Adds: verification flow

Aryan51203 · Aryan51203 · commit 61656fadd24f · 2025-06-20T04:47:08.000+05:30
diff --git a/internal/api/applications.go b/internal/api/applications.go
@@ -5,7 +5,7 @@ import (
 
 	"github.com/gin-gonic/gin"
 
-	"github.com/sdslabs/nymeria/internal/database/applications"
+	database "github.com/sdslabs/nymeria/internal/database/applications"
 	"github.com/sdslabs/nymeria/internal/database/schema"
 	"github.com/sdslabs/nymeria/internal/utils"
 )
@@ -28,7 +28,7 @@ func HandleGetApplicationFlow(c *gin.Context) {
 }
 
 func HandleFetchAllApplicationsFlow(c *gin.Context) {
-	apps, err := applications.GetAllApplications()
+	apps, err := database.GetAllApplications()
 
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{
@@ -48,7 +48,7 @@ func HandleFetchAllApplicationsFlow(c *gin.Context) {
 func HandleFetchApplicationByIDFlow(c *gin.Context) {
 	id := c.Param("id")
 
-	app, err := applications.GetApplicationByID(id)
+	app, err := database.GetApplicationByID(id)
 
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{
@@ -103,7 +103,7 @@ func HandleCreateApplicationFlow(c *gin.Context) {
 		ClientSecret:   clientSecret,
 	}
 
-	err = applications.CreateApplication(app)
+	err = database.CreateApplication(app)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{
 			"status":  "error",
@@ -122,7 +122,7 @@ func HandleCreateApplicationFlow(c *gin.Context) {
 func HandleDeleteApplicationFlow(c *gin.Context) {
 	id := c.Param("id")
 
-	err := applications.DeleteApplication(id)
+	err := database.DeleteApplication(id)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{
 			"status":  "error",
@@ -149,7 +149,7 @@ func HandleUpdateApplicationFlow(c *gin.Context) {
 		return
 	}
 
-	app, err := applications.GetApplicationByID(req.ApplicationID)
+	app, err := database.GetApplicationByID(req.ApplicationID)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{
 			"status":  "error",
@@ -193,7 +193,7 @@ func HandleUpdateApplicationFlow(c *gin.Context) {
 		app.RedirectURIs = req.RedirectURIs
 	}
 
-	err = applications.UpdateApplication(req.ApplicationID, app)
+	err = database.UpdateApplication(req.ApplicationID, app)
 
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{
diff --git a/internal/api/main.go b/internal/api/main.go
@@ -63,6 +63,10 @@ func Start() {
 	r.GET("/login", HandleGetLoginFlow)
 	r.POST("/login", middlewares.CSRFMiddleware(), HandlePostLoginFlow)
 
+	r.GET("/verification", HandleGetVerificationFlow)
+	r.POST("/verification", HandlePostVerificationCodeFlow)
+	r.POST("/verification/code", HandlePostVerifyEmailFlow)
+
 	r.GET("/applications", HandleGetApplicationFlow)
 	r.POST("/applications", HandleFetchAllApplicationsFlow)
 	r.POST("/applications/:id", HandleFetchApplicationByIDFlow)
diff --git a/internal/api/types.go b/internal/api/types.go
@@ -15,16 +15,24 @@ type LoginRequest struct {
 type CreateApplicationRequest struct {
 	Name           string   `json:"name" binding:"required"`
 	ApplicationURL string   `json:"application_url" binding:"required"`
-	CSRFToken      string   `json:"csrf_token" binding:"required"`
 	AllowedOrigins []string `json:"allowed_origins" binding:"required"`
 	RedirectURIs   []string `json:"redirect_uris" binding:"required"`
 }
 
 type UpdateApplicationRequest struct {
 	ApplicationID  string   `json:"application_id" binding:"required"`
-	CSRFToken      string   `json:"csrf_token" binding:"required"`
 	ApplicationURL string   `json:"application_url" binding:"omitempty"`
 	AllowedOrigins []string `json:"allowed_origins" binding:"omitempty"`
 	RedirectURIs   []string `json:"redirect_uris" binding:"omitempty"`
 	NewKeyFlag     bool     `json:"new_key_flag" binding:"omitempty"`
 }
+
+type VerifyEmailRequest struct {
+	Email       string `json:"email" binding:"required"`
+	IsIITRCheck bool   `json:"is_iitr_check" binding:"omitempty"`
+}
+
+type VerifyEmailCodeRequest struct {
+	Email string `json:"email" binding:"required"`
+	Code  string `json:"code" binding:"required"`
+}
diff --git a/internal/api/verification.go b/internal/api/verification.go
@@ -0,0 +1,105 @@
+package api
+
+import (
+	"net/http"
+
+	"github.com/gin-gonic/gin"
+
+	"github.com/sdslabs/nymeria/internal/smtp"
+	"github.com/sdslabs/nymeria/internal/utils"
+)
+
+func HandleGetVerificationFlow(c *gin.Context) {
+	csrfToken, err := utils.GenerateCSRFToken(c.GetHeader("X-User-ID")) // TODO: Get user ID from session
+	if err != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{
+			"status":  "error",
+			"message": "Failed to generate CSRF token",
+		})
+		return
+	}
+
+	c.JSON(http.StatusOK, gin.H{
+		"status":     "success",
+		"message":    "Email verification flow initiated",
+		"csrf_token": csrfToken,
+	})
+}
+
+func HandlePostVerificationCodeFlow(c *gin.Context) {
+	var req VerifyEmailRequest
+	err := c.ShouldBindJSON(&req)
+	if err != nil {
+		c.JSON(http.StatusBadRequest, gin.H{
+			"status":  "error",
+			"message": "Invalid request body",
+		})
+		return
+	}
+
+	if req.Email == "" {
+		c.JSON(http.StatusBadRequest, gin.H{
+			"status":  "error",
+			"message": "Email is required",
+		})
+		return
+	}
+
+	otp, err := smtp.SendOTPHandler(req.Email, req.IsIITRCheck)
+	if err != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{
+			"status":  "error",
+			"message": err.Error(),
+		})
+		return
+	}
+
+	c.JSON(http.StatusOK, gin.H{
+		"status":  "success",
+		"message": "Email verification code sent",
+		"data": gin.H{
+			"otp": otp,
+		},
+	})
+}
+
+func HandlePostVerifyEmailFlow(c *gin.Context) {
+	var req VerifyEmailCodeRequest
+	err := c.ShouldBindJSON(&req)
+	if err != nil {
+		c.JSON(http.StatusBadRequest, gin.H{
+			"status":  "error",
+			"message": "Invalid request body",
+		})
+		return
+	}
+
+	if req.Email == "" {
+		c.JSON(http.StatusBadRequest, gin.H{
+			"status":  "error",
+			"message": "Email is required",
+		})
+		return
+	}
+
+	if req.Code == "" {
+		c.JSON(http.StatusBadRequest, gin.H{
+			"status":  "error",
+			"message": "Code is required",
+		})
+		return
+	}
+
+	err = smtp.VerifyOTPHandler(req.Email, req.Code)
+	if err != nil {
+		c.JSON(http.StatusBadRequest, gin.H{
+			"status":  "error",
+			"message": err.Error(),
+		})
+	}
+
+	c.JSON(http.StatusOK, gin.H{
+		"status":  "success",
+		"message": "Email verified",
+	})
+}
diff --git a/internal/database/applications/applications.go b/internal/database/applications/applications.go
@@ -1,4 +1,4 @@
-package applications
+package database
 
 import (
 	"github.com/sdslabs/nymeria/internal/database"

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-package applications`
	`1`	`+package database`
`2`	`2`
`3`	`3`	`import (`
`4`	`4`	`"github.com/sdslabs/nymeria/internal/database"`