import nodemailer from 'nodemailer'; // import { getPanelConfigs } from './panel.config'; import { getSMTPConfig } from 'server/controllers/smtp.controller'; import { getFirstPanelConfig, getPanelConfigs } from './panel.config'; const config = await getSMTPConfig(); let transporter:any; const getData = await getFirstPanelConfig() if (config) { transporter = nodemailer.createTransport({ host: config.host, port: parseInt(config.port, 10), secure: config.secure === 'true', auth: { user: config.user, pass: config.password, }, }); } else { console.warn('Using fallback SMTP settings (emails will not be sent)'); transporter = nodemailer.createTransport({ jsonTransport: true, // just for development, logs emails instead of sending }); } const [configs] = await getPanelConfigs(); function generateOTPEmailHTML( companyName?: string, logo?: string, otpCode: string, name?: string ): string { const displayName = configs?.name || "Your Company"; const headerContent = logo ? `

` : `

${displayName}

`; const messageText = `Please use the verification code below to verify your identity.`; return `

${name ? `

Hello ${name},

` : '

Hello,

${messageText}

Your Verification Code

${otpCode}

Valid for 5 minutes

⚠️ Security Notice: Never share this code with anyone. ${displayName} will never ask for your verification code.

If you didn't request this code, please ignore this email or contact our support team.

`; } function generateOTPEmailText(companyName: string, otpCode: string, name?: string): string { return ` Hello${name ? ' ' + name : ''}, Thank you for signing up for ${companyName}! Your verification code is: ${otpCode} This code will expire in 5 minutes. If you didn't request this code, please ignore this email. --- ${companyName} Our Platform `.trim(); } function generateForgotPasswordEmailHTML( companyName?: string, logo?: string, otpCode: string, name?: string ): string { const displayName = configs?.name || "Your Company"; const headerContent = logo ? `

` : `

${displayName}

`; return `

${name ? `

Hello ${name},

` : '

Hello,

You requested to reset your password. Use the verification code below to reset your password.

Your Verification Code

${otpCode}

Valid for 5 minutes

⚠️ Security Notice: Never share this code with anyone. ${displayName} will never ask for your verification code.

If you didn't request this password reset, please ignore this email or contact our support team.

`; } function generateForgotPasswordEmailText(companyName: string, otpCode: string, name?: string): string { return ` Hello${name ? ' ' + name : ''}, You requested to reset your password for ${companyName}. Your verification code is: ${otpCode} This code will expire in 5 minutes. If you didn't request a password reset, please ignore this email. --- ${companyName} Our Platform `.trim(); } function extractCompanyName(url: string) { let domain = url.replace(/^https?:\/\//, ''); domain = domain.replace(/^www\./, ''); const companyName = domain.split('.')[0]; return companyName; } export async function sendOTPEmail(email: string, otpCode: string, name?: string) { // const [configs] = await getPanelConfigs(); const companyName = configs?.name || "Your Company"; const fromName = config?.fromName || companyName; const fromEmail = config?.fromEmail; // console.log( // process.env.SMTP_FROM_NAME , process.env.SMTP_EMAIL_FROM, // { // host: process.env.SMTP_HOST || 'smtp.gmail.com', // port: parseInt(process.env.SMTP_PORT || '587', 10), // secure: false, // auth: { // user: process.env.SMTP_USER, // pass: process.env.SMTP_PASSWORD, // }, // } // ) const mailOptions = { from: `"${fromName}" <${fromEmail}>`, to: email, subject: `Your ${companyName} Verification Code`, html: generateForgotPasswordEmailHTML(companyName, "whatsway", otpCode, name), text: generateForgotPasswordEmailText(companyName, otpCode, name), }; try { const info = await transporter.sendMail(mailOptions); // console.log(info) console.log('✉️ [Email] OTP sent to:', email); return { success: true, messageId: info.messageId }; } catch (error) { console.error('❌ [Email] Failed to send OTP:', error); throw new Error('Failed to send verification email'); } } export async function sendContactEmail(data: { name: string; email: string; company?: string; subject: string; message: string; }) { const { name, email, company, subject, message } = data; const companyName = configs?.name || "Your Company"; const fromName = config?.fromName || companyName; const fromEmail = config?.fromEmail; const html = `

New Contact Form Message

${companyName}

You have received a new message from your website contact form.

Name:	${name}
Email:	${email}
Company:	${company \|\| "-"}
Subject:	${subject}

Message:

${message.replace(/\n/g, "
")}

This email was sent from the contact form on ${companyName}.

`; const mailOptions = { from: `"${fromName}" <${fromEmail}>`, to: fromEmail, // send to admin email subject: `Contact Form: ${subject}`, html, text: `${name} (${email}) says: ${message}`, }; try { const info = await transporter.sendMail(mailOptions); console.log("✉️ [Contact] Message sent:", info.messageId); return { success: true, messageId: info.messageId }; } catch (error) { console.error("❌ [Contact] Failed:", error); throw new Error("Failed to send contact message"); } } export async function sendOTPEmailVerify(email: string, otpCode: string, name?: string) { // const [configs] = await getPanelConfigs(); const companyName = configs?.name || "Your Company"; const fromName = config?.fromName || companyName; const fromEmail = config?.fromEmail; // console.log( // process.env.SMTP_FROM_NAME , process.env.SMTP_EMAIL_FROM, // { // host: process.env.SMTP_HOST || 'smtp.gmail.com', // port: parseInt(process.env.SMTP_PORT || '587', 10), // secure: false, // auth: { // user: process.env.SMTP_USER, // pass: process.env.SMTP_PASSWORD, // }, // } // ) const mailOptions = { from: `"${fromName}" <${fromEmail}>`, to: email, subject: `Your ${companyName} Verification Code`, html: generateOTPEmailHTML(companyName, "whatsway", otpCode, name), text: generateOTPEmailText(companyName, otpCode, name), }; try { const info = await transporter.sendMail(mailOptions); // console.log(info) console.log('✉️ [Email] OTP sent to:', email); return { success: true, messageId: info.messageId }; } catch (error) { console.error('❌ [Email] Failed to send OTP:', error); throw new Error('Failed to send verification email'); } } export async function verifyEmailConfiguration(): Promise { try { await transporter.verify(); console.log('✅ [Email] SMTP configuration is valid'); return true; } catch (error) { console.error('❌ [Email] SMTP configuration error:', error); return false; } } // route.ts file // OTP endpoints for email verification // app.post("/api/auth/send-otp", async (req: Request, res: Response) => { // try { // const { email, name } = req.body; // if (!email) { // return res.status(400).json({ error: "Email is required" }); // } // // Check if user already exists // const existingUser = await storage.getUserByEmail(email); // if (existingUser) { // return res.status(400).json({ error: "Email already registered" }); // } // // Check rate limiting: max 3 OTP requests per 5 minutes // const { otpVerifications } = await import("@shared/schema"); // const recentOTPs = await db // .select() // .from(otpVerifications) // .where( // and( // eq(otpVerifications.email, email), // sql`${otpVerifications.createdAt} > NOW() - INTERVAL '5 minutes'` // ) // ); // if (recentOTPs.length >= 3) { // return res // .status(429) // .json({ error: "Too many OTP requests. Please try again in 5 minutes." }); // } // // Generate 6-digit OTP // const otpCode = Math.floor(100000 + Math.random() * 900000).toString(); // const expiresAt = new Date(Date.now() + 5 * 60 * 1000); // 5 minutes // // Store OTP in database // await db.insert(otpVerifications).values({ // email, // otpCode, // expiresAt, // }); // console.log(`🔐 [OTP] Generated OTP for ${email}: ${otpCode} (expires at ${expiresAt.toISOString()})`); // // Try sending OTP email, but don't fail if email sending throws // try { // const { sendOTPEmail } = await import("./services/email"); // await sendOTPEmail(email, otpCode, name); // console.log(`✉️ [OTP] Sent verification code to ${email} OTP: ${otpCode}`); // } catch (emailError) { // console.error("⚠️ Failed to send OTP email:", emailError); // } // // Always respond success, even if email failed // res.json({ // success: true, // message: "Verification code generated successfully", // }); // } catch (error: any) { // console.error("Send OTP error:", error); // res // .status(500) // .json({ error: error.message || "Failed to send verification code" }); // } // });