Merge pull request #35 from devxtra-community/shanu

Shanu

Author: shanuvr

backend/package.json

@@ -8,24 +8,37 @@
     "lint": "eslint"
   },
   "dependencies": {
+    "@aws-sdk/client-s3": "^3.962.0",
+    "bcrypt": "^6.0.0",
+    "cors": "^2.8.5",
     "dotenv": "^17.2.3",
     "express": "^5.2.1",
+    "form-data": "^4.0.5",
+    "jsonwebtoken": "^9.0.3",
+    "mailgun.js": "^12.4.1",
+    "multer": "^2.0.2",
     "pg": "^8.16.3",
     "pino": "^10.1.0",
     "pino-http": "^11.0.0",
     "reflect-metadata": "^0.2.2",
+    "twilio": "^5.11.1",
     "typeorm": "^0.3.28"
   },
   "devDependencies": {
     "@commitlint/cli": "^20.2.0",
     "@commitlint/config-conventional": "^20.2.0",
     "@eslint/js": "^9.39.2",
+    "@types/bcrypt": "^6.0.0",
+    "@types/cors": "^2.8.19",
     "@types/express": "^5.0.6",
+    "@types/jsonwebtoken": "^9.0.10",
+    "@types/multer": "^2.0.0",
     "@types/node": "^25.0.3",
     "@types/pg": "^8.16.0",
     "@typescript-eslint/eslint-plugin": "^8.51.0",
     "@typescript-eslint/parser": "^8.51.0",
     "eslint": "^9.39.2",
+    "ts-node": "^10.9.2",
     "ts-node-dev": "^2.0.0",
     "typescript": "~5.9.3",
     "typescript-eslint": "^8.51.0"

backend/src/Services/authToken.ts

@@ -0,0 +1,28 @@
+import { appDataSouce } from '../data-source';
+import { RefreshTokenEntity } from '../entities/refreshToken';
+import { User } from '../entities/User';
+import { generateRefreshToken, hashRefreshToken } from './refreshToken';
+const REFRESH_TOKEN_DAYS = 30;
+
+export const createRefreshTokenSession = async (user: User) => {
+  const refreshToken = generateRefreshToken();
+  console.log('Raw refresh token generated');
+
+  const tokenHash = hashRefreshToken(refreshToken);
+  console.log('Token hashed');
+
+  const expiresAt = new Date();
+
+  expiresAt.setDate(expiresAt.getDate() + REFRESH_TOKEN_DAYS);
+
+  const repo = appDataSouce.getRepository(RefreshTokenEntity);
+  console.log('Got refresh token repository');
+
+  await repo.save({
+    tokenHash,
+    user,
+    expiresAt,
+  });
+  console.log('Refresh token saved');
+  return refreshToken;
+};

backend/src/Services/email.service.ts

@@ -0,0 +1,24 @@
+import Mailgun from 'mailgun.js';
+import FormData from 'form-data';
+import { logger } from '../utils/logger';
+
+const mailgun = new Mailgun(FormData);
+
+const mg = mailgun.client({
+  username: 'api',
+  key: process.env.MAILGUN_API_KEY!,
+});
+
+export const sendOtpEmail = async (to: string, otp: string) => {
+  try {
+    await mg.messages.create(process.env.MAILGUN_DOMAIN!, {
+      from: process.env.MAIL_FROM_EMAIL!,
+      to,
+      subject: 'Your SocialCode verification code',
+      text: `Your SocialCode verification code is ${otp}. This code expires in 5 minutes.`,
+    });
+  } catch (err) {
+    logger.error({ err }, 'Error sending OTP email');
+    throw new Error('Failed to send OTP email');
+  }
+};

backend/src/Services/jwt.service.ts

@@ -0,0 +1,10 @@
+import jwt from 'jsonwebtoken';
+
+export const signAccessToken = (payload: { userId: string }) => {
+  return jwt.sign(payload, process.env.ACCESS_TOKEN_SECRET!, {
+    expiresIn: '15m',
+  });
+};
+export const verifyAccessToken = (token: string) => {
+  return jwt.verify(token, process.env.ACCESS_TOKEN_SECRET!);
+};

backend/src/Services/refreshToken.ts

@@ -0,0 +1,7 @@
+import crypto from 'crypto';
+export const generateRefreshToken = (): string => {
+  return crypto.randomBytes(64).toString();
+};
+export const hashRefreshToken = (token: string) => {
+  return crypto.createHash('sha256').update(token).digest('hex');
+};

backend/src/Services/sms.service.ts

@@ -0,0 +1,18 @@
+import Twilio from 'twilio';
+import { logger } from '../utils/logger';
+const accountSid = process.env.TWILIO_ACCOUNT_SID!;
+const authToken = process.env.TWILIO_AUTH_TOKEN!;
+const fromNumber = process.env.TWILIO_FROM_NUMBER!;
+const client = Twilio(accountSid, authToken);
+export const sendOtpSms = async (phoneNumber: string, otp: string) => {
+  try {
+    await client.messages.create({
+      body: `otp is ${otp}`,
+      from: fromNumber,
+      to: phoneNumber,
+    });
+  } catch (err) {
+    logger.error({ err }, 'failed to send otp');
+    throw new Error('failed to send');
+  }
+};

backend/src/app.ts

@@ -1,15 +1,22 @@
 import express from 'express';
+import cors from 'cors';
 import { pinoHttp } from 'pino-http';
 import { logger } from './utils/logger';
 import { notFound } from './middleware/notFound';
 import { errorHandler } from './middleware/errorHandler';
-import Healthrouter from './routes/health';
+import Healthrouter from './modules/health/health';
+import authRouter from './modules/auth/auth.routes';
+import userRouter from './modules/user/user.routes';
+
 const app = express();
+app.use(cors());
 app.use(express.json());
 app.use(
   pinoHttp({ logger, autoLogging: { ignore: (req) => req.url === 'health' } }),
 );
 app.use('/health', Healthrouter);
+app.use('/auth', authRouter);
+app.use('/user', userRouter);
 app.use(notFound);
 app.use(errorHandler);
 export default app;

backend/src/data-source.ts

@@ -1,6 +1,8 @@
 import 'dotenv/config';
 import { DataSource } from 'typeorm';
 import { User } from './entities/User';
+import { Otp } from './entities/opt';
+import { RefreshTokenEntity } from './entities/refreshToken';
 if (!process.env.DATABASE_URL) {
   throw new Error('DATABASE_URL is not defined');
 }
@@ -10,6 +12,6 @@ export const appDataSouce = new DataSource({
   ssl: {
     rejectUnauthorized: false,
   },
-  entities: [User],
+  entities: [User, Otp, RefreshTokenEntity],
   synchronize: true,
 });

backend/src/entities/User.ts

@@ -1,8 +1,42 @@
-import { Entity, PrimaryGeneratedColumn, Column } from 'typeorm';
-@Entity()
+import {
+  Entity,
+  PrimaryGeneratedColumn,
+  Column,
+  CreateDateColumn,
+} from 'typeorm';
+
+@Entity('users')
 export class User {
-  @PrimaryGeneratedColumn()
-  id!: number;
+  @PrimaryGeneratedColumn('uuid')
+  id!: string;
+
+  @Column({ unique: true, nullable: true })
+  email!: string;
+
+  @Column({ unique: true, nullable: true })
+  phoneNumber!: string;
+
   @Column()
-  phone!: string;
+  name!: string;
+
+  @Column({ nullable: true })
+  age?: number;
+
+  @Column({ nullable: true })
+  gender?: string;
+
+  @Column('text', { array: true, nullable: true })
+  interests?: string[];
+
+  @Column({ nullable: true })
+  profileImageUrl?: string;
+
+  @Column({ nullable: true })
+  passwordHash?: string;
+
+  @Column({ default: false })
+  isPhoneVerified!: boolean;
+
+  @CreateDateColumn()
+  createdAt!: Date;
 }

backend/src/entities/opt.ts

@@ -0,0 +1,22 @@
+import {
+  Entity,
+  PrimaryGeneratedColumn,
+  Column,
+  CreateDateColumn,
+} from 'typeorm';
+
+@Entity('otps')
+export class Otp {
+  @PrimaryGeneratedColumn('uuid')
+  id!: string;
+  @Column()
+  phoneNumber!: string;
+  @Column()
+  otp!: string;
+  @Column({ type: 'timestamp' })
+  expiresAt!: Date;
+  @Column({ default: false })
+  verified!: boolean;
+  @CreateDateColumn()
+  createdAt!: Date;
+}