TofuStack/src/lib/server/api/services/iam.service.ts

import { inject, injectable } from 'tsyringe';
import type { RegisterEmailDto } from '../../../dtos/register-email.dto';
import { UsersRepository } from '../repositories/users.repository';
import { MailerService } from './mailer.service';
import { TokensService } from './tokens.service';
import type { SignInEmailDto } from '../../../dtos/signin-email.dto';
import { BadRequest } from '../common/errors';
import { LuciaProvider } from '../providers/lucia.provider';
import type { UpdateEmailDto } from '../../../dtos/update-email.dto';

/* -------------------------------------------------------------------------- */
/*                                   Service                                  */
/* -------------------------------------------------------------------------- */
/* -------------------------------------------------------------------------- */
/* ---------------------------------- About --------------------------------- */
/*
Services are responsible for handling business logic and data manipulation. 
They genreally call on repositories or other services to complete a use-case.
*/
/* ---------------------------------- Notes --------------------------------- */
/*
Services should be kept as clean and simple as possible. 

Create private functions to handle complex logic and keep the public methods as 
simple as possible. This makes the service easier to read, test and understand.
*/
/* -------------------------------------------------------------------------- */

@injectable()
export class IamService {
	constructor(
		@inject(UsersRepository) private usersRepository: UsersRepository,
		@inject(TokensService) private tokensService: TokensService,
		@inject(MailerService) private mailerService: MailerService,
		@inject(LuciaProvider) private lucia: LuciaProvider
	) { }

	async registerEmail(data: RegisterEmailDto) {
		const existingUser = await this.usersRepository.findOneByEmail(data.email);

		if (!existingUser) {
			const newUser = await this.usersRepository.create({ email: data.email, verified: false });
			return this.createValidationReuqest(newUser.id, newUser.email);
		}

		return this.createValidationReuqest(existingUser.id, existingUser.email);
	}

	async signinEmail(data: SignInEmailDto) {
		const user = await this.usersRepository.findOneByEmail(data.email);
		if (!user) throw BadRequest('Bad credentials');

		const isValidToken = await this.tokensService.validateToken(user.id, data.token);
		if (!isValidToken) throw BadRequest('Bad credentials');

		// if this is a new unverified user, send a welcome email and update the user
		if (!user.verified) {
			await this.usersRepository.update(user.id, { verified: true });
			this.mailerService.sendWelcomeEmail({
				to: user.email,
				props: null
			});
		}

		return this.lucia.createSession(user.id, {});
	}

	async verifyEmail(userId: string, token: string) {
		const user = await this.usersRepository.findOneById(userId);
		if (!user) throw BadRequest('User not found');

		const validToken = await this.tokensService.validateToken(user.id, token);
		if (!validToken) throw BadRequest('Invalid token');
		
		await this.usersRepository.update(user.id, { email: validToken.email });
	}

	async updateEmail(userId: string, data: UpdateEmailDto) {
		return this.createValidationReuqest(userId, data.email);
	}

	async logout(sessionId: string) {
		return this.lucia.invalidateSession(sessionId);
	}

	private async createValidationReuqest(userId: string, email: string) {
		const validationToken = await this.tokensService.create(userId, email);
		this.mailerService.sendEmailVerification({
			to: email,
			props: { token: validationToken.token }
		});
	}
}
added technical api structure 2024-05-25 06:02:26 +00:00			`import { inject, injectable } from 'tsyringe';`
added shadcn & superforms as default 2024-06-25 02:45:00 +00:00			`import type { RegisterEmailDto } from '../../../dtos/register-email.dto';`
added technical api structure 2024-05-25 06:02:26 +00:00			`import { UsersRepository } from '../repositories/users.repository';`
			`import { MailerService } from './mailer.service';`
			`import { TokensService } from './tokens.service';`
added shadcn & superforms as default 2024-06-25 02:45:00 +00:00			`import type { SignInEmailDto } from '../../../dtos/signin-email.dto';`
added technical api structure 2024-05-25 06:02:26 +00:00			`import { BadRequest } from '../common/errors';`
			`import { LuciaProvider } from '../providers/lucia.provider';`
added shadcn & superforms as default 2024-06-25 02:45:00 +00:00			`import type { UpdateEmailDto } from '../../../dtos/update-email.dto';`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00
			`/* -------------------------------------------------------------------------- */`
			`/* Service */`
			`/* -------------------------------------------------------------------------- */`
			`/* -------------------------------------------------------------------------- */`
			`/* ---------------------------------- About --------------------------------- */`
			`/*`
			`Services are responsible for handling business logic and data manipulation.`
			`They genreally call on repositories or other services to complete a use-case.`
			`*/`
			`/* ---------------------------------- Notes --------------------------------- */`
			`/*`
			`Services should be kept as clean and simple as possible.`

			`Create private functions to handle complex logic and keep the public methods as`
			`simple as possible. This makes the service easier to read, test and understand.`
			`*/`
			`/* -------------------------------------------------------------------------- */`
added technical api structure 2024-05-25 06:02:26 +00:00
			`@injectable()`
			`export class IamService {`
			`constructor(`
			`@inject(UsersRepository) private usersRepository: UsersRepository,`
			`@inject(TokensService) private tokensService: TokensService,`
			`@inject(MailerService) private mailerService: MailerService,`
			`@inject(LuciaProvider) private lucia: LuciaProvider`
added rate limiter middleware 2024-06-25 16:14:45 +00:00			`) { }`
added technical api structure 2024-05-25 06:02:26 +00:00
			`async registerEmail(data: RegisterEmailDto) {`
			`const existingUser = await this.usersRepository.findOneByEmail(data.email);`

			`if (!existingUser) {`
			`const newUser = await this.usersRepository.create({ email: data.email, verified: false });`
			`return this.createValidationReuqest(newUser.id, newUser.email);`
			`}`

			`return this.createValidationReuqest(existingUser.id, existingUser.email);`
			`}`

			`async signinEmail(data: SignInEmailDto) {`
			`const user = await this.usersRepository.findOneByEmail(data.email);`
added rate limiter middleware 2024-06-25 16:14:45 +00:00			`if (!user) throw BadRequest('Bad credentials');`
added technical api structure 2024-05-25 06:02:26 +00:00
			`const isValidToken = await this.tokensService.validateToken(user.id, data.token);`
added rate limiter middleware 2024-06-25 16:14:45 +00:00			`if (!isValidToken) throw BadRequest('Bad credentials');`
added technical api structure 2024-05-25 06:02:26 +00:00
			`// if this is a new unverified user, send a welcome email and update the user`
			`if (!user.verified) {`
			`await this.usersRepository.update(user.id, { verified: true });`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`this.mailerService.sendWelcomeEmail({`
added technical api structure 2024-05-25 06:02:26 +00:00			`to: user.email,`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`props: null`
added technical api structure 2024-05-25 06:02:26 +00:00			`});`
			`}`

			`return this.lucia.createSession(user.id, {});`
			`}`

			`async verifyEmail(userId: string, token: string) {`
			`const user = await this.usersRepository.findOneById(userId);`
added rate limiter middleware 2024-06-25 16:14:45 +00:00			`if (!user) throw BadRequest('User not found');`
added technical api structure 2024-05-25 06:02:26 +00:00
			`const validToken = await this.tokensService.validateToken(user.id, token);`
added rate limiter middleware 2024-06-25 16:14:45 +00:00			`if (!validToken) throw BadRequest('Invalid token');`

added technical api structure 2024-05-25 06:02:26 +00:00			`await this.usersRepository.update(user.id, { email: validToken.email });`
			`}`

			`async updateEmail(userId: string, data: UpdateEmailDto) {`
			`return this.createValidationReuqest(userId, data.email);`
			`}`

			`async logout(sessionId: string) {`
			`return this.lucia.invalidateSession(sessionId);`
			`}`

			`private async createValidationReuqest(userId: string, email: string) {`
			`const validationToken = await this.tokensService.create(userId, email);`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`this.mailerService.sendEmailVerification({`
added technical api structure 2024-05-25 06:02:26 +00:00			`to: email,`
			`props: { token: validationToken.token }`
			`});`
			`}`
			`}`