mirror/formbricks-formbricks
1
0
Fork 0
mirror of https://github.com/formbricks/formbricks.git synced 2026-01-06 13:49:54 -06:00
Code Issues Packages Projects Releases 100 Wiki Activity
Files
c71832183eeec13e94d0e3499ca323c11d9b96e8
formbricks-formbricks/apps/web/modules/auth/signup/actions.ts
Cursor Agent c71832183e Refactor user model to use separate first and last name fields 
Co-authored-by: mail <mail@matti.sh>
2025-07-09 11:38:38 +00:00

216 lines
6.3 KiB
TypeScript
Raw Blame History

"use server";
import { hashPassword } from "@/lib/auth";
import { IS_TURNSTILE_CONFIGURED, TURNSTILE_SECRET_KEY } from "@/lib/constants";
import { verifyInviteToken } from "@/lib/jwt";
import { createMembership } from "@/lib/membership/service";
import { createOrganization } from "@/lib/organization/service";
import { actionClient } from "@/lib/utils/action-client";
import { ActionClientCtx } from "@/lib/utils/action-client/types/context";
import { createUser, updateUser } from "@/modules/auth/lib/user";
import { deleteInvite, getInvite } from "@/modules/auth/signup/lib/invite";
import { createTeamMembership } from "@/modules/auth/signup/lib/team";
import { captureFailedSignup, verifyTurnstileToken } from "@/modules/auth/signup/lib/utils";
import { withAuditLogging } from "@/modules/ee/audit-logs/lib/handler";
import { getIsMultiOrgEnabled } from "@/modules/ee/license-check/lib/utils";
import { sendInviteAcceptedEmail, sendVerificationEmail } from "@/modules/email";
import { z } from "zod";
import { InvalidInputError, UnknownError } from "@formbricks/types/errors";
import { ZUser, ZUserEmail, ZUserLocale, ZUserName, ZUserPassword } from "@formbricks/types/user";
const ZCreatedUser = ZUser.pick({
firstName: true,
lastName: true,
email: true,
locale: true,
id: true,
notificationSettings: true,
});
type TCreatedUser = z.infer<typeof ZCreatedUser>;
const ZCreateUserAction = z.object({
firstName: ZUserName,
lastName: ZUserName,
email: ZUserEmail,
password: ZUserPassword,
inviteToken: z.string().optional(),
userLocale: ZUserLocale.optional(),
emailVerificationDisabled: z.boolean().optional(),
turnstileToken: z
.string()
.optional()
.refine(
(token) => !IS_TURNSTILE_CONFIGURED || (IS_TURNSTILE_CONFIGURED && token),
"CAPTCHA verification required"
),
});
async function verifyTurnstileIfConfigured(
turnstileToken: string | undefined,
email: string,
firstName: string,
lastName: string
): Promise<void> {
if (!IS_TURNSTILE_CONFIGURED) return;
if (!turnstileToken || !TURNSTILE_SECRET_KEY) {
captureFailedSignup(email, `${firstName} ${lastName}`);
throw new UnknownError("Server configuration error");
}
const isHuman = await verifyTurnstileToken(TURNSTILE_SECRET_KEY, turnstileToken);
if (!isHuman) {
captureFailedSignup(email, `${firstName} ${lastName}`);
throw new UnknownError("reCAPTCHA verification failed");
}
}
async function createUserSafely(
email: string,
firstName: string,
lastName: string,
hashedPassword: string,
userLocale: z.infer<typeof ZUserLocale> | undefined
): Promise<{ user: TCreatedUser | undefined; userAlreadyExisted: boolean }> {
let user: TCreatedUser | undefined = undefined;
let userAlreadyExisted = false;
try {
user = await createUser({
email: email.toLowerCase(),
firstName,
lastName,
password: hashedPassword,
locale: userLocale,
});
} catch (error) {
if (error instanceof InvalidInputError) {
userAlreadyExisted = true;
} else {
throw error;
}
}
return { user, userAlreadyExisted };
}
async function handleInviteAcceptance(
ctx: ActionClientCtx,
inviteToken: string,
user: TCreatedUser
): Promise<void> {
const inviteTokenData = verifyInviteToken(inviteToken);
const invite = await getInvite(inviteTokenData.inviteId);
if (!invite) {
throw new Error("Invalid invite ID");
}
ctx.auditLoggingCtx.organizationId = invite.organizationId;
await createMembership(invite.organizationId, user.id, {
accepted: true,
role: invite.role,
});
if (invite.teamIds) {
await createTeamMembership(
{
organizationId: invite.organizationId,
role: invite.role,
teamIds: invite.teamIds,
},
user.id
);
}
await updateUser(user.id, {
notificationSettings: {
alert: {},
weeklySummary: {},
unsubscribedOrganizationIds: [invite.organizationId],
},
});
await sendInviteAcceptedEmail(invite.creator.name ?? "", `${user.firstName} ${user.lastName}`, invite.creator.email);
await deleteInvite(invite.id);
}
async function handleOrganizationCreation(ctx: ActionClientCtx, user: TCreatedUser): Promise<void> {
const isMultiOrgEnabled = await getIsMultiOrgEnabled();
if (!isMultiOrgEnabled) return;
const organization = await createOrganization({ name: `${user.firstName} ${user.lastName}'s Organization` });
ctx.auditLoggingCtx.organizationId = organization.id;
await createMembership(organization.id, user.id, {
role: "owner",
accepted: true,
});
await updateUser(user.id, {
notificationSettings: {
...user.notificationSettings,
alert: { ...user.notificationSettings?.alert },
weeklySummary: { ...user.notificationSettings?.weeklySummary },
unsubscribedOrganizationIds: Array.from(
new Set([...(user.notificationSettings?.unsubscribedOrganizationIds ?? []), organization.id])
),
},
});
}
async function handlePostUserCreation(
ctx: ActionClientCtx,
user: TCreatedUser,
inviteToken: string | undefined,
emailVerificationDisabled: boolean | undefined
): Promise<void> {
if (inviteToken) {
await handleInviteAcceptance(ctx, inviteToken, user);
} else {
await handleOrganizationCreation(ctx, user);
}
if (!emailVerificationDisabled) {
await sendVerificationEmail(user);
}
}
export const createUserAction = actionClient.schema(ZCreateUserAction).action(
withAuditLogging(
"created",
"user",
async ({ ctx, parsedInput }: { ctx: ActionClientCtx; parsedInput: Record<string, any> }) => {
await verifyTurnstileIfConfigured(parsedInput.turnstileToken, parsedInput.email, parsedInput.firstName, parsedInput.lastName);
const hashedPassword = await hashPassword(parsedInput.password);
const { user, userAlreadyExisted } = await createUserSafely(
parsedInput.email,
parsedInput.firstName,
parsedInput.lastName,
hashedPassword,
parsedInput.userLocale
);
if (!userAlreadyExisted && user) {
await handlePostUserCreation(
ctx,
user,
parsedInput.inviteToken,
parsedInput.emailVerificationDisabled
);
}
if (user) {
ctx.auditLoggingCtx.userId = user.id;
ctx.auditLoggingCtx.newObject = user;
}
return {
success: true,
};
}
)
);
Reference in New Issue View Git Blame Copy Permalink