backend/src/routes/api/auth/email/verify/request.ts

import { randomUUIDv7, sql } from "bun";

import { logger } from "@/helpers/logger";
import { redis } from "@/helpers/redis";

const routeDef: RouteDef = {
	method: "GET",
	accepts: "*/*",
	returns: "application/json",
};

async function handler(request: ExtendedRequest): Promise<Response> {
	if (!request.session) {
		return Response.json(
			{
				success: false,
				code: 403,
				error: "Unauthorized",
			},
			{ status: 403 },
		);
	}

	try {
		const [user] = await sql`
			SELECT email_verified
			FROM users
			WHERE id = ${request.session.id}
			LIMIT 1;`;

		if (!user) {
			return Response.json(
				{
					success: false,
					code: 404,
					error: "Unknown user",
				},
				{ status: 404 },
			);
		}

		if (user.email_verified) {
			return Response.json(
				{
					success: true,
					code: 200,
					message: "Email already verified",
				},
				{ status: 200 },
			);
		}

		const code: string = randomUUIDv7();
		await redis.getInstance().set(
			"JSON",
			`email:verify:${code}`,
			{ user_id: request.session.id },
			60 * 60 * 2, // 2 hours
		);

		// TODO: Send email when email service is implemented

		return Response.json(
			{
				success: true,
				code: 200,
				message: "Verification email sent",
			},
			{ status: 200 },
		);
	} catch (error) {
		logger.error(["Could not send email verification:", error as Error]);
		return Response.json(
			{
				success: false,
				code: 500,
				error: "Could not send email verification",
			},
			{ status: 500 },
		);
	}
}

export { handler, routeDef };