radziel/spotlightcam
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add email verification, password reset, and WSDC integration (Phase 1.5)

Browse Source 
Backend features:
- AWS SES email service with HTML templates
- Email verification with dual method (link + 6-digit PIN code)
- Password reset workflow with secure tokens
- WSDC API proxy for dancer lookup and auto-fill registration
- Extended User model with verification and WSDC fields
- Email verification middleware for protected routes

Frontend features:
- Two-step registration with WSDC ID lookup
- Password strength indicator component
- Email verification page with code input
- Password reset flow (request + reset pages)
- Verification banner for unverified users
- Updated authentication context and API service

Testing:
- 65 unit tests with 100% coverage of new features
- Tests for auth utils, email service, WSDC controller, and middleware
- Integration tests for full authentication flows
- Comprehensive mocking of AWS SES and external APIs

Database:
- Migration: add WSDC fields (firstName, lastName, wsdcId)
- Migration: add email verification fields (token, code, expiry)
- Migration: add password reset fields (token, expiry)

Documentation:
- Complete Phase 1.5 documentation
- Test suite documentation and best practices
- Updated session context with new features
This commit is contained in:
Radosław Gierwiało
2025-11-13 15:47:54 +01:00
parent 4d7f814538
commit 7a2f6d07ec
31 changed files with 5586 additions and 87 deletions
Download Patch File Download Diff File Expand all files Collapse all files

196
frontend/src/pages/ResetPasswordPage.jsx Normal file
View File

@@ -0,0 +1,196 @@
import { useState } from 'react';
import { useNavigate, useSearchParams, Link } from 'react-router-dom';
import { authAPI } from '../services/api';
import { Video, Lock, CheckCircle, XCircle, Loader2 } from 'lucide-react';
import PasswordStrengthIndicator from '../components/common/PasswordStrengthIndicator';
const ResetPasswordPage = () => {
const [searchParams] = useSearchParams();
const navigate = useNavigate();
const token = searchParams.get('token');
const [newPassword, setNewPassword] = useState('');
const [confirmPassword, setConfirmPassword] = useState('');
const [loading, setLoading] = useState(false);
const [success, setSuccess] = useState(false);
const [error, setError] = useState('');
const handleSubmit = async (e) => {
e.preventDefault();
setError('');
// Validation
if (!token) {
setError('Invalid or missing reset token');
return;
}
if (newPassword !== confirmPassword) {
setError('Passwords do not match');
return;
}
if (newPassword.length < 8) {
setError('Password must be at least 8 characters long');
return;
}
setLoading(true);
try {
await authAPI.resetPassword(token, newPassword);
setSuccess(true);
} catch (err) {
setError(err.data?.error || 'Failed to reset password. The link may have expired.');
} finally {
setLoading(false);
}
};
// Success state
if (success) {
return (
<div className="min-h-screen bg-gradient-to-br from-primary-500 to-primary-700 flex items-center justify-center px-4">
<div className="max-w-md w-full bg-white rounded-lg shadow-xl p-8">
<div className="flex flex-col items-center text-center">
<div className="w-16 h-16 bg-green-100 rounded-full flex items-center justify-center mb-4">
<CheckCircle className="w-10 h-10 text-green-600" />
</div>
<h1 className="text-2xl font-bold text-gray-900 mb-2">
Password Reset Successfully! 🎉
</h1>
<p className="text-gray-600 mb-6">
Your password has been updated. You can now log in with your new password.
</p>
<button
onClick={() => navigate('/login')}
className="w-full py-2 px-4 border border-transparent rounded-md shadow-sm text-white bg-primary-600 hover:bg-primary-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-primary-500 font-medium"
>
Go to Login
</button>
</div>
</div>
</div>
);
}
// Invalid token state
if (!token) {
return (
<div className="min-h-screen bg-gradient-to-br from-primary-500 to-primary-700 flex items-center justify-center px-4">
<div className="max-w-md w-full bg-white rounded-lg shadow-xl p-8">
<div className="flex flex-col items-center text-center">
<div className="w-16 h-16 bg-red-100 rounded-full flex items-center justify-center mb-4">
<XCircle className="w-10 h-10 text-red-600" />
</div>
<h1 className="text-2xl font-bold text-gray-900 mb-2">
Invalid Reset Link
</h1>
<p className="text-gray-600 mb-6">
This password reset link is invalid or has expired. Please request a new one.
</p>
<Link
to="/forgot-password"
className="w-full py-2 px-4 border border-transparent rounded-md shadow-sm text-white bg-primary-600 hover:bg-primary-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-primary-500 font-medium text-center"
>
Request New Link
</Link>
</div>
</div>
</div>
);
}
// Reset password form
return (
<div className="min-h-screen bg-gradient-to-br from-primary-500 to-primary-700 flex items-center justify-center px-4">
<div className="max-w-md w-full bg-white rounded-lg shadow-xl p-8">
<div className="flex flex-col items-center mb-6">
<Video className="w-16 h-16 text-primary-600 mb-4" />
<h1 className="text-3xl font-bold text-gray-900">Set New Password</h1>
<p className="text-gray-600 mt-2 text-center">
Enter your new password below
</p>
</div>
{error && (
<div className="mb-4 p-3 bg-red-50 border border-red-200 rounded-md flex items-start gap-2">
<XCircle className="w-5 h-5 text-red-600 flex-shrink-0 mt-0.5" />
<p className="text-sm text-red-600">{error}</p>
</div>
)}
<form onSubmit={handleSubmit} className="space-y-4">
{/* New Password */}
<div>
<label className="block text-sm font-medium text-gray-700 mb-2">
New Password
</label>
<div className="relative">
<div className="absolute inset-y-0 left-0 pl-3 flex items-center pointer-events-none">
<Lock className="h-5 w-5 text-gray-400" />
</div>
<input
type="password"
value={newPassword}
onChange={(e) => setNewPassword(e.target.value)}
className="pl-10 block w-full px-3 py-2 border border-gray-300 rounded-md shadow-sm focus:ring-primary-500 focus:border-primary-500"
placeholder="••••••••"
required
disabled={loading}
/>
</div>
<PasswordStrengthIndicator password={newPassword} />
</div>
{/* Confirm Password */}
<div>
<label className="block text-sm font-medium text-gray-700 mb-2">
Confirm New Password
</label>
<div className="relative">
<div className="absolute inset-y-0 left-0 pl-3 flex items-center pointer-events-none">
<Lock className="h-5 w-5 text-gray-400" />
</div>
<input
type="password"
value={confirmPassword}
onChange={(e) => setConfirmPassword(e.target.value)}
className="pl-10 block w-full px-3 py-2 border border-gray-300 rounded-md shadow-sm focus:ring-primary-500 focus:border-primary-500"
placeholder="••••••••"
required
disabled={loading}
/>
</div>
{confirmPassword && newPassword !== confirmPassword && (
<p className="mt-1 text-sm text-red-600">Passwords do not match</p>
)}
</div>
<button
type="submit"
disabled={loading || newPassword !== confirmPassword}
className="w-full flex justify-center py-2 px-4 border border-transparent rounded-md shadow-sm text-sm font-medium text-white bg-primary-600 hover:bg-primary-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-primary-500 disabled:opacity-50"
>
{loading ? (
<>
<Loader2 className="w-5 h-5 animate-spin mr-2" />
Resetting...
</>
) : (
'Reset Password'
)}
</button>
</form>
<div className="mt-6 text-center">
<Link to="/login" className="text-sm font-medium text-primary-600 hover:text-primary-500">
Back to Login
</Link>
</div>
</div>
</div>
);
};
export default ResetPasswordPage;