Add captcha support to authentication features

The update includes the implementation of captcha support during the sign-in and sign-up process for user accounts. The process ensures a better level of security against bot-based attacks. Also, the code has been refactored to separate error and success alerts and unnecessary useEffect hooks have been removed. Moreover, some logic concerning the authentication rendering has been simplified.
2024-04-07 10:56:33 +08:00
parent 36bcf64f52
commit 0a9c1f35c6
16 changed files with 209 additions and 78 deletions
--- a/packages/features/auth/src/components/password-sign-up-container.tsx
+++ b/packages/features/auth/src/components/password-sign-up-container.tsx
@@ -1,6 +1,6 @@
 'use client';

-import { useCallback, useEffect, useRef, useState } from 'react';
+import { useCallback, useRef, useState } from 'react';

 import { Check } from 'lucide-react';

@@ -12,30 +12,22 @@ import { Trans } from '@kit/ui/trans';
 import { AuthErrorAlert } from './auth-error-alert';
 import { PasswordSignUpForm } from './password-sign-up-form';

+interface EmailPasswordSignUpContainerProps {
+  onSignUp?: (userId?: string) => unknown;
+  emailRedirectTo: string;
+  captchaToken?: string;
+}
+
 export function EmailPasswordSignUpContainer({
  onSignUp,
-  onError,
  emailRedirectTo,
-}: React.PropsWithChildren<{
-  onSignUp?: (userId?: string) => unknown;
-  onError?: (error?: unknown) => unknown;
-  emailRedirectTo: string;
-}>) {
+  captchaToken,
+}: EmailPasswordSignUpContainerProps) {
  const signUpMutation = useSignUpWithEmailAndPassword();
  const redirecting = useRef(false);
  const loading = signUpMutation.isPending || redirecting.current;
  const [showVerifyEmailAlert, setShowVerifyEmailAlert] = useState(false);

-  const callOnErrorCallback = useCallback(() => {
-    if (signUpMutation.error && onError) {
-      onError(signUpMutation.error);
-    }
-  }, [signUpMutation.error, onError]);
-
-  useEffect(() => {
-    callOnErrorCallback();
-  }, [callOnErrorCallback]);
-
  const onSignupRequested = useCallback(
    async (credentials: { email: string; password: string }) => {
      if (loading) {
@@ -46,6 +38,7 @@ export function EmailPasswordSignUpContainer({
        const data = await signUpMutation.mutateAsync({
          ...credentials,
          emailRedirectTo,
+          captchaToken,
        });

        setShowVerifyEmailAlert(true);
@@ -54,28 +47,16 @@ export function EmailPasswordSignUpContainer({
          onSignUp(data.user?.id);
        }
      } catch (error) {
-        if (onError) {
-          onError(error);
-        }
+        console.error(error);
      }
    },
-    [emailRedirectTo, loading, onError, onSignUp, signUpMutation],
+    [emailRedirectTo, loading, onSignUp, signUpMutation],
  );

  return (
    <>
      <If condition={showVerifyEmailAlert}>
-        <Alert variant={'success'}>
-          <Check className={'w-4'} />
-
-          <AlertTitle>
-            <Trans i18nKey={'auth:emailConfirmationAlertHeading'} />
-          </AlertTitle>
-
-          <AlertDescription data-test={'email-confirmation-alert'}>
-            <Trans i18nKey={'auth:emailConfirmationAlertBody'} />
-          </AlertDescription>
-        </Alert>
+        <SuccessAlert />
      </If>

      <If condition={!showVerifyEmailAlert}>
@@ -86,3 +67,19 @@ export function EmailPasswordSignUpContainer({
    </>
  );
 }
+
+function SuccessAlert() {
+  return (
+    <Alert variant={'success'}>
+      <Check className={'w-4'} />
+
+      <AlertTitle>
+        <Trans i18nKey={'auth:emailConfirmationAlertHeading'} />
+      </AlertTitle>
+
+      <AlertDescription data-test={'email-confirmation-alert'}>
+        <Trans i18nKey={'auth:emailConfirmationAlertBody'} />
+      </AlertDescription>
+    </Alert>
+  );
+}