From 93569786736c32a194826539d1509886dfee5eee Mon Sep 17 00:00:00 2001
From: Rosnovskyi Yaroslav <rosn.yaroslav@gmail.com>
Date: Thu, 27 Mar 2025 09:36:53 +0200
Subject: [PATCH 1/2] added email confirmation

---
 src/app/api/authentication/auth.api.ts        | 10 ++++-
 .../common/constants/api-routes.constants.ts  |  2 +
 .../services/auth-service/AuthService.ts      | 20 ++++++---
 src/app/router/Routes.tsx                     |  2 +
 .../ConfirmEmail/ConfirmEmail.component.tsx   | 43 +++++++++++++++++++
 .../ForgotPasswordReset.component.tsx         | 39 ++++++++++++++++-
 src/features/Auth/Login/Login.component.tsx   | 34 +++++++--------
 .../RegistrationPage.component.tsx            |  7 ++-
 src/models/user/user.model.ts                 | 12 ++++++
 9 files changed, 139 insertions(+), 30 deletions(-)
 create mode 100644 src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx

diff --git a/src/app/api/authentication/auth.api.ts b/src/app/api/authentication/auth.api.ts
index 87083512f..bb624fbf1 100644
--- a/src/app/api/authentication/auth.api.ts
+++ b/src/app/api/authentication/auth.api.ts
@@ -3,13 +3,13 @@ import axios from 'axios';
 
 import { API_ROUTES } from '@/app/common/constants/api-routes.constants';
 import {
-    GoogleLoginRequest,
+    ConfirmEmail,
     RefreshTokenRequest,
     RefreshTokenResponce,
     UserLoginRequest,
     UserLoginResponse,
     UserRegisterRequest,
-    UserRegisterResponse,
+    UserRegisterResponse, ValidateToken,
 } from '@/models/user/user.model';
 
 const defaultBaseUrl = process.env.NODE_ENV === 'development'
@@ -38,5 +38,11 @@ const AuthApi = {
         instance.post<RefreshTokenResponce>(API_ROUTES.AUTH.REFRESH_TOKEN, tokenTokenPapams)
             .then((response) => response.data)
     ),
+    confirmEmail: (confirmEmailRequest: ConfirmEmail) => (
+        instance.post<boolean>(API_ROUTES.AUTH.CONFIRM_EMAIL, confirmEmailRequest)
+    ),
+    validateToken: (validateTokenRequest: ValidateToken) => (
+        instance.post<boolean>(API_ROUTES.AUTH.VALIDATE_TOKEN, validateTokenRequest)
+    ),
 };
 export default AuthApi;
diff --git a/src/app/common/constants/api-routes.constants.ts b/src/app/common/constants/api-routes.constants.ts
index f97599cde..6f605ba59 100644
--- a/src/app/common/constants/api-routes.constants.ts
+++ b/src/app/common/constants/api-routes.constants.ts
@@ -212,6 +212,8 @@ export const API_ROUTES = {
         LOGIN_GOOGLE: 'auth/googleLogin',
         REFRESH_TOKEN: 'auth/refreshToken',
         REGISTER: 'auth/register',
+        CONFIRM_EMAIL: 'auth/confirmEmail',
+        VALIDATE_TOKEN: 'auth/validateToken',
     },
     EMAIL: {
         SEND: 'email/send',
diff --git a/src/app/common/services/auth-service/AuthService.ts b/src/app/common/services/auth-service/AuthService.ts
index 11e190e51..33a3b22d9 100644
--- a/src/app/common/services/auth-service/AuthService.ts
+++ b/src/app/common/services/auth-service/AuthService.ts
@@ -3,7 +3,7 @@ import UsersApi from '@api/users/users.api';
 import { jwtDecode, JwtPayload } from 'jwt-decode';
 
 import AuthApi from '@/app/api/authentication/auth.api';
-import { RefreshTokenRequest, UserRegisterRequest, UserRole } from '@/models/user/user.model';
+import { RefreshTokenRequest, UserRegisterRequest, UserRole, ValidateToken } from '@/models/user/user.model';
 
 interface CustomJwtPayload extends JwtPayload {
     role: string;
@@ -69,10 +69,11 @@ export default class AuthService {
         username: string | null,
         token: string | null,
     ) {
-        await UsersApi.updateForgotPassword({ password, confirmPassword, username, token }).catch((error) => {
-            console.error(error);
-            return Promise.reject(error);
-        });
+        await UsersApi.updateForgotPassword({ password, confirmPassword, username, token })
+            .catch((error) => {
+                console.error(error);
+                return Promise.reject(error);
+            });
     }
 
     public static async registerAsync(
@@ -86,6 +87,15 @@ export default class AuthService {
         }
     }
 
+    public static async ValidateTokenAsync(request: ValidateToken) {
+        try {
+            await AuthApi.validateToken(request);
+        } catch (error) {
+            console.error(error);
+            return Promise.reject(error);
+        }
+    }
+
     public static refreshTokenAsync = async () => {
         try {
             const oldAccesstoken = this.getAccessToken();
diff --git a/src/app/router/Routes.tsx b/src/app/router/Routes.tsx
index c09e66736..71e5d15c2 100644
--- a/src/app/router/Routes.tsx
+++ b/src/app/router/Routes.tsx
@@ -1,6 +1,7 @@
 import { createBrowserRouter, createRoutesFromElements, Route } from 'react-router-dom';
 import FRONTEND_ROUTES from '@constants/frontend-routes.constants';
 import ContextMainPage from '@features/AdminPage/ContextPage/ContextMainPage.component';
+import ConfirmEmail from '@features/Auth/ConfirmEmail/ConfirmEmail.component';
 import ForgotPassword from '@features/Auth/ForgotPassword/ForgotPassword.component';
 import ForgotPasswordResetComponent from '@features/Auth/ForgotPassword/ForgotPasswordReset.component';
 import Login from '@features/Auth/Login/Login.component';
@@ -121,6 +122,7 @@ const router = createBrowserRouter(createRoutesFromElements(
         />
         <Route path="/forgot-password" element={<ForgotPassword />} />
         <Route path="/forgot-password-reset" element={<ForgotPasswordResetComponent />} />
+        <Route path="/confirm-email" element={<ConfirmEmail />} />
     </Route>,
 ));
 
diff --git a/src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx b/src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx
new file mode 100644
index 000000000..e7447f80b
--- /dev/null
+++ b/src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx
@@ -0,0 +1,43 @@
+import { useRef } from 'react';
+import { useLocation, useNavigate } from 'react-router-dom';
+import AuthApi from '@api/authentication/auth.api';
+import Loader from '@components/Loader/Loader.component';
+import FRONTEND_ROUTES from '@constants/frontend-routes.constants';
+import { useAsync } from '@hooks/stateful/useAsync.hook';
+
+import { message } from 'antd';
+
+const ConfirmEmail = () => {
+    const location = useLocation();
+    const navigate = useNavigate();
+    const hasRun = useRef(false);
+
+    useAsync(async () => {
+        if (hasRun.current) return;
+        hasRun.current = true;
+
+        const searchParams = new URLSearchParams(location.search);
+
+        const token = searchParams.get('token');
+        const userName = searchParams.get('username');
+
+        if (!token || !userName) {
+            navigate(FRONTEND_ROUTES.AUTH.LOGIN);
+            return;
+        }
+
+        try {
+            await AuthApi.confirmEmail({ userName, token });
+            message.success('Ваш акаунт успішно створено. Тепер ви можете увійти в систему.');
+        } catch (error) {
+            message.error('Це посилання недійсне або протерміноване.'
+                + ' Поверніться на сторінку відновлення паролю і спробуйте ще раз.');
+        }
+
+        navigate(FRONTEND_ROUTES.AUTH.LOGIN);
+    }, []);
+
+    return <Loader />;
+};
+
+export default ConfirmEmail;
diff --git a/src/features/Auth/ForgotPassword/ForgotPasswordReset.component.tsx b/src/features/Auth/ForgotPassword/ForgotPasswordReset.component.tsx
index fcb48b495..a033f7718 100644
--- a/src/features/Auth/ForgotPassword/ForgotPasswordReset.component.tsx
+++ b/src/features/Auth/ForgotPassword/ForgotPasswordReset.component.tsx
@@ -1,11 +1,13 @@
 import './ForgotPasswordReset.styles.scss';
 
-import { useState } from 'react';
+import { useRef, useState } from 'react';
 import { Navigate, useLocation, useNavigate } from 'react-router-dom';
 import { LeftOutlined } from '@ant-design/icons';
 import AuthService from '@app/common/services/auth-service/AuthService';
 import Password from '@components/Auth/Password.component';
 import FRONTEND_ROUTES from '@constants/frontend-routes.constants';
+import { useAsync } from '@hooks/stateful/useAsync.hook';
+import { ValidateToken } from '@models/user/user.model';
 
 import { Button, Form, message } from 'antd';
 
@@ -14,6 +16,39 @@ const ForgotPasswordResetComponent: React.FC = () => {
     const location = useLocation();
     const navigator = useNavigate();
     const [isValid, setIsValid] = useState<boolean>(true);
+    const [isOkResult, setIsOkResult] = useState(false);
+    const hasRun = useRef(false);
+
+    useAsync(async () => {
+        if (hasRun.current) return;
+        hasRun.current = true;
+
+        const searchParams = new URLSearchParams(location.search);
+
+        const token = searchParams.get('token');
+        const userName = searchParams.get('username');
+
+        if (!token || !userName) {
+            navigator(FRONTEND_ROUTES.AUTH.LOGIN);
+            return;
+        }
+
+        const request: ValidateToken = {
+            token,
+            purpose: 'ResetPassword',
+            userName,
+            tokenProvider: 'CustomResetPassword',
+        };
+
+        try {
+            await AuthService.ValidateTokenAsync(request);
+            setIsOkResult(true);
+        } catch (error) {
+            message.error('Це посилання недійсне або протерміноване. '
+                + 'Поверніться на сторінку відновлення паролю і спробуйте ще раз.', 5);
+            setIsOkResult(false);
+        }
+    }, []);
 
     const handleUpdatePassword = async () => {
         const searchParams = new URLSearchParams(location.search);
@@ -47,7 +82,7 @@ const ForgotPasswordResetComponent: React.FC = () => {
                 <Password onPasswordValid={setIsValid} />
                 <Button
                     htmlType="submit"
-                    disabled={!isValid}
+                    disabled={!isValid && !isOkResult}
                     className="streetcode-custom-button forgotPasswordResetButton"
                 >
                     <p>Відновити пароль</p>
diff --git a/src/features/Auth/Login/Login.component.tsx b/src/features/Auth/Login/Login.component.tsx
index 774a81c18..71b3cc5d1 100644
--- a/src/features/Auth/Login/Login.component.tsx
+++ b/src/features/Auth/Login/Login.component.tsx
@@ -8,7 +8,7 @@ import React, { useRef, useState } from 'react';
 import ReCAPTCHA from 'react-google-recaptcha';
 import { Navigate, useLocation, useNavigate } from 'react-router-dom';
 import AuthService from '@app/common/services/auth-service/AuthService';
-import { ERROR_MESSAGES, INVALID_LOGIN_ATTEMPT } from '@constants/error-messages.constants';
+import { ERROR_MESSAGES } from '@constants/error-messages.constants';
 import FRONTEND_ROUTES from '@constants/frontend-routes.constants';
 import validateEmail from '@utils/userValidators/validateEmail';
 
@@ -45,24 +45,20 @@ const Login: React.FC = () => {
 
     const handleLogin = async ({ login, password }: any) => {
         if (isVerified) {
-            try {
-                const token = recaptchaRef?.current?.getValue();
-                await AuthService.loginAsync(login, password, token)
-                    .then(() => {
-                        message.success('Ви успішно увійшли в систему.');
-                        navigate(location.state.previousUrl || FRONTEND_ROUTES.BASE);
-                    })
-                    .catch((ex) => {
-                        if (ex.response?.data) {
-                            Object.keys(ex.response.data.message).forEach((key) => {
-                                message.error(`${ex.response.data[key].message}`);
-                            });
-                        }
-                    });
-                recaptchaRef.current?.reset();
-            } catch (error) {
-                message.error(INVALID_LOGIN_ATTEMPT);
-            }
+            const token = recaptchaRef?.current?.getValue();
+            await AuthService.loginAsync(login, password, token)
+                .then(() => {
+                    message.success('Ви успішно увійшли в систему.');
+                    navigate(location.state.previousUrl || FRONTEND_ROUTES.BASE);
+                })
+                .catch((ex) => {
+                    if (ex.response?.data) {
+                        Object.keys(ex.response.data[0]).forEach((key, index) => {
+                            message.error(`${ex.response.data[index].message}`);
+                        });
+                    }
+                });
+            recaptchaRef.current?.reset();
         } else {
             message.error(RECAPTCHA_CHECK);
         }
diff --git a/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx b/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx
index f03f646e1..24e8da22d 100644
--- a/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx
+++ b/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx
@@ -13,7 +13,6 @@ import validateLength from '@utils/userValidators/validateLength';
 import validatePatternNameSurname from '@utils/userValidators/validatePatternNameSurname';
 import validateRequired from '@utils/userValidators/validateRequired';
 
-
 import { Button, Form, Input, message } from 'antd';
 
 const RegistrationPage: React.FC = () => {
@@ -29,7 +28,11 @@ const RegistrationPage: React.FC = () => {
     const handleRegister = async (request: UserRegisterRequest) => {
         try {
             await AuthService.registerAsync(request)
-                .then(() => navigate(FRONTEND_ROUTES.AUTH.LOGIN))
+                .then(() => {
+                    navigate(FRONTEND_ROUTES.AUTH.LOGIN);
+                    message.success('Посилання для скидання пароля надіслано на вашу електронну адресу.'
+                        + ' Посилання дійсне протягом 15 хвилин.');
+                })
                 .catch((ex) => {
                     Object.keys(ex.response.data.errors).forEach((key) => {
                         message.error(`${ex.response.data.errors[key]}`);
diff --git a/src/models/user/user.model.ts b/src/models/user/user.model.ts
index 80608762e..04de4deaa 100644
--- a/src/models/user/user.model.ts
+++ b/src/models/user/user.model.ts
@@ -61,6 +61,18 @@ export interface RefreshTokenResponce {
     accessToken:string;
 }
 
+export interface ConfirmEmail {
+    userName: string;
+    token: string;
+}
+
+export interface ValidateToken {
+    token: string;
+    purpose: string;
+    userName: string;
+    tokenProvider: string;
+}
+
 export enum UserRole {
     Admin,
     User,

From 04dcc4cc2af77dd986a9475433997e78d9747cee Mon Sep 17 00:00:00 2001
From: Rosnovskyi Yaroslav <rosn.yaroslav@gmail.com>
Date: Thu, 27 Mar 2025 11:00:53 +0200
Subject: [PATCH 2/2] fixed messages

---
 src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx  | 2 +-
 .../Auth/RegistrationPage/RegistrationPage.component.tsx   | 7 +++++--
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx b/src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx
index e7447f80b..b4e120584 100644
--- a/src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx
+++ b/src/features/Auth/ConfirmEmail/ConfirmEmail.component.tsx
@@ -31,7 +31,7 @@ const ConfirmEmail = () => {
             message.success('Ваш акаунт успішно створено. Тепер ви можете увійти в систему.');
         } catch (error) {
             message.error('Це посилання недійсне або протерміноване.'
-                + ' Поверніться на сторінку відновлення паролю і спробуйте ще раз.');
+                + ' Поверніться на сторінку входу і спробуйте ще раз.');
         }
 
         navigate(FRONTEND_ROUTES.AUTH.LOGIN);
diff --git a/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx b/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx
index 24e8da22d..1ff32d0b8 100644
--- a/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx
+++ b/src/features/Auth/RegistrationPage/RegistrationPage.component.tsx
@@ -30,8 +30,11 @@ const RegistrationPage: React.FC = () => {
             await AuthService.registerAsync(request)
                 .then(() => {
                     navigate(FRONTEND_ROUTES.AUTH.LOGIN);
-                    message.success('Посилання для скидання пароля надіслано на вашу електронну адресу.'
-                        + ' Посилання дійсне протягом 15 хвилин.');
+                    message.success(
+                        `Лист надіслано на ${request.email}. 
+                        Перевірте пошту та перейдіть за посиланням, щоб підтвердити електронну адресу.
+                        Посилання дійсне протягом 15 хвилин.`,
+                    );
                 })
                 .catch((ex) => {
                     Object.keys(ex.response.data.errors).forEach((key) => {