refactor(auth): cleanup auth module and streamline the registration flow

2025-06-18 16:50:11 -04:00
parent 25b94d3e02
commit cdcfe8d7e2
24 changed files with 2140 additions and 1387 deletions
--- a/backend/Modules/Identity/Handlers/Login.cs
+++ b/backend/Modules/Identity/Handlers/Login.cs
@@ -32,8 +32,8 @@ public class LoginHandler(
        LoginRequest request,
        CancellationToken ct)
    {
-        // Find user by email
-        var user = await userManager.FindByEmailAsync(request.Email);
+        // Find the user by email
+        User? user = await userManager.FindByEmailAsync(request.Email);
        if (user is null)
        {
            await SendStringAsync(
@@ -44,7 +44,7 @@ public class LoginHandler(
        }

        // Verify password
-        var isPasswordValid = await userManager.CheckPasswordAsync(user, request.Password);
+        bool isPasswordValid = await userManager.CheckPasswordAsync(user, request.Password);
        if (!isPasswordValid)
        {
            await SendStringAsync(
@@ -54,26 +54,36 @@ public class LoginHandler(
            return;
        }

-        // Generate new refresh token
+        // Check if the email is confirmed
+        if (!user.EmailConfirmed)
+        {
+            await SendStringAsync(
+                "Email not verified. Please check your email for verification instructions.",
+                401,
+                cancellation: ct);
+            return;
+        }
+
+        // Generate a new refresh token
        user.RefreshToken = RefreshTokenGenerator.Next();
        user.RefreshTokenExpiryTime = DateTime.UtcNow.Add(jwtOptions.Value.RefreshTokenLifetime);
        await userManager.UpdateAsync(user);

        // Generate JWT token
-        var accessToken = JwtTokenHelper.GenerateJwtToken(
-            expiresIn: jwtOptions.Value.Lifetime,
-            issuer: jwtOptions.Value.Issuer,
-            audience: jwtOptions.Value.Audience,
-            key: jwtOptions.Value.Key,
-            userId: user.Id.ToString(),
-            email: user.Email ?? string.Empty,
-            alias: user.Alias,
-            firstname: user.Firstname ?? string.Empty,
-            lastname: user.Lastname ?? string.Empty,
-            portraitUrl: user.PortraitUrl);
+        string accessToken = JwtTokenHelper.GenerateJwtToken(
+            jwtOptions.Value.Lifetime,
+            jwtOptions.Value.Issuer,
+            jwtOptions.Value.Audience,
+            jwtOptions.Value.Key,
+            user.Id.ToString(),
+            user.Email ?? string.Empty,
+            user.Alias,
+            user.Firstname ?? string.Empty,
+            user.Lastname ?? string.Empty,
+            user.PortraitUrl);

        await SendOkAsync(
            new LoginResponse(accessToken, user.RefreshToken),
-            cancellation: ct);
+            ct);
    }
 }