logto-io
diff --git a/‎packages/experience/src/App.tsx‎
Lines changed: 10 additions & 0 deletions b/‎packages/experience/src/App.tsx‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎packages/experience/src/apis/experience/mfa.ts‎
Lines changed: 22 additions & 0 deletions b/‎packages/experience/src/apis/experience/mfa.ts‎
Lines changed: 22 additions & 0 deletions
diff --git a/‎packages/experience/src/containers/MfaCodeVerification/index.module.scss‎
Lines changed: 17 additions & 0 deletions b/‎packages/experience/src/containers/MfaCodeVerification/index.module.scss‎
Lines changed: 17 additions & 0 deletions
diff --git a/‎packages/experience/src/containers/MfaCodeVerification/index.tsx‎
Lines changed: 126 additions & 0 deletions b/‎packages/experience/src/containers/MfaCodeVerification/index.tsx‎
Lines changed: 126 additions & 0 deletions
diff --git a/‎packages/experience/src/containers/MfaCodeVerification/use-mfa-code-verification.ts‎
Lines changed: 72 additions & 0 deletions b/‎packages/experience/src/containers/MfaCodeVerification/use-mfa-code-verification.ts‎
Lines changed: 72 additions & 0 deletions
diff --git a/‎packages/experience/src/containers/MfaCodeVerification/use-resend-mfa-verification-code.ts‎
Lines changed: 54 additions & 0 deletions b/‎packages/experience/src/containers/MfaCodeVerification/use-resend-mfa-verification-code.ts‎
Lines changed: 54 additions & 0 deletions
diff --git a/‎packages/experience/src/pages/MfaVerification/EmailVerificationCode/index.module.scss‎
Lines changed: 6 additions & 0 deletions b/‎packages/experience/src/pages/MfaVerification/EmailVerificationCode/index.module.scss‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎packages/experience/src/pages/MfaVerification/EmailVerificationCode/index.tsx‎
Lines changed: 58 additions & 0 deletions b/‎packages/experience/src/pages/MfaVerification/EmailVerificationCode/index.tsx‎
Lines changed: 58 additions & 0 deletions
@@ -26,6 +26,8 @@ import TotpBinding from './pages/MfaBinding/TotpBinding';
 import WebAuthnBinding from './pages/MfaBinding/WebAuthnBinding';
 import MfaVerification from './pages/MfaVerification';
 import BackupCodeVerification from './pages/MfaVerification/BackupCodeVerification';
+import EmailVerificationCode from './pages/MfaVerification/EmailVerificationCode';
+import PhoneVerificationCode from './pages/MfaVerification/PhoneVerificationCode';
 import TotpVerification from './pages/MfaVerification/TotpVerification';
 import WebAuthnVerification from './pages/MfaVerification/WebAuthnVerification';
 import OneTimeToken from './pages/OneTimeToken';
@@ -125,6 +127,14 @@ const App = () => {
                         <Route path={MfaFactor.TOTP} element={<TotpVerification />} />
                         <Route path={MfaFactor.WebAuthn} element={<WebAuthnVerification />} />
                         <Route path={MfaFactor.BackupCode} element={<BackupCodeVerification />} />
+                        <Route
+                          path={MfaFactor.EmailVerificationCode}
+                          element={<EmailVerificationCode />}
+                        />
+                        <Route
+                          path={MfaFactor.PhoneVerificationCode}
+                          element={<PhoneVerificationCode />}
+                        />
                       </Route>
 
                       {/* Continue set up missing profile */}
 
@@ -1,5 +1,6 @@
 import {
   MfaFactor,
+  type SignInIdentifier,
   type WebAuthnRegistrationOptions,
   type WebAuthnAuthenticationOptions,
   type BindMfaPayload,
@@ -130,3 +131,24 @@ export const verifyMfa = async (payload: VerifyMfaPayload, verificationId?: stri
 
   return submitInteraction();
 };
+
+// Email/Phone MFA verification code
+export const sendMfaVerificationCode = async (
+  identifierType: SignInIdentifier.Email | SignInIdentifier.Phone
+) =>
+  api
+    .post(`${experienceApiRoutes.verification}/mfa-verification-code`, {
+      json: { identifierType },
+    })
+    .json<{ verificationId: string }>();
+
+export const verifyMfaByVerificationCode = async (
+  verificationId: string,
+  code: string,
+  identifierType: SignInIdentifier.Email | SignInIdentifier.Phone
+) => {
+  await api.post(`${experienceApiRoutes.verification}/mfa-verification-code/verify`, {
+    json: { verificationId, code, identifierType },
+  });
+  return submitInteraction();
+};
@@ -0,0 +1,17 @@
+@use '@/scss/underscore' as _;
+
+.codeInput {
+  margin-top: _.unit(4);
+}
+
+.continueButton {
+  margin-top: _.unit(6);
+}
+
+.message {
+  margin-top: _.unit(3);
+}
+
+.link {
+  cursor: pointer;
+}
@@ -0,0 +1,126 @@
+import { type SignInIdentifier } from '@logto/schemas';
+import { useCallback, useEffect, useState } from 'react';
+import { Trans, useTranslation } from 'react-i18next';
+
+import Button from '@/components/Button';
+import TextLink from '@/components/TextLink';
+import VerificationCodeInput from '@/components/VerificationCode';
+
+import styles from './index.module.scss';
+import useMfaCodeVerification from './use-mfa-code-verification';
+import useResendMfaVerificationCode from './use-resend-mfa-verification-code';
+
+const codeLength = 6;
+
+const isCodeReady = (code: string[]) => {
+  return code.length === codeLength && code.every(Boolean);
+};
+
+type Props = {
+  readonly identifierType: SignInIdentifier.Email | SignInIdentifier.Phone;
+  readonly verificationId: string;
+};
+
+const MfaCodeVerification = ({ identifierType, verificationId }: Props) => {
+  const { t } = useTranslation();
+  const [codeInput, setCodeInput] = useState<string[]>([]);
+  const [inputErrorMessage, setInputErrorMessage] = useState<string>();
+  const [currentVerificationId, setCurrentVerificationId] = useState(verificationId);
+
+  useEffect(() => {
+    setCurrentVerificationId(verificationId);
+  }, [verificationId]);
+
+  const errorCallback = useCallback(() => {
+    setCodeInput([]);
+    setInputErrorMessage(undefined);
+  }, []);
+
+  const { errorMessage: submitErrorMessage, onSubmit } = useMfaCodeVerification(
+    identifierType,
+    currentVerificationId,
+    errorCallback
+  );
+
+  const [isSubmitting, setIsSubmitting] = useState(false);
+
+  const errorMessage = inputErrorMessage ?? submitErrorMessage;
+
+  const { seconds, isRunning, onResendVerificationCode } =
+    useResendMfaVerificationCode(identifierType);
+
+  const handleSubmit = useCallback(
+    async (code: string[]) => {
+      if (isSubmitting) {
+        return;
+      }
+
+      setInputErrorMessage(undefined);
+      setIsSubmitting(true);
+
+      await onSubmit(code.join(''));
+      setIsSubmitting(false);
+    },
+    [onSubmit, isSubmitting]
+  );
+
+  return (
+    <>
+      <VerificationCodeInput
+        name="mfaCode"
+        value={codeInput}
+        className={styles.codeInput}
+        error={errorMessage}
+        onChange={(code) => {
+          setCodeInput(code);
+          if (isCodeReady(code)) {
+            void handleSubmit(code);
+          }
+        }}
+      />
+      <div className={styles.message}>
+        {isRunning ? (
+          <Trans components={{ span: <span key="counter" /> }}>
+            {t('description.resend_after_seconds', { seconds })}
+          </Trans>
+        ) : (
+          <Trans
+            components={{
+              a: (
+                <TextLink
+                  className={styles.link}
+                  onClick={async () => {
+                    setInputErrorMessage(undefined);
+                    setCodeInput([]);
+                    const newId = await onResendVerificationCode();
+                    if (newId) {
+                      setCurrentVerificationId(newId);
+                    }
+                  }}
+                />
+              ),
+            }}
+          >
+            {t('description.resend_passcode')}
+          </Trans>
+        )}
+      </div>
+      <Button
+        title="action.continue"
+        type="primary"
+        className={styles.continueButton}
+        isLoading={isSubmitting}
+        onClick={() => {
+          if (!isCodeReady(codeInput)) {
+            setInputErrorMessage(t('error.invalid_passcode'));
+            return;
+          }
+
+          void handleSubmit(codeInput);
+        }}
+      />
+    </>
+  );
+};
+
+export default MfaCodeVerification;
@@ -0,0 +1,72 @@
+import { InteractionEvent, type SignInIdentifier } from '@logto/schemas';
+import { useCallback, useMemo, useState } from 'react';
+
+import { verifyMfaByVerificationCode } from '@/apis/experience';
+import useApi from '@/hooks/use-api';
+import type { ErrorHandlers } from '@/hooks/use-error-handler';
+import useErrorHandler from '@/hooks/use-error-handler';
+import useGlobalRedirectTo from '@/hooks/use-global-redirect-to';
+import useSubmitInteractionErrorHandler from '@/hooks/use-submit-interaction-error-handler';
+
+import useGeneralVerificationCodeErrorHandler from '../VerificationCode/use-general-verification-code-error-handler';
+
+const useMfaCodeVerification = (
+  identifierType: SignInIdentifier.Email | SignInIdentifier.Phone,
+  verificationId: string,
+  errorCallback?: () => void
+) => {
+  const [errorMessage, setErrorMessage] = useState<string>();
+  const asyncVerify = useApi(verifyMfaByVerificationCode);
+  const handleError = useErrorHandler();
+  const redirectTo = useGlobalRedirectTo();
+
+  const { generalVerificationCodeErrorHandlers, errorMessage: generalErrorMessage } =
+    useGeneralVerificationCodeErrorHandler();
+
+  // In sign-in event, submitting interaction shares same error handling
+  const submitInteractionErrorHandler = useSubmitInteractionErrorHandler(InteractionEvent.SignIn, {
+    replace: true,
+  });
+
+  const errorHandlers: ErrorHandlers = useMemo(
+    () => ({
+      ...generalVerificationCodeErrorHandlers,
+      ...submitInteractionErrorHandler,
+    }),
+    [generalVerificationCodeErrorHandlers, submitInteractionErrorHandler]
+  );
+
+  const onSubmit = useCallback(
+    async (code: string) => {
+      const [error, result] = await asyncVerify(verificationId, code, identifierType);
+
+      if (error) {
+        await handleError(error, errorHandlers);
+        setErrorMessage(generalErrorMessage);
+        errorCallback?.();
+        return;
+      }
+
+      if (result?.redirectTo) {
+        await redirectTo(result.redirectTo);
+      }
+    },
+    [
+      asyncVerify,
+      errorCallback,
+      errorHandlers,
+      generalErrorMessage,
+      handleError,
+      identifierType,
+      redirectTo,
+      verificationId,
+    ]
+  );
+
+  return {
+    errorMessage: errorMessage ?? generalErrorMessage,
+    onSubmit,
+  };
+};
+
+export default useMfaCodeVerification;
@@ -0,0 +1,54 @@
+import { type SignInIdentifier } from '@logto/schemas';
+import { t } from 'i18next';
+import { useCallback } from 'react';
+import { useTimer } from 'react-timer-hook';
+
+import { sendMfaVerificationCode } from '@/apis/experience';
+import useApi from '@/hooks/use-api';
+import useErrorHandler from '@/hooks/use-error-handler';
+import useToast from '@/hooks/use-toast';
+
+export const timeRange = 59;
+
+const getTimeout = () => {
+  const now = new Date();
+  now.setSeconds(now.getSeconds() + timeRange);
+  return now;
+};
+
+const useResendMfaVerificationCode = (
+  identifierType: SignInIdentifier.Email | SignInIdentifier.Phone
+) => {
+  const { setToast } = useToast();
+  const handleError = useErrorHandler();
+  const resend = useApi(sendMfaVerificationCode);
+
+  const { seconds, isRunning, restart } = useTimer({
+    autoStart: true,
+    expiryTimestamp: getTimeout(),
+  });
+
+  const onResendVerificationCode = useCallback(async () => {
+    const [error, result] = await resend(identifierType);
+
+    if (error) {
+      await handleError(error);
+      return;
+    }
+
+    if (result) {
+      setToast(t('description.passcode_sent'));
+      restart(getTimeout(), true);
+    }
+
+    return result?.verificationId;
+  }, [handleError, identifierType, resend, restart, setToast]);
+
+  return {
+    seconds,
+    isRunning,
+    onResendVerificationCode,
+  };
+};
+
+export default useResendMfaVerificationCode;
@@ -0,0 +1,6 @@
+@use '@/scss/underscore' as _;
+
+.switchFactorLink {
+  margin-top: _.unit(6);
+}
+
@@ -0,0 +1,58 @@
+import { SignInIdentifier } from '@logto/schemas';
+import { useEffect, useState } from 'react';
+
+import SecondaryPageLayout from '@/Layout/SecondaryPageLayout';
+import SectionLayout from '@/Layout/SectionLayout';
+import { sendMfaVerificationCode } from '@/apis/experience';
+import SwitchMfaFactorsLink from '@/components/SwitchMfaFactorsLink';
+import MfaCodeVerification from '@/containers/MfaCodeVerification';
+import useErrorHandler from '@/hooks/use-error-handler';
+import useMfaFlowState from '@/hooks/use-mfa-factors-state';
+import ErrorPage from '@/pages/ErrorPage';
+import { UserMfaFlow } from '@/types';
+
+import styles from './index.module.scss';
+
+const EmailVerificationCode = () => {
+  const flowState = useMfaFlowState();
+  const [verificationId, setVerificationId] = useState<string>();
+  const handleError = useErrorHandler();
+
+  useEffect(() => {
+    void (async () => {
+      try {
+        const { verificationId } = await sendMfaVerificationCode(SignInIdentifier.Email);
+        setVerificationId(verificationId);
+      } catch (error) {
+        await handleError(error);
+      }
+    })();
+  }, [handleError]);
+
+  if (!flowState) {
+    return <ErrorPage title="error.invalid_session" />;
+  }
+
+  return (
+    <SecondaryPageLayout title="mfa.verify_mfa_factors">
+      <SectionLayout
+        title="mfa.enter_email_verification_code"
+        description="mfa.enter_email_verification_code_description"
+      >
+        {verificationId ? (
+          <MfaCodeVerification
+            identifierType={SignInIdentifier.Email}
+            verificationId={verificationId}
+          />
+        ) : null}
+      </SectionLayout>
+      <SwitchMfaFactorsLink
+        flow={UserMfaFlow.MfaVerification}
+        flowState={flowState}
+        className={styles.switchFactorLink}
+      />
+    </SecondaryPageLayout>
+  );
+};
+
+export default EmailVerificationCode;