datasquirel/package-shared/functions/api/users/api-send-email-code.js

// @ts-check

const LOCAL_DB_HANDLER = require("../../../utils/backend/global-db/LOCAL_DB_HANDLER");
const varDatabaseDbHandler = require("../../backend/varDatabaseDbHandler");
const nodemailer = require("nodemailer");
const http = require("http");
const getAuthCookieNames = require("../../backend/cookies/get-auth-cookie-names");
const encrypt = require("../../dsql/encrypt");

/**
 * # Send Email Login Code
 *
 * @param {object} param
 * @param {string} param.email
 * @param {string} param.database
 * @param {string} [param.email_login_field]
 * @param {string} [param.mail_domain]
 * @param {number} [param.mail_port]
 * @param {string} [param.sender]
 * @param {string} [param.mail_username]
 * @param {string} [param.mail_password]
 * @param {string} param.html
 * @param {boolean} [param.useLocal]
 * @param {http.ServerResponse & Object<string,any>} [param.response]
 *
 * @returns {Promise<import("../../../types").SendOneTimeCodeEmailResponse>}
 */
module.exports = async function apiSendEmailCode({
    email,
    database,
    email_login_field,
    mail_domain,
    mail_port,
    sender,
    mail_username,
    mail_password,
    html,
    useLocal,
    response,
}) {
    if (email?.match(/ /)) {
        return {
            success: false,
            msg: "Invalid Email/Password format",
        };
    }
    const createdAt = Date.now();

    const foundUserQuery = `SELECT * FROM users WHERE email = ?`;
    const foundUserValues = [email];

    let foundUser = await varDatabaseDbHandler({
        queryString: foundUserQuery,
        queryValuesArray: foundUserValues,
        database,
        useLocal,
    });

    ////////////////////////////////////////
    ////////////////////////////////////////
    ////////////////////////////////////////

    if (!foundUser || !foundUser[0]) {
        return {
            success: false,
            msg: "No user found",
        };
    }

    function generateCode() {
        const chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
        let code = "";
        for (let i = 0; i < 8; i++) {
            code += chars[Math.floor(Math.random() * chars.length)];
        }
        return code;
    }

    if (foundUser?.[0] && email_login_field) {
        const tempCode = generateCode();

        let transporter = nodemailer.createTransport({
            host: mail_domain || process.env.DSQL_MAIL_HOST,
            port: mail_port || process.env.DSQL_MAIL_PORT || 465,
            secure: true,
            auth: {
                user: mail_username || process.env.DSQL_MAIL_EMAIL,
                pass: mail_password || process.env.DSQL_MAIL_PASSWORD,
            },
        });

        let mailObject = {};

        mailObject["from"] = `"Datasquirel SSO" <${
            sender || "support@datasquirel.com"
        }>`;
        mailObject["sender"] = sender || "support@datasquirel.com";
        mailObject["to"] = email;
        mailObject["subject"] = "One Time Login Code";
        mailObject["html"] = html.replace(/{{code}}/, tempCode);

        const info = await transporter.sendMail(mailObject);

        if (!info?.accepted) throw new Error("Mail not Sent!");

        const setTempCodeQuery = `UPDATE users SET ${email_login_field} = ? WHERE email = ?`;
        const setTempCodeValues = [tempCode + `-${createdAt}`, email];

        let setTempCode = await varDatabaseDbHandler({
            queryString: setTempCodeQuery,
            queryValuesArray: setTempCodeValues,
            database: database,
            useLocal,
        });

        /** @type {import("../../../types").SendOneTimeCodeEmailResponse} */
        const resObject = {
            success: true,
            code: tempCode,
            email: email,
            createdAt,
            msg: "Success",
        };

        if (response) {
            const keyNames = getAuthCookieNames();
            const oneTimeCodeCookieName = keyNames.oneTimeCodeName;

            const encryptedPayload = encrypt({
                data: JSON.stringify(resObject),
            });

            response?.setHeader("Set-Cookie", [
                `${oneTimeCodeCookieName}=${encryptedPayload};samesite=strict;path=/;HttpOnly=true;Secure=true`,
            ]);
        }

        return resObject;
    } else {
        return {
            success: false,
            msg: "Invalid Email/Password format",
        };
    }
};
Updates 2024-12-06 10:31:24 +00:00			`// @ts-check`

Updates 2024-12-06 11:55:03 +00:00			`const LOCAL_DB_HANDLER = require("../../../utils/backend/global-db/LOCAL_DB_HANDLER");`
Updates 2024-12-06 10:31:24 +00:00			`const varDatabaseDbHandler = require("../../backend/varDatabaseDbHandler");`
			`const nodemailer = require("nodemailer");`
Updates 2024-12-10 14:10:32 +00:00			`const http = require("http");`
			`const getAuthCookieNames = require("../../backend/cookies/get-auth-cookie-names");`
			`const encrypt = require("../../dsql/encrypt");`
Updates 2024-12-06 10:31:24 +00:00
			`/**`
			`* # Send Email Login Code`
			`*`
			`* @param {object} param`
			`* @param {string} param.email`
			`* @param {string} param.database`
			`* @param {string} [param.email_login_field]`
			`* @param {string} [param.mail_domain]`
			`* @param {number} [param.mail_port]`
			`* @param {string} [param.sender]`
			`* @param {string} [param.mail_username]`
			`* @param {string} [param.mail_password]`
			`* @param {string} param.html`
Updates 2024-12-06 11:55:03 +00:00			`* @param {boolean} [param.useLocal]`
Updates 2024-12-10 14:10:32 +00:00			`* @param {http.ServerResponse & Object<string,any>} [param.response]`
Updates 2024-12-06 10:31:24 +00:00			`*`
Updates 2024-12-10 14:10:32 +00:00			`* @returns {Promise<import("../../../types").SendOneTimeCodeEmailResponse>}`
Updates 2024-12-06 10:31:24 +00:00			`*/`
			`module.exports = async function apiSendEmailCode({`
			`email,`
			`database,`
			`email_login_field,`
			`mail_domain,`
			`mail_port,`
			`sender,`
			`mail_username,`
			`mail_password,`
			`html,`
Updates 2024-12-06 11:55:03 +00:00			`useLocal,`
Updates 2024-12-10 14:10:32 +00:00			`response,`
Updates 2024-12-06 10:31:24 +00:00			`}) {`
			`if (email?.match(/ /)) {`
			`return {`
			`success: false,`
			`msg: "Invalid Email/Password format",`
			`};`
			`}`
Updates 2024-12-10 14:10:32 +00:00			`const createdAt = Date.now();`
Updates 2024-12-06 10:31:24 +00:00
Updates 2024-12-06 11:55:03 +00:00			const foundUserQuery = `SELECT * FROM users WHERE email = ?`;
			`const foundUserValues = [email];`

Updates 2024-12-08 08:58:57 +00:00			`let foundUser = await varDatabaseDbHandler({`
			`queryString: foundUserQuery,`
			`queryValuesArray: foundUserValues,`
			`database,`
			`useLocal,`
			`});`
Updates 2024-12-06 10:31:24 +00:00
			`////////////////////////////////////////`
			`////////////////////////////////////////`
			`////////////////////////////////////////`

			`if (!foundUser \|\| !foundUser[0]) {`
			`return {`
			`success: false,`
			`msg: "No user found",`
			`};`
			`}`

			`function generateCode() {`
			`const chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";`
			`let code = "";`
			`for (let i = 0; i < 8; i++) {`
			`code += chars[Math.floor(Math.random() * chars.length)];`
			`}`
			`return code;`
			`}`

Updates 2024-12-10 14:10:32 +00:00			`if (foundUser?.[0] && email_login_field) {`
Updates 2024-12-06 10:31:24 +00:00			`const tempCode = generateCode();`

			`let transporter = nodemailer.createTransport({`
			`host: mail_domain \|\| process.env.DSQL_MAIL_HOST,`
Bugfix 2024-12-10 13:09:21 +00:00			`port: mail_port \|\| process.env.DSQL_MAIL_PORT \|\| 465,`
Updates 2024-12-06 10:31:24 +00:00			`secure: true,`
			`auth: {`
			`user: mail_username \|\| process.env.DSQL_MAIL_EMAIL,`
			`pass: mail_password \|\| process.env.DSQL_MAIL_PASSWORD,`
			`},`
			`});`

			`let mailObject = {};`

			mailObject["from"] = `"Datasquirel SSO" <${
			`sender \|\| "support@datasquirel.com"`
			}>`;
			`mailObject["sender"] = sender \|\| "support@datasquirel.com";`
			`mailObject["to"] = email;`
			`mailObject["subject"] = "One Time Login Code";`
			`mailObject["html"] = html.replace(/{{code}}/, tempCode);`

			`const info = await transporter.sendMail(mailObject);`

			`if (!info?.accepted) throw new Error("Mail not Sent!");`

Updates 2024-12-06 11:55:03 +00:00			const setTempCodeQuery = `UPDATE users SET ${email_login_field} = ? WHERE email = ?`;
Updates 2024-12-10 14:10:32 +00:00			const setTempCodeValues = [tempCode + `-${createdAt}`, email];
Updates 2024-12-06 10:31:24 +00:00
Updates 2024-12-08 08:58:57 +00:00			`let setTempCode = await varDatabaseDbHandler({`
			`queryString: setTempCodeQuery,`
			`queryValuesArray: setTempCodeValues,`
			`database: database,`
			`useLocal,`
			`});`
Updates 2024-12-06 10:31:24 +00:00
Updates 2024-12-10 14:10:32 +00:00			`/** @type {import("../../../types").SendOneTimeCodeEmailResponse} */`
			`const resObject = {`
			`success: true,`
			`code: tempCode,`
			`email: email,`
			`createdAt,`
			`msg: "Success",`
			`};`

			`if (response) {`
			`const keyNames = getAuthCookieNames();`
			`const oneTimeCodeCookieName = keyNames.oneTimeCodeName;`

			`const encryptedPayload = encrypt({`
			`data: JSON.stringify(resObject),`
			`});`

			`response?.setHeader("Set-Cookie", [`
			`${oneTimeCodeCookieName}=${encryptedPayload};samesite=strict;path=/;HttpOnly=true;Secure=true`,
			`]);`
			`}`

			`return resObject;`
			`} else {`
			`return {`
			`success: false,`
			`msg: "Invalid Email/Password format",`
			`};`
			`}`
Updates 2024-12-06 10:31:24 +00:00			`};`