feat: update drizzle, email login, seedfile changes

* feat: update drizzle & use bun driver

* feat: update seed, email login

* fix: login route ABC api logic

* refactor: some cleanup of abc api interfacing, email

* feat: login bar + prettier got opinionated ??

* chore: don't double send email, email text changes

* fix: add missing var to env example (abc api base)

* chore: update dockerfile to version im currently using

* refactor: robust academic year calculations + renamed variables for clarity + log email when not in prod. + rename token table to auth_token

WARN: consider state not being init error.

* refactor: mailer use API logger

* feat: consolidate migrations into one

---------

Co-authored-by: Joshua Gonsalves <[email protected]>

Author: Dropheart

.env.example

@@ -9,4 +9,13 @@ PGUSER=
 PGPASSWORD=
 PGHOST=
 PGPORT=
-PGDB=
+PGDB=
+
+NODEMAILER_HOST=smtp-mail.outlook.com
+NODEMAILER_PORT=587
+NODEMAILER_USER=
+NODEMAILER_PASS=
+
+ABC_API_BASE=https://abc-api.doc.ic.ac.uk
+ABC_API_USER=docsoc
+ABC_API_PASS=

Dockerfile

@@ -1,4 +1,4 @@
-FROM oven/bun:1.1.29
+FROM oven/bun:1.2.22
 
 ARG WEBMASTERS
 ENV WEBMASTERS $WEBMASTERS

README.md

@@ -16,7 +16,7 @@ Although using Nuxt 3, we have opted to use Nuxt 4 in our build. [`app/`](/app/)
 
 Visit [Microsoft Entra admin center](https://entra.microsoft.com/) -> App registrations -> \[your mums and dads app]. Copy your tenant ID and client ID into `.env`, and generate a client secret from 'Certificates & secrets' to copy into `.env`.
 
-Fill out the rest of the `.env` file - note that webmasters is comma seperated and restricts admin routes. JWT_SECRET should be a randomly generated long string with no dollar signs, or else Docker gets mad.
+Fill out the rest of the `.env` file - note that webmasters is comma seperated and restricts admin routes. JWT_SECRET should be a randomly generated long string with no dollar signs, or else Docker gets mad. ABC API credentials are those used to log in to Scientia. Nodemailer credentials are those used to authenticate with Microsoft.
 
 Next, build the docker images.
 
@@ -36,6 +36,8 @@ docker compose start postgres
 docker compose up postgres
 ```
 
+If you haven't, you will also need to push the database schema.
+
 Finally, run the website.
 
 ```bash

app/components/EmailPrompt.vue

@@ -0,0 +1,64 @@
+<template>
+  <div>
+    <div @click="focus = !focus">
+      <slot />
+    </div>
+    <div
+      v-if="focus"
+      class="absolute -ml-52 mt-2 flex items-center justify-center">
+      <div class="rounded-lg bg-white p-6 shadow-lg">
+        <h2 class="mb-4 text-lg font-bold">Enter your shortcode email</h2>
+        <input
+          @keyup.enter="sendLoginEmail"
+          :pattern="shortcodeEmailRegex.source"
+          v-model="email"
+          type="email"
+          placeholder="[email protected]"
+          class="mb-4 w-full rounded border p-2 invalid:border-red-500" />
+        <div class="flex justify-end gap-2">
+          <button
+            @click="focus = false"
+            class="rounded bg-gray-300 px-4 py-2 hover:bg-gray-400">
+            Cancel
+          </button>
+          <button
+            @click="sendLoginEmail"
+            class="rounded bg-blue-500 px-4 py-2 text-white hover:bg-blue-600">
+            {{ loading ? 'Loading...' : 'Submit' }}
+          </button>
+        </div>
+      </div>
+    </div>
+  </div>
+</template>
+
+<script lang="ts" setup>
+import { shortcodeEmailRegex } from '~~/hono/types';
+
+const focus = ref(false);
+const loading = ref(false);
+const email = ref('');
+
+const sendLoginEmail = async () => {
+  if (loading.value) return;
+  if (!shortcodeEmailRegex.test(email.value)) {
+    return alert('Please use your Imperial shortcode email.');
+  }
+
+  loading.value = true;
+  const res = await fetch('/api/auth/login', {
+    method: 'POST',
+    body: JSON.stringify({ email: email.value }),
+    headers: { 'Content-Type': 'application/json' }
+  });
+  loading.value = false;
+
+  if (res.ok) {
+    alert('Login email sent! Please check your inbox.');
+    focus.value = false;
+    email.value = '';
+  } else {
+    alert('Failed to send login email. Please try again.');
+  }
+};
+</script>

app/components/navigation/Bar.vue

@@ -11,11 +11,17 @@ const { currentUser } = useAuth();
     </NavigationLink>
     <ul class="flex items-center gap-3">
       <li v-if="currentUser === null">
-        <a
+        <!-- <a
           class="cursor-pointer font-bold text-white hover:text-white hover:no-underline md:text-xl"
           href="/api/auth/signIn">
           Log In
-        </a>
+        </a> -->
+        <EmailPrompt>
+          <p
+            class="cursor-pointer font-bold text-white hover:text-white hover:no-underline md:text-xl">
+            Log In
+          </p>
+        </EmailPrompt>
       </li>
       <li v-if="currentUser !== null">
         <NavigationLink to="/portal">

app/middleware/requireAdmin.ts

@@ -3,8 +3,7 @@ export default defineNuxtRouteMiddleware((to, from) => {
   const { currentUser } = useAuth();
   // I am aware that the client might be able to Do Things, but that's okay
   // as if they have access to the admin page, everything is closed server-side anyways.
-  const admins = process.env.WEBMASTERS!.split(',')
-
+  const admins = process.env.WEBMASTERS!.split(',');
 
   if (!admins.includes(currentUser.value?.shortcode || '')) {
     return createError({

app/pages/admin.vue

@@ -98,10 +98,12 @@ definePageMeta({
           {{ statsData.registered_freshers }}
         </p>
         <p>
-          <b>Minimum to reasonably expect (all parents + all kids):</b> {{ statsData.families * 2 + statsData.registered_freshers }}
+          <b>Minimum to reasonably expect (all parents + all kids):</b>
+          {{ statsData.families * 2 + statsData.registered_freshers }}
         </p>
         <p>
-          <b>Maximum to unreasonably expect (all freshers + all parents)</b> {{ statsData.families * 2 + statsData.all_freshers }}
+          <b>Maximum to unreasonably expect (all freshers + all parents)</b>
+          {{ statsData.families * 2 + statsData.all_freshers }}
         </p>
       </div>
     </div>

app/pages/finish-email.vue

@@ -0,0 +1,34 @@
+<script setup lang="ts">
+const route = useRoute();
+
+const { token } = route.query;
+
+const { status, error } = await useFetch('/api/auth/callback-email', {
+  method: 'POST',
+  body: { token },
+  server: false
+});
+
+watch(status, () => {
+  if (status.value == 'success') navigateTo('/portal');
+});
+</script>
+
+<template>
+  <div>
+    <Card v-if="status == 'pending' || status == 'idle'">
+      <CardTitle>We're signing you in...</CardTitle>
+    </Card>
+    <Card v-else-if="status == 'error'">
+      <CardText>{{ error }}</CardText>
+    </Card>
+    <Card v-else-if="status == 'success'">
+      <CardTitle>You are being redirected</CardTitle>
+      <CardText>
+        Please click
+        <NuxtLink to="/portal">this link</NuxtLink>
+        if not automatically redirected.
+      </CardText>
+    </Card>
+  </div>
+</template>

app/pages/finish-oauth.vue

@@ -18,7 +18,7 @@ const body = !msError
       error_description: msErrorDesc
     };
 
-const { status, error } = await useFetch('/api/auth/callback', {
+const { status, error } = await useFetch('/api/auth/callback-oauth', {
   method: 'POST',
   body: body,
   server: false

app/utils/types.d.ts

@@ -21,7 +21,7 @@ declare const stateOptions = [
 declare type State = (typeof stateOptions)[number];
 
 declare type IFamily = {
-  id: number,
-  parents: IStudent[],
-  kids: IStudent[]
-}
+  id: number;
+  parents: IStudent[];
+  kids: IStudent[];
+};