From fff1304709a65599e4d4409b1aa809c050f3d22a Mon Sep 17 00:00:00 2001
From: Kelvin Oghenerhoro Omereshone <kelvinomereshone@gmail.com>
Date: Thu, 22 Feb 2024 07:39:00 +0100
Subject: [PATCH] [feat] handle validation errors in mellow vue (#82)

* feat(mellow-vue): update badRequest response

* feat(mellow-vue): update inertia-sails and install sails-flash

* chore(mellow-vue): turn of typechecking js files

* feat(mellow-vue): update login action and page to display validation errors

* feat(mellow-vue): modify signup action to handle validation errors

* feat(mellow-vue): display validation errors
---
 .../mellow-vue/api/controllers/auth/login.js  | 23 +++++++--
 .../mellow-vue/api/controllers/auth/signup.js | 49 +++++++++++--------
 .../mellow-vue/api/responses/badRequest.js    | 49 ++++++++++---------
 .../mellow-vue/assets/js/pages/login.vue      |  9 +++-
 .../mellow-vue/assets/js/pages/signup.vue     | 15 ++++++
 templates/mellow-vue/jsconfig.json            |  2 +-
 templates/mellow-vue/package-lock.json        | 28 +++++++++--
 templates/mellow-vue/package.json             |  3 +-
 8 files changed, 123 insertions(+), 55 deletions(-)

diff --git a/templates/mellow-vue/api/controllers/auth/login.js b/templates/mellow-vue/api/controllers/auth/login.js
index 5541f661..cd30be41 100644
--- a/templates/mellow-vue/api/controllers/auth/login.js
+++ b/templates/mellow-vue/api/controllers/auth/login.js
@@ -12,6 +12,7 @@ password attempt.`,
     email: {
       description: 'The email to try in this attempt, e.g. "irl@example.com".',
       type: 'string',
+      isEmail: true,
       required: true
     },
 
@@ -39,6 +40,9 @@ that, thanks to the included "custom" hook, when a relevant request is received
 from a logged-in user, that user's entire record from the database will be fetched
 and exposed as a shared data via loggedInUser prop.)`,
       responseType: 'redirect'
+    },
+    badCombo: {
+      responseType: 'badRequest'
     }
   },
 
@@ -48,12 +52,23 @@ and exposed as a shared data via loggedInUser prop.)`,
     })
 
     if (!user) {
-      throw 'badCombo'
+      throw {
+        badCombo: {
+          problems: [{ login: 'Wrong email/password.' }]
+        }
+      }
     }
 
-    await sails.helpers.passwords
-      .checkPassword(password, user.password)
-      .intercept('incorrect', 'badCombo')
+    try {
+      await sails.helpers.passwords.checkPassword(password, user.password)
+    } catch (e) {
+      sails.log.error(e.message)
+      throw {
+        badCombo: {
+          problems: [{ login: 'Wrong email/password.' }]
+        }
+      }
+    }
 
     if (rememberMe) {
       this.req.session.cookie.maxAge =
diff --git a/templates/mellow-vue/api/controllers/auth/signup.js b/templates/mellow-vue/api/controllers/auth/signup.js
index 95f6e5d1..9bf4d8ae 100644
--- a/templates/mellow-vue/api/controllers/auth/signup.js
+++ b/templates/mellow-vue/api/controllers/auth/signup.js
@@ -30,13 +30,6 @@ module.exports = {
         'If this request was sent from a graphical user interface, the request ' +
         'parameters should have been validated/coerced _before_ they were sent.'
     },
-    emailAlreadyInUse: {
-      statusCode: 409,
-      viewTemplatePath: '500',
-      description: 'The email address is no longer available.',
-      extendedDescription:
-        'This is an edge case that is not always anticipated by websites and APIs.  Since it is pretty rare, the 500 server error page is used as a simple catch-all.  If this becomes important in the future, this could easily be expanded into a custom error page or resolution flow.  But for context: this behavior of showing the 500 server error page mimics how popular apps like Slack behave under the same circumstances.'
-    },
     success: {
       responseType: 'redirect'
     }
@@ -45,26 +38,40 @@ module.exports = {
   fn: async function ({ fullName, email: userEmail, password }) {
     const email = userEmail.toLowerCase()
 
-    const unverifiedUser = await User.create({
-      email,
-      password,
-      fullName,
-      tosAcceptedByIp: this.req.ip,
-      emailProofToken: sails.helpers.strings.random('url-friendly'),
-      emailProofTokenExpiresAt:
-        Date.now() + sails.config.custom.emailProofTokenTTL
-    })
-      .intercept('E_UNIQUE', 'emailAlreadyInUse')
-      .intercept({ name: 'UsageError' }, () => {
+    try {
+      unverifiedUser = await User.create({
+        email,
+        password,
+        fullName,
+        tosAcceptedByIp: this.req.ip,
+        emailProofToken: sails.helpers.strings.random('url-friendly'),
+        emailProofTokenExpiresAt:
+          Date.now() + sails.config.custom.emailProofTokenTTL
+      }).fetch()
+    } catch (error) {
+      if (error.code === 'E_UNIQUE') {
         throw {
           badSignupRequest: {
             problems: [
-              `"signup" Apologies, but something went wrong with signing you up. Please try again.`
+              {
+                email: 'An account with this email address already exists.'
+              }
             ]
           }
         }
-      })
-      .fetch()
+      } else if (error.name === 'UsageError') {
+        throw {
+          badSignupRequest: {
+            problems: [
+              {
+                signup:
+                  'Apologies, but something went wrong with signing you up. Please try again.'
+              }
+            ]
+          }
+        }
+      }
+    }
 
     this.req.session.userEmail = unverifiedUser.email
 
diff --git a/templates/mellow-vue/api/responses/badRequest.js b/templates/mellow-vue/api/responses/badRequest.js
index 06ce0117..142fcd6b 100644
--- a/templates/mellow-vue/api/responses/badRequest.js
+++ b/templates/mellow-vue/api/responses/badRequest.js
@@ -36,34 +36,39 @@ module.exports = function badRequest(optionalData) {
 
   // Check if it's an Inertia request
   if (req.header('X-Inertia')) {
-    console.log(optionalData)
-    if (
-      optionalData &&
-      optionalData.code &&
-      (optionalData.code === 'E_MISSING_OR_INVALID_PARAMS' ||
-        optionalData.name === 'UsageError')
-    ) {
+    if (optionalData && optionalData.problems) {
       const errors = {}
       optionalData.problems.forEach((problem) => {
-        const regex = /"(.*?)"/
-        const matches = problem.match(regex)
+        if (typeof problem === 'object') {
+          Object.keys(problem).forEach((propertyName) => {
+            const sanitizedProblem = problem[propertyName].replace(/\.$/, '') // Trim trailing dot
+            if (!errors[propertyName]) {
+              errors[propertyName] = [sanitizedProblem]
+            } else {
+              errors[propertyName].push(sanitizedProblem)
+            }
+          })
+        } else {
+          const regex = /"(.*?)"/
+          const matches = problem.match(regex)
 
-        if (matches && matches.length > 1) {
-          const propertyName = matches[1]
-          const sanitizedProblem = problem.replace(/"([^"]+)"/, '$1')
-          if (!errors[propertyName]) {
-            errors[propertyName] = [sanitizedProblem]
-          } else {
-            errors[propertyName].push(sanitizedProblem)
+          if (matches && matches.length > 1) {
+            const propertyName = matches[1]
+            const sanitizedProblem = problem
+              .replace(/"([^"]+)"/, '$1')
+              .replace('\n', '')
+              .replace('·', '')
+              .trim()
+            if (!errors[propertyName]) {
+              errors[propertyName] = [sanitizedProblem]
+            } else {
+              errors[propertyName].push(sanitizedProblem)
+            }
           }
         }
       })
-
-      if (req.session) {
-        req.session.errors = errors
-      }
-
-      return res.status(statusCodeToSet).redirect('back')
+      req.session.errors = errors
+      return res.redirect(303, 'back')
     }
   }
 
diff --git a/templates/mellow-vue/assets/js/pages/login.vue b/templates/mellow-vue/assets/js/pages/login.vue
index 20444370..5ac7ec24 100644
--- a/templates/mellow-vue/assets/js/pages/login.vue
+++ b/templates/mellow-vue/assets/js/pages/login.vue
@@ -54,6 +54,13 @@ const disableLoginButton = computed(() => {
         <h1 class="text-2xl">Log into your account</h1>
         <p class="text-lg text-gray">Welcome back, please enter your details</p>
       </section>
+      <p
+        class="b my-4 rounded-sm border-red-400 bg-red-100 p-4 text-red-500"
+        v-if="form.errors.email || form.errors.login"
+      >
+        {{ form.errors?.login || form.errors?.email }}
+      </p>
+
       <form
         @submit.prevent="form.post('/login')"
         class="mb-4 flex flex-col space-y-6"
@@ -74,7 +81,7 @@ const disableLoginButton = computed(() => {
             </svg>
           </span>
           <input
-            type="email"
+            type="text"
             id="email"
             placeholder="Your email"
             class="block w-full rounded-lg border border-gray/50 bg-white py-3 pl-10 pr-3 shadow-sm placeholder:text-lg placeholder:text-gray focus:outline-none focus:ring-1 focus:ring-gray-100"
diff --git a/templates/mellow-vue/assets/js/pages/signup.vue b/templates/mellow-vue/assets/js/pages/signup.vue
index b9293432..dc80845b 100644
--- a/templates/mellow-vue/assets/js/pages/signup.vue
+++ b/templates/mellow-vue/assets/js/pages/signup.vue
@@ -64,6 +64,12 @@ const disableSignupButton = computed(() => {
           Welcome! Please enter your details to sign up
         </p>
       </section>
+      <p
+        class="b my-4 rounded-sm border-red-400 bg-red-100 p-4 text-red-500"
+        v-if="form.errors.signup"
+      >
+        {{ form.errors?.signup }}
+      </p>
       <form
         @submit.prevent="form.post('/signup')"
         class="mb-4 flex flex-col space-y-6"
@@ -101,6 +107,9 @@ const disableSignupButton = computed(() => {
             class="block w-full rounded-lg border border-gray/50 bg-white py-3 pl-10 pr-3 shadow-sm placeholder:text-lg placeholder:text-gray focus:outline-none focus:ring-1 focus:ring-gray-100"
             v-model="form.fullName"
           />
+          <p class="absolute text-red-500" v-if="form.errors.fullName">
+            {{ form.errors.fullName }}
+          </p>
         </label>
         <label for="email" class="relative block"
           ><span class="block text-lg">Email</span>
@@ -124,6 +133,9 @@ const disableSignupButton = computed(() => {
             class="block w-full rounded-lg border border-gray/50 bg-white py-3 pl-10 pr-3 shadow-sm placeholder:text-lg placeholder:text-gray focus:outline-none focus:ring-1 focus:ring-gray-100"
             v-model="form.email"
           />
+          <p class="absolute text-red-500" v-if="form.errors.email">
+            {{ form.errors.email }}
+          </p>
         </label>
         <label for="password" class="relative block"
           ><span class="block text-lg">Password</span>
@@ -214,6 +226,9 @@ const disableSignupButton = computed(() => {
               </svg>
             </button>
           </span>
+          <p class="absolute text-red-500" v-if="form.errors.password">
+            {{ form.errors.password }}
+          </p>
         </label>
         <ul class="flex justify-between text-sm">
           <li
diff --git a/templates/mellow-vue/jsconfig.json b/templates/mellow-vue/jsconfig.json
index 40de32cc..c79291f7 100644
--- a/templates/mellow-vue/jsconfig.json
+++ b/templates/mellow-vue/jsconfig.json
@@ -8,7 +8,7 @@
     // silences wrong TS error, we don't compile, we only typecheck
     "outDir": "./irrelevant/unused",
     "allowJs": true,
-    "checkJs": true,
+    "checkJs": false,
     "noImplicitThis": true,
     "noUnusedLocals": true,
     "noUnusedParameters": true,
diff --git a/templates/mellow-vue/package-lock.json b/templates/mellow-vue/package-lock.json
index 82884c4c..39914faa 100644
--- a/templates/mellow-vue/package-lock.json
+++ b/templates/mellow-vue/package-lock.json
@@ -13,9 +13,10 @@
         "@sailshq/connect-redis": "^3.2.1",
         "@sailshq/lodash": "^3.10.3",
         "@sailshq/socket.io-redis": "^5.2.0",
-        "inertia-sails": "^0.1.7",
+        "inertia-sails": "^0.1.8",
         "nodemailer": "^6.9.4",
         "sails": "^1.5.2",
+        "sails-flash": "^0.0.1",
         "sails-hook-mail": "^0.0.7",
         "sails-hook-organics": "^2.2.2",
         "sails-hook-orm": "^4.0.0",
@@ -2485,6 +2486,14 @@
         "node": ">= 0.10.0"
       }
     },
+    "node_modules/connect-flash": {
+      "version": "0.1.1",
+      "resolved": "https://registry.npmjs.org/connect-flash/-/connect-flash-0.1.1.tgz",
+      "integrity": "sha512-2rcfELQt/ZMP+SM/pG8PyhJRaLKp+6Hk2IUBNkEit09X+vwn3QsAL3ZbYtxUn7NVPzbMTSLRDhqe0B/eh30RYA==",
+      "engines": {
+        "node": ">= 0.4.0"
+      }
+    },
     "node_modules/content-disposition": {
       "version": "0.5.4",
       "resolved": "https://registry.npmjs.org/content-disposition/-/content-disposition-0.5.4.tgz",
@@ -3993,11 +4002,12 @@
       "integrity": "sha512-i0G7hLJ1z0DE8dsqJa2rycj9dBmNKgXBvotXtZYXakU9oivfB9Uj2ZBC27qqef2U58/ZLwalxa1X/RDCdkHtVg=="
     },
     "node_modules/inertia-sails": {
-      "version": "0.1.7",
-      "resolved": "https://registry.npmjs.org/inertia-sails/-/inertia-sails-0.1.7.tgz",
-      "integrity": "sha512-9iElK2egQFHfukCkMO1KYgDLNoe/4IMBl1925FKjQEoZ/jIDAAkHlOlZ5xlgeCUx1EAYZEVLZqGiHdtlqHrhuw==",
+      "version": "0.1.8",
+      "resolved": "https://registry.npmjs.org/inertia-sails/-/inertia-sails-0.1.8.tgz",
+      "integrity": "sha512-oypB8CmZkKZEjHgL6v8/f/TTvDItTaJaCMJPIhGew6W5r5pdpU8q1lJvKeX9y2P9OW9fx96KK2pEBTkBkaf/1w==",
       "peerDependencies": {
-        "sails": ">=1"
+        "sails": ">=1",
+        "sails-flash": ">=0.0.1"
       }
     },
     "node_modules/inflight": {
@@ -6555,6 +6565,14 @@
         "machinepack-fs": "^12.0.1"
       }
     },
+    "node_modules/sails-flash": {
+      "version": "0.0.1",
+      "resolved": "https://registry.npmjs.org/sails-flash/-/sails-flash-0.0.1.tgz",
+      "integrity": "sha512-8F9h8U/YFCnJR23Q6nR1I2TH2Si1dfQvPqO2YW0VoS15QleTWk2NTzfrAyNasGU182BRXNx+W4Tv33dc5cNJ+A==",
+      "dependencies": {
+        "connect-flash": "^0.1.1"
+      }
+    },
     "node_modules/sails-generate": {
       "version": "2.0.8",
       "resolved": "https://registry.npmjs.org/sails-generate/-/sails-generate-2.0.8.tgz",
diff --git a/templates/mellow-vue/package.json b/templates/mellow-vue/package.json
index 7844390b..0d02301b 100644
--- a/templates/mellow-vue/package.json
+++ b/templates/mellow-vue/package.json
@@ -10,9 +10,10 @@
     "@sailshq/connect-redis": "^3.2.1",
     "@sailshq/lodash": "^3.10.3",
     "@sailshq/socket.io-redis": "^5.2.0",
-    "inertia-sails": "^0.1.7",
+    "inertia-sails": "^0.1.8",
     "nodemailer": "^6.9.4",
     "sails": "^1.5.2",
+    "sails-flash": "^0.0.1",
     "sails-hook-mail": "^0.0.7",
     "sails-hook-organics": "^2.2.2",
     "sails-hook-orm": "^4.0.0",