@arch-cadre/auth 1.0.7 → 1.0.9

package/src/ui/verify-email/components.tsx

@@ -0,0 +1,135 @@
+"use client";
+import { useTranslation } from "@arch-cadre/intl";
+import { Button } from "@arch-cadre/ui/components/button";
+import { Field, FieldError, FieldGroup } from "@arch-cadre/ui/components/field";
+import {
+  InputOTP,
+  InputOTPGroup,
+  InputOTPSlot,
+} from "@arch-cadre/ui/components/input-otp";
+import { cn } from "@arch-cadre/ui/lib/utils";
+import { Loader } from "@arch-cadre/ui/shared/loader";
+import { zodResolver } from "@hookform/resolvers/zod";
+import { AlertCircle } from "lucide-react";
+import React, { useActionState, useEffect, useState } from "react";
+import { Controller, useForm } from "react-hook-form";
+import { toast } from "sonner";
+import {
+  resendEmailVerificationCodeAction,
+  verifyEmailAction,
+} from "../../actions/index.js";
+import { type VerifyEmailInput, verifyEmailSchema } from "../../validation.js";
+
+export function EmailVerificationForm({ email = "" }) {
+  const [generalError, setGeneralError] = useState("");
+  const { t } = useTranslation();
+
+  const form = useForm<VerifyEmailInput>({
+    resolver: zodResolver(verifyEmailSchema),
+  });
+
+  async function onSubmit(data: VerifyEmailInput) {
+    setGeneralError("");
+
+    try {
+      const response = await verifyEmailAction(data);
+
+      if (response.error) {
+        setGeneralError(response.message || t("error_occurred"));
+        return;
+      }
+
+      toast(response.message);
+    } catch (_error) {
+      // setGeneralError(t("error_occurred"));
+    }
+  }
+
+  return (
+    <div className={cn("flex flex-col space-y-6")}>
+      <div className="space-y-2 text-center">
+        <h1 className="text-3xl font-semibold">{t("Verify email")}</h1>
+        <p className="text-muted-foreground">
+          {t("We've sent a verification code to your email address: {email}", {
+            email,
+          })}
+        </p>
+      </div>
+
+      <div className="grid gap-6">
+        {generalError && (
+          <div className="flex gap-2 p-3 bg-red-50 border border-red-200 rounded-lg">
+            <AlertCircle className="w-4 h-4 text-red-600 flex-shrink-0 mt-0.5" />
+            <p className="text-sm text-red-600">{generalError}</p>
+          </div>
+        )}
+
+        <form onSubmit={form.handleSubmit(onSubmit)} className="grid gap-5">
+          <FieldGroup className="w-full mx-auto">
+            <Controller
+              name="code"
+              control={form.control}
+              render={({ field, fieldState }) => (
+                <Field className="w-full" data-invalid={fieldState.invalid}>
+                  <InputOTP
+                    {...field}
+                    className="mx-auto w-full"
+                    maxLength={6}
+                    autoFocus={true}
+                    inputMode="text"
+                  >
+                    <InputOTPGroup className="mx-auto">
+                      <InputOTPSlot index={0} />
+                      <InputOTPSlot index={1} />
+                      <InputOTPSlot index={2} />
+                      <InputOTPSlot index={3} />
+                      <InputOTPSlot index={4} />
+                      <InputOTPSlot index={5} />
+                    </InputOTPGroup>
+                  </InputOTP>
+                  {fieldState.invalid && (
+                    <FieldError errors={[fieldState.error]} />
+                  )}
+                </Field>
+              )}
+            />
+          </FieldGroup>
+
+          <Button disabled={form.formState.isSubmitting} className="w-full">
+            {form.formState.isSubmitting
+              ? t("Please wait...")
+              : t("Verify Email")}
+            {form.formState.isSubmitting && <Loader variant="dark" />}
+          </Button>
+        </form>
+      </div>
+    </div>
+  );
+}
+
+const resendEmailInitialState = {
+  message: "",
+};
+
+export function ResendEmailVerificationCodeForm() {
+  const { t } = useTranslation();
+  const [state, action, isPending] = useActionState(
+    resendEmailVerificationCodeAction,
+    resendEmailInitialState,
+  );
+
+  useEffect(() => {
+    if (state.message) {
+      toast.success(state.message);
+    }
+  }, [state]);
+
+  return (
+    <form action={action}>
+      <Button disabled={isPending} variant="ghost" className="w-full">
+        {isPending ? t("Please wait...") : t("Resend verification email")}
+        {isPending && <Loader variant="default" />}
+      </Button>
+    </form>
+  );
+}

package/src/ui/verify-email/page.tsx

@@ -0,0 +1,36 @@
+import {
+  getCurrentSession,
+  getUserEmailVerificationRequestFromRequest,
+} from "@arch-cadre/core/server";
+import { redirect } from "next/navigation";
+import * as React from "react";
+
+import {
+  EmailVerificationForm,
+  ResendEmailVerificationCodeForm,
+} from "./components.js";
+
+export default async function Page() {
+  const { user } = await getCurrentSession();
+
+  if (user === null) {
+    return redirect("/signin");
+  }
+
+  // TODO: Ideally we'd sent a new verification email automatically if the previous one is expired,
+  // but we can't set cookies inside server components.
+  const verificationRequest =
+    await getUserEmailVerificationRequestFromRequest();
+
+  if (verificationRequest === null && user.emailVerifiedAt) {
+    return redirect("/?verified");
+  }
+
+  return (
+    <div className="space-y-3">
+      <EmailVerificationForm email={verificationRequest?.email ?? user.email} />
+
+      <ResendEmailVerificationCodeForm />
+    </div>
+  );
+}

package/src/validation.ts

@@ -0,0 +1,61 @@
+import { z } from "zod";
+
+// Auth validation schemas - CLEAN (No DB dependencies for client-side)
+export const loginSchema = z.object({
+  email: z.string().email("Invalid email address"),
+  password: z.string().min(8),
+  remember: z.boolean().optional(),
+});
+
+export const registerSchema = z.object({
+  username: z.string().min(2, "Name must be at least 2 characters"),
+  email: z.string().email("Invalid email address"),
+  password: z.string().min(8, "Password must be at least 8 characters"),
+  terms: z.boolean().refine((val) => val === true, "You must accept the terms"),
+});
+
+export const forgotPasswordSchema = z.object({
+  email: z.string().email("Invalid email address"),
+});
+
+export const resetPasswordSchema = z
+  .object({
+    password: z.string().min(8, "Password must be at least 8 characters"),
+    confirm: z.string(),
+  })
+  .refine((data) => data.password === data.confirm, {
+    message: "Passwords do not match",
+    path: ["confirm"],
+  });
+
+export const verifyEmailSchema = z.object({
+  code: z.string().min(6).max(6),
+});
+
+// mfa validation schemas
+export const totpSetupSchema = z.object({
+  code: z.string().regex(/^\d{6}$/, "Code must be 6 digits"),
+});
+
+export const totpVerifySchema = z.object({
+  code: z.string().regex(/^\d{6}$/, "Code must be 6 digits"),
+});
+
+export const passkeysSetupSchema = z.object({
+  name: z.string().min(1, "Passkey name is required"),
+});
+
+export const recoveryCodeVerifySchema = z.object({
+  code: z.string().min(16, "Recovery code is required").max(16),
+});
+
+// Type exports for use in components
+export type LoginInput = z.infer<typeof loginSchema>;
+export type RegisterInput = z.infer<typeof registerSchema>;
+export type ForgotPasswordInput = z.infer<typeof forgotPasswordSchema>;
+export type ResetPasswordInput = z.infer<typeof resetPasswordSchema>;
+export type TOTPSetupInput = z.infer<typeof totpSetupSchema>;
+export type TOTPVerifyInput = z.infer<typeof totpVerifySchema>;
+export type PasskeysSetupInput = z.infer<typeof passkeysSetupSchema>;
+export type VerifyEmailInput = z.infer<typeof verifyEmailSchema>;
+export type RecoveryVerifyInput = z.infer<typeof recoveryCodeVerifySchema>;