[Feat]: enhance OTP email functionality with improved error handling and SMTP configuration options

Author: Samu-Kiss

.gitignore

@@ -1,4 +1,4 @@
-.env
+.env*
 node_modules/
 dist/
 .env.local

src/commands/verify.ts

@@ -1,11 +1,18 @@
 import { SlashCommandBuilder, PermissionsBitField } from 'discord.js';
 import { buildEmbed } from '../utils/embed';
 import { getGuildConfig, upsertGuildConfig } from '../config/store';
-import { generateOtp, verifyOtp, pendingOtp } from '../utils/otp';
+import { generateOtp, verifyOtp, pendingOtp, clearOtp } from '../utils/otp';
 import { sendOtpEmail } from '../utils/mailer';
 
 const EMAIL_REGEX = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
 
+function maskEmail(email: string) {
+  const [local, domain] = email.split('@');
+  if (!domain) return email;
+  const visible = local.slice(0, 2);
+  return `${visible}${local.length > 2 ? '***' : ''}@${domain}`;
+}
+
 const data = new SlashCommandBuilder()
   .setName('verify')
   .setDescription('Verifica tu correo con un OTP')
@@ -65,21 +72,36 @@ async function execute(interaction: any) {
       });
     }
 
+    try {
+      await interaction.deferReply({ ephemeral: true });
+    } catch (deferErr) {
+      console.error('No se pudo deferir la respuesta de /verify start', deferErr);
+      return interaction.reply({
+        content: 'No pude preparar la verificación, intenta nuevamente en unos segundos.',
+        flags: 1 << 6,
+      });
+    }
+
     const code = generateOtp(guildId, member.id, email);
+    const startedAt = Date.now();
     try {
       await sendOtpEmail(email, code);
+      console.info(
+        `[verify] OTP enviado a ${maskEmail(email)} para ${member.id} en ${Date.now() - startedAt}ms`,
+      );
     } catch (err) {
+      clearOtp(guildId, member.id);
       console.error('Error enviando OTP', err);
-      return interaction.reply({
-        content: 'No se pudo enviar el correo. Revisa la configuración SMTP.',
-        flags: 1 << 6,
+      const reason = err instanceof Error ? err.message : 'No se pudo enviar el correo.';
+      return interaction.editReply({
+        content: `No se pudo enviar el correo. ${reason}`,
       });
     }
     const embed = buildEmbed({
       title: 'Verificación iniciada',
       description: `Enviamos un código a ${email}. Usa /verify code <OTP>.`,
     });
-    return interaction.reply({ embeds: [embed], flags: 1 << 6 });
+    return interaction.editReply({ embeds: [embed] });
   }
 
   if (sub === 'code') {

src/utils/mailer.ts

@@ -7,6 +7,14 @@ interface SmtpConfig {
   pass: string;
   from: string;
   secure: boolean;
+  connectionTimeout: number;
+  socketTimeout: number;
+  greetingTimeout: number;
+  pool: boolean;
+  maxConnections: number;
+  maxMessages: number;
+  requireTLS: boolean;
+  rejectUnauthorized: boolean;
 }
 
 function getConfig(): SmtpConfig {
@@ -20,7 +28,70 @@ function getConfig(): SmtpConfig {
       'SMTP configuration is missing. Set SMTP_HOST, SMTP_PORT, SMTP_USER, SMTP_PASS, SMTP_FROM',
     );
   }
-  return { host, port, user, pass, from, secure: port === 465 };
+  const num = (value: string | undefined, fallback: number) => {
+    const parsed = Number(value);
+    return Number.isFinite(parsed) && parsed > 0 ? parsed : fallback;
+  };
+  const bool = (value: string | undefined, fallback: boolean) => {
+    if (value === undefined) return fallback;
+    return ['1', 'true', 'yes', 'on'].includes(value.toLowerCase());
+  };
+  return {
+    host,
+    port,
+    user,
+    pass,
+    from,
+    secure: port === 465,
+    connectionTimeout: num(process.env.SMTP_CONNECTION_TIMEOUT, 10000),
+    socketTimeout: num(process.env.SMTP_SOCKET_TIMEOUT, 10000),
+    greetingTimeout: num(process.env.SMTP_GREETING_TIMEOUT, 10000),
+    pool: bool(process.env.SMTP_POOL, true),
+    maxConnections: num(process.env.SMTP_MAX_CONNECTIONS, 1),
+    maxMessages: num(process.env.SMTP_MAX_MESSAGES, 20),
+    requireTLS: bool(process.env.SMTP_REQUIRE_TLS, false),
+    rejectUnauthorized: bool(process.env.SMTP_TLS_REJECT_UNAUTHORIZED, true),
+  };
+}
+
+function maskEmail(email: string) {
+  const [local, domain] = email.split('@');
+  if (!domain) return email;
+  const visible = local.slice(0, 2);
+  return `${visible}${local.length > 2 ? '***' : ''}@${domain}`;
+}
+
+function describeSmtpError(err: unknown) {
+  if (!err || typeof err !== 'object') {
+    return {
+      logMessage: 'Unknown SMTP error',
+      userMessage: 'No se pudo enviar el correo (error desconocido).',
+    };
+  }
+  const error = err as { code?: string; command?: string; responseCode?: number; message?: string };
+  if (error.code === 'ETIMEDOUT') {
+    return {
+      logMessage: 'SMTP connection timed out',
+      userMessage: 'No se pudo contactar con el servidor SMTP (timeout).',
+    };
+  }
+  if (error.code === 'EAUTH') {
+    return {
+      logMessage: 'SMTP authentication failed',
+      userMessage: 'Credenciales SMTP inválidas.',
+    };
+  }
+  if (error.code === 'ECONNECTION') {
+    return {
+      logMessage: 'SMTP connection refused',
+      userMessage: 'El servidor SMTP rechazó la conexión.',
+    };
+  }
+  const base = error.message || 'Error SMTP no especificado.';
+  return {
+    logMessage: base,
+    userMessage: base,
+  };
 }
 
 export async function sendOtpEmail(to: string, code: string) {
@@ -33,15 +104,41 @@ export async function sendOtpEmail(to: string, code: string) {
       user: cfg.user,
       pass: cfg.pass,
     },
+    pool: cfg.pool,
+    maxConnections: cfg.maxConnections,
+    maxMessages: cfg.maxMessages,
+    connectionTimeout: cfg.connectionTimeout,
+    socketTimeout: cfg.socketTimeout,
+    greetingTimeout: cfg.greetingTimeout,
+    requireTLS: cfg.requireTLS,
+    tls: {
+      rejectUnauthorized: cfg.rejectUnauthorized,
+    },
   });
 
   const text = `Tu código de verificación es: ${code}`;
   const subject = 'Código de verificación';
+  const startedAt = Date.now();
 
-  await transporter.sendMail({
-    from: cfg.from,
-    to,
-    subject,
-    text,
-  });
+  try {
+    const info = await transporter.sendMail({
+      from: cfg.from,
+      to,
+      subject,
+      text,
+    });
+    console.info(
+      `[mailer] OTP sent to ${maskEmail(to)} via ${cfg.host}:${cfg.port} in ${Date.now() - startedAt}ms (id=${info.messageId})`,
+    );
+    return info;
+  } catch (error) {
+    const { logMessage, userMessage } = describeSmtpError(error);
+    console.error(
+      `[mailer] Failed to send OTP to ${maskEmail(to)} via ${cfg.host}:${cfg.port} after ${Date.now() - startedAt}ms - ${logMessage}`,
+      error,
+    );
+    const wrapped = new Error(userMessage);
+    (wrapped as any).cause = error;
+    throw wrapped;
+  }
 }

src/utils/otp.ts

@@ -44,3 +44,12 @@ export function verifyOtp(
 export function pendingOtp(guildId: string, userId: string): OtpEntry | undefined {
   return store.get(guildId)?.get(userId);
 }
+
+export function clearOtp(guildId: string, userId: string) {
+  const guildStore = store.get(guildId);
+  if (!guildStore) return;
+  guildStore.delete(userId);
+  if (!guildStore.size) {
+    store.delete(guildId);
+  }
+}