complete send verification email

Author: moshfeu

CONTRIBUTING.md

@@ -84,6 +84,7 @@ After that you will need to select the following scopes:
 - `read:users`
 - `read:roles`
 - `delete:users`
+- `update:users` (Sending email verification)
 
 These are the only scopes we need, but you can select all if you want.
 

docs/cc-api-spec.json

@@ -55,6 +55,7 @@
     "@types/express-jwt": "^0.0.42",
     "@types/jest": "^26.0.19",
     "@types/node": "^10.12.18",
+    "@types/node-fetch": "^2.6.1",
     "@types/supertest": "^2.0.7",
     "concurrently": "^4.1.0",
     "faker": "^5.1.0",

package.json

@@ -1,11 +1,13 @@
-import { Injectable } from '@nestjs/common';
+import { HttpException, Injectable } from '@nestjs/common';
 import fetch from 'node-fetch';
-import Config from '../../config';
+import * as Sentry from '@sentry/node';
+import Config from '../../../config';
+import type { Auth0Response } from './auth0.types';
 
 @Injectable()
 export class Auth0Service {
   // Get an access token for the Auth0 Admin API
-  async getAdminAccessToken() {
+  async getAdminAccessToken(): Promise<{ access_token: string }> {
     const options = {
       method: 'POST',
       headers: { 'content-type': 'application/json' },
@@ -27,7 +29,7 @@ export class Auth0Service {
   }
 
   // Get the user's profile from auth0
-  async getUserProfile(accessToken, userID) {
+  async getUserProfile(accessToken: string, userID: string) {
     const options = {
       headers: {
         Authorization: `Bearer ${accessToken}`,
@@ -59,4 +61,41 @@ export class Auth0Service {
 
     return response;
   }
+
+  async sendVerificationEmail(
+    accessToken: string,
+    auth0UserId: string,
+  ): Promise<Auth0Response> {
+    try {
+      const [provider, userId] = auth0UserId.split('|');
+      const payload = {
+        user_id: auth0UserId,
+        identity: { user_id: userId, provider },
+      };
+      const options = {
+        method: 'POST',
+        headers: {
+          Authorization: `Bearer ${accessToken}`,
+          'content-type': 'application/json',
+        },
+        body: JSON.stringify(payload),
+      };
+
+      const response: Auth0Response = await (
+        await fetch(
+          `https://${Config.auth0.backend.DOMAIN}/api/v2/jobs/verification-email`,
+          options,
+        )
+      ).json();
+
+      if ('statusCode' in response) {
+        throw new HttpException(response, response.statusCode);
+      }
+
+      return response;
+    } catch (error) {
+      Sentry.captureException(error);
+      throw error;
+    }
+  }
 }

src/modules/common/auth0.service.ts renamed to src/modules/common/auth0/auth0.service.ts

@@ -0,0 +1,32 @@
+interface Auth0ResponseSuccess {} // tslint:disable-line
+
+interface Auth0ResponseError {
+  statusCode: number;
+  error: string;
+  message: string;
+  errorCode: string;
+}
+
+export type Auth0Response = Auth0ResponseSuccess | Auth0ResponseError;
+
+interface Auth0UserIdentity {
+  connection: string;
+  provider: string;
+  user_id: string;
+  isSocial: boolean;
+}
+
+export interface Auth0User {
+  created_at: string;
+  email: string;
+  email_verified: boolean;
+  identities: Auth0UserIdentity[];
+  name: string;
+  nickname: string;
+  picture: string;
+  updated_at: string;
+  user_id: string;
+  last_ip: string;
+  last_login: string;
+  logins_count: number;
+}

src/modules/common/auth0/auth0.types.ts

@@ -1,5 +1,5 @@
 import { Module } from '@nestjs/common';
-import { Auth0Service } from './auth0.service';
+import { Auth0Service } from './auth0/auth0.service';
 import { UsersService } from './users.service';
 import { commonProviders } from './common.providers';
 import { DatabaseModule } from '../../database/database.module';

src/modules/common/common.module.ts

@@ -132,7 +132,7 @@ describe('modules/mentorships/MentorshipsController', () => {
 
       await expect(
         mentorshipsController.applyForMentorship(
-          <Request>request,
+          request as Request,
           mentorId,
           mentorship,
         ),

src/modules/mentorships/__tests__/mentorships.controller.spec.ts

@@ -28,7 +28,7 @@ import Config from '../../config';
 import { UserDto } from '../common/dto/user.dto';
 import { UserRecordDto } from '../common/dto/user-record.dto';
 import { UsersService } from '../common/users.service';
-import { Auth0Service } from '../common/auth0.service';
+import { Auth0Service } from '../common/auth0/auth0.service';
 import { FileService } from '../common/file.service';
 import { MentorsService } from '../common/mentors.service';
 import { Role, User } from '../common/interfaces/user.interface';
@@ -87,7 +87,7 @@ export class UsersController {
 
     if (!currentUser) {
       try {
-        const data: any = await this.auth0Service.getAdminAccessToken();
+        const data = await this.auth0Service.getAdminAccessToken();
         const user: User = await this.auth0Service.getUserProfile(
           data.access_token,
           userId,
@@ -159,7 +159,7 @@ export class UsersController {
     return response;
   }
 
-  private enrichUserResponse(user: User, auth0User: User): User {
+  private enrichUserResponse(user: User, auth0User: AccessTokenUser): User {
     return {
       ...user,
       email_verified: Boolean(auth0User.email_verified),
@@ -388,6 +388,30 @@ export class UsersController {
     };
   }
 
+  @ApiOperation({ title: 'Send a verification email' })
+  @ApiImplicitParam({ name: 'id', description: 'The user _id' })
+  @Post('verify')
+  async resendVerificationEmail(@Req() request: Request) {
+    const user: User = await this.usersService.findByAuth0Id(
+      request.user.auth0Id,
+    );
+
+    if (!user) {
+      throw new BadRequestException('User not found');
+    }
+
+    const data = await this.auth0Service.getAdminAccessToken();
+    const response = await this.auth0Service.sendVerificationEmail(
+      data.access_token,
+      user.auth0Id,
+    );
+
+    return {
+      success: true,
+      data: response,
+    };
+  }
+
   //#region admin
   @ApiOperation({ title: 'Add a record to user' })
   @ApiImplicitParam({ name: 'id', description: 'The user _id' })

src/modules/users/users.controller.ts

@@ -1,7 +1,17 @@
-import { User } from '../modules/common/interfaces/user.interface';
+interface AccessTokenUser {
+  iss: string;
+  sub: string;
+  aud: string;
+  iat: number;
+  exp: number;
+  at_hash: string;
+  nonce: string;
+  auth0Id: string;
+  email_verified: boolean;
+}
 
 declare module 'express-serve-static-core' {
   interface Request {
-    user?: User;
+    user?: AccessTokenUser;
   }
 }

src/utils/request.d.ts

@@ -819,6 +819,14 @@
   resolved "https://registry.yarnpkg.com/@types/minimatch/-/minimatch-3.0.3.tgz#3dca0e3f33b200fc7d1139c0cd96c1268cadfd9d"
   integrity sha512-tHq6qdbT9U1IRSGf14CL0pUlULksvY9OZ+5eEgl1N7t+OA3tGvNpxJCzuKQlsNgCVwbAs670L1vcVQi8j9HjnA==
 
+"@types/node-fetch@^2.6.1":
+  version "2.6.1"
+  resolved "https://registry.yarnpkg.com/@types/node-fetch/-/node-fetch-2.6.1.tgz#8f127c50481db65886800ef496f20bbf15518975"
+  integrity sha512-oMqjURCaxoSIsHSr1E47QHzbmzNR5rK8McHuNb11BOM9cHcIK3Avy0s/b2JlXHoQGTYS3NsvWzV1M0iK7l0wbA==
+  dependencies:
+    "@types/node" "*"
+    form-data "^3.0.0"
+
 "@types/node@*":
   version "12.0.2"
   resolved "https://registry.yarnpkg.com/@types/node/-/node-12.0.2.tgz#3452a24edf9fea138b48fad4a0a028a683da1e40"
@@ -1615,7 +1623,7 @@ color@^3.1.2:
     color-convert "^1.9.1"
     color-string "^1.5.2"
 
-combined-stream@^1.0.6, combined-stream@~1.0.6:
+combined-stream@^1.0.6, combined-stream@^1.0.8, combined-stream@~1.0.6:
   version "1.0.8"
   resolved "https://registry.yarnpkg.com/combined-stream/-/combined-stream-1.0.8.tgz#c3d45a8b34fd730631a110a8a2520682b31d5a7f"
   dependencies:
@@ -2518,6 +2526,15 @@ form-data@^2.5.0:
     combined-stream "^1.0.6"
     mime-types "^2.1.12"
 
+form-data@^3.0.0:
+  version "3.0.1"
+  resolved "https://registry.yarnpkg.com/form-data/-/form-data-3.0.1.tgz#ebd53791b78356a99af9a300d4282c4d5eb9755f"
+  integrity sha512-RHkBKtLWUVwd7SqRIvCZMEvAMoGUp0XU+seQiZejj0COz3RI3hWP4sCv3gZWWLjJTd7rGwcsF5eKZGii0r/hbg==
+  dependencies:
+    asynckit "^0.4.0"
+    combined-stream "^1.0.8"
+    mime-types "^2.1.12"
+
 formidable@^1.2.0:
   version "1.2.1"
   resolved "https://registry.yarnpkg.com/formidable/-/formidable-1.2.1.tgz#70fb7ca0290ee6ff961090415f4b3df3d2082659"