chore: configure preprod email secrets

.gitea/workflows/deploy-socialize.yml

@@ -47,9 +47,15 @@ jobs:
           DEPLOY_USER: ${{ secrets.DEPLOY_USER }}
           DEPLOY_SSH_PRIVATE_KEY_B64: ${{ secrets.DEPLOY_SSH_PRIVATE_KEY_B64 }}
           POSTGRES_PASSWORD: ${{ secrets.POSTGRES_PASSWORD }}
+          RESEND_API_KEY: ${{ secrets.RESEND_API_KEY }}
+          RESEND_FROM_EMAIL: ${{ secrets.RESEND_FROM_EMAIL }}
+          JWT_SIGNING_KEY: ${{ secrets.JWT_SIGNING_KEY }}
           SOCIALIZE_IMAGE_TAG: ${{ gitea.sha }}
         run: |
           : "${POSTGRES_PASSWORD:?POSTGRES_PASSWORD secret is required}"
+          : "${RESEND_API_KEY:?RESEND_API_KEY secret is required}"
+          : "${RESEND_FROM_EMAIL:?RESEND_FROM_EMAIL secret is required}"
+          : "${JWT_SIGNING_KEY:?JWT_SIGNING_KEY secret is required}"
           : "${SOCIALIZE_IMAGE_TAG:?SOCIALIZE_IMAGE_TAG is required}"
 
           mkdir -p ~/.ssh
@@ -69,6 +75,14 @@ jobs:
             write_env_value POSTGRES_PASSWORD "$POSTGRES_PASSWORD"
             write_env_value POSTGRES_DB socialize
             write_env_value ASPNETCORE_ENVIRONMENT Production
+            write_env_value WEBSITE_FRONTEND_BASE_URL https://socialize.mapachotes.com
+            write_env_value RESEND_API_KEY "$RESEND_API_KEY"
+            write_env_value RESEND_FROM_EMAIL "$RESEND_FROM_EMAIL"
+            write_env_value JWT_ISSUER https://socialize.mapachotes.com
+            write_env_value JWT_AUDIENCE socialize-preprod
+            write_env_value JWT_SIGNING_KEY "$JWT_SIGNING_KEY"
+            write_env_value JWT_LIFETIME 00:05:00
+            write_env_value JWT_REFRESH_TOKEN_LIFETIME 0.00:30:00
             write_env_value SOCIALIZE_IMAGE_TAG "$SOCIALIZE_IMAGE_TAG"
           } > "$deploy_env"
 

README.md

@@ -76,7 +76,8 @@ http://localhost:8080
 http://<this-machine-lan-ip>:8080
 ```
 
-For preprod deployment, configure the `POSTGRES_PASSWORD` Gitea secret.
+For preprod deployment, configure the `POSTGRES_PASSWORD`, `RESEND_API_KEY`,
+`RESEND_FROM_EMAIL`, and `JWT_SIGNING_KEY` Gitea secrets.
 The deploy workflow writes the remote `.env` file before running the server deploy script.
 
 ## Solution

backend/src/Socialize.Api/Infrastructure/DependencyInjection.cs

@@ -26,8 +26,14 @@ public static class DependencyInjection
 
         builder.Services.Configure<EmailerOptions>(
             builder.Configuration.GetSection(EmailerOptions.ConfigurationSection));
+        if (builder.Environment.IsDevelopment())
+        {
+            builder.Services.AddTransient<IEmailSender, LoggerEmailSender>();
+        }
+        else
+        {
             builder.Services.AddTransient<IEmailSender, ResendEmailSender>();
-        //builder.Services.AddTransient<IEmailSender, EmailSender>();
+        }
 
         builder.Services.AddHttpClient();
 

backend/src/Socialize.Api/Infrastructure/Emailer/Services/LoggerEmailSender.cs

@@ -5,18 +5,15 @@ namespace Socialize.Api.Infrastructure.Emailer.Services;
 public class LoggerEmailSender(ILogger<IEmailSender> logger)
     : IEmailSender
 {
-    public async Task SendEmailAsync(string email, string subject, string message)
+    public Task SendEmailAsync(string email, string subject, string message)
     {
-        try
+        logger.LogInformation(
-        {
+            "Development email to {Email} with subject {Subject}:{NewLine}{Message}",
-            logger.LogInformation("Sending email to {Email} with subject: {Subject}", email, subject);
+            email,
-            await Task.Delay(1000);
+            subject,
-            logger.LogInformation("Email sent successfully to {Email}", email);
+            Environment.NewLine,
-        }
+            message);
-        catch (Exception ex)
+
-        {
+        return Task.CompletedTask;
-            logger.LogError(ex, "Failed to send email to {Email}", email);
-            throw;
-        }
     }
 }

backend/src/Socialize.Api/Infrastructure/Emailer/Services/ResendEmailSender.cs

@@ -20,6 +20,16 @@ public class ResendEmailSender : IEmailSender
         _httpClient = httpClientFactory.CreateClient();
         _options = options.Value;
 
+        if (string.IsNullOrWhiteSpace(_options.ApiKey))
+        {
+            throw new InvalidOperationException("Emailer:ApiKey is required when using Resend email delivery.");
+        }
+
+        if (string.IsNullOrWhiteSpace(_options.FromEmail))
+        {
+            throw new InvalidOperationException("Emailer:FromEmail is required when using Resend email delivery.");
+        }
+
         _httpClient.DefaultRequestHeaders.Authorization =
             new AuthenticationHeaderValue("Bearer", _options.ApiKey);
 

docker-compose.yml

@@ -21,6 +21,14 @@ services:
       ASPNETCORE_ENVIRONMENT: ${ASPNETCORE_ENVIRONMENT:-Development}
       ASPNETCORE_URLS: http://0.0.0.0:8080
       ConnectionStrings__PostgresConnection: Host=postgres;Port=5432;Database=${POSTGRES_DB:-socialize};Username=${POSTGRES_USER:-sa};Password=${POSTGRES_PASSWORD:?POSTGRES_PASSWORD is required}
+      Website__FrontendBaseUrl: ${WEBSITE_FRONTEND_BASE_URL:-http://localhost:8080}
+      Emailer__ApiKey: ${RESEND_API_KEY:-}
+      Emailer__FromEmail: ${RESEND_FROM_EMAIL:-}
+      Authentication__Jwt__Issuer: ${JWT_ISSUER:-http://localhost:8080}
+      Authentication__Jwt__Audience: ${JWT_AUDIENCE:-socialize-local}
+      Authentication__Jwt__Key: ${JWT_SIGNING_KEY:-socialize-dev-local-signing-key-please-change}
+      Authentication__Jwt__Lifetime: ${JWT_LIFETIME:-00:05:00}
+      Authentication__Jwt__RefreshTokenLifetime: ${JWT_REFRESH_TOKEN_LIFETIME:-0.00:30:00}
     depends_on:
       postgres:
         condition: service_healthy