- CreateIndex
 CREATE UNIQUE INDEX "users_email_key" ON "users"("email");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "users_verificationCode_key" ON "users"("verificationCode");
+
+-- CreateIndex
+CREATE INDEX "users_email_verificationCode_idx" ON "users"("email", "verificationCode");
@@ -0,0 +1,2 @@
+-- DropIndex
+DROP INDEX "users_verificationCode_key";
@@ -0,0 +1,12 @@
+/*
+  Warnings:
+
+  - A unique constraint covering the columns `[verificationCode]` on the table `users` will be added. If there are existing duplicate values, this will fail.
+  - A unique constraint covering the columns `[email,verificationCode]` on the table `users` will be added. If there are existing duplicate values, this will fail.
+
+*/
+-- CreateIndex
+CREATE UNIQUE INDEX "users_verificationCode_key" ON "users"("verificationCode");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "users_email_verificationCode_key" ON "users"("email", "verificationCode");
@@ -21,8 +21,13 @@ model User{
   password String
   role RoleEnumType? @default(user)
 
+  verificationCode String? @db.Text @unique
+
   createdAt DateTime @default(now())
   updatedAt DateTime @updatedAt
+
+  @@unique([email, verificationCode])
+  @@index([email, verificationCode])
 }
 
 enum RoleEnumType {
 
@@ -16,6 +16,10 @@ const prisma = new PrismaClient();
 const app = express();
 
 async function bootstrap() {
+  // TEMPLATE ENGINE
+  app.set('view engine', 'pug');
+  app.set('views', `${__dirname}/views`);
+
   // MIDDLEWARE
 
   // 1.Body Parser
@@ -39,6 +43,14 @@ async function bootstrap() {
   app.use('/api/auth', authRouter);
   app.use('/api/users', userRouter);
 
+  // Testing
+  app.get('/api/healthchecker', (_, res: Response) => {
+    res.status(200).json({
+      status: 'success',
+      message: 'Welcome to NodeJs with Prisma and PostgreSQL',
+    });
+  });
+
   // UNHANDLED ROUTES
   app.all('*', (req: Request, res: Response, next: NextFunction) => {
     next(new AppError(404, `Route ${req.originalUrl} not found`));
 
@@ -1,16 +1,24 @@
+import crypto from 'crypto';
 import { CookieOptions, NextFunction, Request, Response } from 'express';
 import bcrypt from 'bcryptjs';
-import { LoginUserInput, RegisterUserInput } from '../schemas/user.schema';
+import {
+  LoginUserInput,
+  RegisterUserInput,
+  VerifyEmailInput,
+} from '../schemas/user.schema';
 import {
   createUser,
   findUniqueUser,
+  findUser,
   signTokens,
+  updateUser,
 } from '../services/user.service';
 import { Prisma } from '@prisma/client';
 import config from 'config';
 import AppError from '../utils/appError';
 import redisClient from '../utils/connectRedis';
 import { signJwt, verifyJwt } from '../utils/jwt';
+import Email from '../utils/email';
 
 const cookiesOptions: CookieOptions = {
   httpOnly: true,
@@ -43,18 +51,38 @@ export const registerUserHandler = async (
   try {
     const hashedPassword = await bcrypt.hash(req.body.password, 12);
 
+    const verifyCode = crypto.randomBytes(32).toString('hex');
+    const verificationCode = crypto
+      .createHash('sha256')
+      .update(verifyCode)
+      .digest('hex');
+
     const user = await createUser({
       name: req.body.name,
       email: req.body.email.toLowerCase(),
       password: hashedPassword,
+      verificationCode,
     });
 
-    res.status(201).json({
-      status: 'success',
-      data: {
-        user,
-      },
-    });
+    const redirectUrl = `${config.get<string>(
+      'origin'
+    )}/verifyemail/${verifyCode}`;
+    try {
+      await new Email(user, redirectUrl).sendVerificationCode();
+      await updateUser({ id: user.id }, { verificationCode });
+
+      res.status(201).json({
+        status: 'success',
+        message:
+          'An email with a verification code has been sent to your email',
+      });
+    } catch (error) {
+      await updateUser({ id: user.id }, { verificationCode: null });
+      return res.status(500).json({
+        status: 'error',
+        message: 'There was an error sending email, please try again',
+      });
+    }
   } catch (err: any) {
     if (err instanceof Prisma.PrismaClientKnownRequestError) {
       if (err.code === 'P2002') {
@@ -76,7 +104,24 @@ export const loginUserHandler = async (
   try {
     const { email, password } = req.body;
 
-    const user = await findUniqueUser({ email });
+    const user = await findUniqueUser(
+      { email: email.toLowerCase() },
+      { id: true, email: true, verified: true, password: true }
+    );
+
+    if (!user) {
+      return next(new AppError(400, 'Invalid email or password'));
+    }
+
+    // Check if user is verified
+    if (!user.verified) {
+      return next(
+        new AppError(
+          401,
+          'You are not verified, please verify your email to login'
+        )
+      );
+    }
 
     if (!user || !(await bcrypt.compare(password, user.password))) {
       return next(new AppError(400, 'Invalid email or password'));
@@ -182,3 +227,39 @@ export const logoutUserHandler = async (
     next(err);
   }
 };
+
+export const verifyEmailHandler = async (
+  req: Request<VerifyEmailInput>,
+  res: Response,
+  next: NextFunction
+) => {
+  try {
+    const verificationCode = crypto
+      .createHash('sha256')
+      .update(req.params.verificationCode)
+      .digest('hex');
+
+    const user = await updateUser(
+      { verificationCode },
+      { verified: true, verificationCode: null },
+      { email: true }
+    );
+
+    if (!user) {
+      return next(new AppError(401, 'Could not verify email'));
+    }
+
+    res.status(200).json({
+      status: 'success',
+      message: 'Email verified successfully',
+    });
+  } catch (err: any) {
+    if (err.code === 'P2025') {
+      return res.status(403).json({
+        status: 'fail',
+        message: `Verification code is invalid or user doesn't exist`,
+      });
+    }
+    next(err);
+  }
+};
-Original file line number
+Diff line change
@@ @@ -1,3 +1,5 @@ @@
 node_modules
 # Keep environment variables out of version control
 .env
++
 +build/
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+-- DropIndex`
	`2`	`+DROP INDEX "users_verificationCode_key";`