Add verification email route

cgen-6d2c3f99f553400a9f3a5bf87547784a
2025-10-14 07:12:00 +00:00 · 2025-10-14 07:12:00 +00:00 · 037cea7169
commit 037cea7169
parent 9ac460549f
1 changed files with 79 additions and 0 deletions
--- a/server/index.ts
+++ b/server/index.ts
@ -18,6 +18,85 @@ export function createServer() {
    res.json({ message: ping });
  });
  app.post("/api/auth/send-verification-email", async (req, res) => {
    const { email, redirectTo, fullName } = (req.body || {}) as {
      email?: string;
      redirectTo?: string;
      fullName?: string | null;
    };
    if (!email) {
      return res.status(400).json({ error: "email is required" });
    }
    if (!adminSupabase?.auth?.admin) {
      return res
        .status(500)
        .json({ error: "Supabase admin client unavailable" });
    }
    try {
      const fallbackRedirect =
        process.env.EMAIL_VERIFY_REDIRECT ??
        process.env.PUBLIC_BASE_URL ??
        process.env.SITE_URL ??
        "https://aethex.biz/login";
      const redirectUrl =
        typeof redirectTo === "string" && redirectTo.startsWith("http")
          ? redirectTo
          : fallbackRedirect;
      const { data, error } = await adminSupabase.auth.admin.generateLink({
        type: "signup",
        email,
        options: {
          redirectTo: redirectUrl,
        },
      } as any);
      if (error) {
        return res.status(error.status ?? 500).json({ error: error.message });
      }
      const actionLink =
        (data as any)?.properties?.action_link ??
        (data as any)?.properties?.verification_link ??
        null;
      if (!actionLink) {
        return res
          .status(500)
          .json({ error: "Failed to generate verification link" });
      }
      const displayName =
        (data as any)?.user?.user_metadata?.full_name ?? fullName ?? null;
      if (!emailService.isConfigured) {
        return res.json({
          sent: false,
          verificationUrl: actionLink,
          message:
            "Email service not configured. Provide RESEND_API_KEY to enable outbound email.",
        });
      }
      await emailService.sendVerificationEmail({
        to: email,
        verificationUrl: actionLink,
        fullName: displayName,
      });
      return res.json({ sent: true, verificationUrl: actionLink });
    } catch (error: any) {
      console.error("[API] send verification email failed", error);
      return res
        .status(500)
        .json({ error: error?.message || "Unexpected error" });
    }
  });
  // Admin-backed API (service role)
  try {
    const ownerEmail = (