feat: add iban foolproof

Author: AlbanSdl

api/prisma/schema.prisma

@@ -8,13 +8,14 @@ datasource db {
 }
 
 model User {
-  id        String @id
-  email     String @unique
-  pwdHash   String
-  firstName String
-  lastName  String
-  balance   Int
-  processed Boolean @default(false)
-  iban      String? @db.Text
-  locker    String? @db.Text
-}
+  id            String  @id
+  email         String  @unique
+  pwdHash       String
+  firstName     String
+  lastName      String
+  balance       Int
+  processed     Boolean @default(false)
+  iban          String? @db.Text
+  ibanFoolproof String? @db.Char(4)
+  locker        String? @db.Text
+}

api/src/auth/auth.controller.ts

@@ -32,7 +32,7 @@ export class AuthController {
       access_token: token,
       currentBalance: user.balance,
       firstName: user.firstName,
-      paymentMethodRegistered: !!user.iban,
+      paymentMethodRegistered: user?.iban ? user?.ibanFoolproof : null,
     };
   }
 
@@ -71,7 +71,7 @@ export class AuthController {
       valid,
       currentBalance: user?.balance,
       firstName: user?.firstName,
-      paymentMethodRegistered: !!user?.iban,
+      paymentMethodRegistered: user?.iban ? user?.ibanFoolproof : null,
     };
   }
 }

api/src/auth/dto/res/access-token-res.dto.ts

@@ -2,5 +2,5 @@ export default class AccessTokenResDto {
   access_token: string;
   firstName: string;
   currentBalance: number;
-  paymentMethodRegistered: boolean;
+  paymentMethodRegistered: string | null;
 }

api/src/auth/dto/res/token-validity-res.dto.ts

@@ -2,5 +2,5 @@ export default class TokenValidityResDto {
   valid: boolean;
   firstName: string;
   currentBalance: number;
-  paymentMethodRegistered: boolean;
+  paymentMethodRegistered: string | null;
 }

api/src/user/interfaces/user.interface.ts

@@ -8,6 +8,7 @@ const USER_SELECT_FILTER = {
     lastName: true,
     balance: true,
     iban: true,
+    ibanFoolproof: true,
     locker: true,
     processed: true,
   },

api/src/user/user.service.ts

@@ -56,6 +56,7 @@ export default class UsersService {
       where: { id: userId },
       data: {
         iban: cryptedIban,
+        ibanFoolproof: data.slice(-4).padStart(4, 'X'),
       },
     } as const);
   }
@@ -100,7 +101,6 @@ export default class UsersService {
       );
       rawData = decrypted.toString('utf8');
     } catch (e) {
-      console.warn(e);
     } finally {
       await this.prisma.user.update({
         where: {

front/public/locales/fr/common.json.ts

@@ -12,7 +12,7 @@ export default {
   'login.fail.other': 'Impossible de se connecter',
   'dashboard.hi': 'Salut',
   'dashboard.balance': 'Ton solde BuckUTT :',
-  'dashboard.iban.yes': 'IBAN enregistré',
+  'dashboard.iban.yes': 'IBAN enregistré (finissant par {{last4}})',
   'dashboard.iban.no': "Pas d'IBAN enregistré",
   'dashboard.iban.save': 'Enregistrer',
   'dashboard.balanceTooLow': 'Ton solde est insuffisant pour effectuer un virement',

front/src/api/api.ts

@@ -103,9 +103,7 @@ export class ResponseHandler<T, R = undefined> {
  * @param rawResponse The raw response from the API.
  */
 function formatResponse<T>(rawResponse: RawResponseType<T>): T {
-  if (typeof rawResponse === 'string' && !isNaN(Date.parse(rawResponse))) {
-    return new Date(rawResponse) as T;
-  } else if (Array.isArray(rawResponse)) {
+  if (Array.isArray(rawResponse)) {
     return rawResponse.map(formatResponse) as T;
   } else if (typeof rawResponse === 'object' && rawResponse !== null) {
     return Object.fromEntries(

front/src/app/login/page.tsx

@@ -14,7 +14,7 @@ export default function LoginPage() {
     <div id="login-page" className={styles.loginPage}>
       <LoginForm />
       <div className={styles.bottomNotes}>
-        <div>© 2024 UTT NET GROUP</div>
+        <div>© 2025 UTT NET GROUP</div>
         <div>BuckUTT</div>
         <div>BDE UTT</div>
         <Link className={styles.bottomLink} href={'/legal'}>

front/src/app/page.tsx

@@ -66,7 +66,9 @@ export default function HomePage() {
           </div>
           <div
             className={[styles.ibanRegistered, user?.paymentMethodRegistered ? styles.true : styles.false].join(' ')}>
-            {user?.paymentMethodRegistered ? t('common:dashboard.iban.yes') : t('common:dashboard.iban.no')}
+            {user?.paymentMethodRegistered
+              ? t('common:dashboard.iban.yes', { last4: user.paymentMethodRegistered })
+              : t('common:dashboard.iban.no')}
           </div>
         </div>
         {(user?.currentBalance ?? 0) > 0 ? (
@@ -96,7 +98,7 @@ export default function HomePage() {
                   api
                     .put<SetIbanRequestDto, { errorCode?: number }>('/user/iban', { data })
                     .on('success', async () => {
-                      dispatch(setIbanRegistered());
+                      dispatch(setIbanRegistered(value));
                       setIbanErrorMessage('');
                     })
                     .on(401, (body) =>
@@ -121,7 +123,7 @@ export default function HomePage() {
         )}
       </div>
       <div className={styles.bottomNotes}>
-        <div>© 2024 UTT NET GROUP</div>
+        <div>© 2025 UTT NET GROUP</div>
         <div>BuckUTT</div>
         <div>BDE UTT</div>
         <Link className={styles.bottomLink} href={'/legal'}>