Merge pull request #30 from Azm-Tech/feat/add-otp-verification

Feat/add otp verification

Author: Rashed99Azm

backend/src/CCE.Api.Common/Localization/Resources.yaml

@@ -412,6 +412,31 @@ CONTENT_UPDATE_FAILED:
   ar: "عذراً، حدثت مشكلة أثناء تحديث المحتوى"
   en: "Sorry, a problem occurred while updating the content"
 
+OTP_NOT_FOUND:
+  ar: "طلب التحقق غير موجود."
+  en: "Verification request not found."
+OTP_EXPIRED:
+  ar: "انتهت صلاحية رمز التحقق. يرجى طلب رمز جديد."
+  en: "The verification code has expired. Please request a new one."
+OTP_INVALID_CODE:
+  ar: "رمز التحقق غير صحيح."
+  en: "The verification code is incorrect."
+OTP_MAX_ATTEMPTS:
+  ar: "تجاوزت الحد الأقصى لمحاولات التحقق. يرجى طلب رمز جديد."
+  en: "Maximum verification attempts reached. Please request a new code."
+OTP_COOLDOWN_ACTIVE:
+  ar: "يرجى الانتظار 60 ثانية قبل طلب رمز جديد."
+  en: "Please wait 60 seconds before requesting a new code."
+OTP_INVALIDATED:
+  ar: "تم إلغاء صلاحية رمز التحقق هذا."
+  en: "This verification code has been invalidated."
+OTP_SENT:
+  ar: "تم إرسال رمز التحقق بنجاح."
+  en: "Verification code sent successfully."
+OTP_VERIFIED:
+  ar: "تم التحقق بنجاح."
+  en: "Verification successful."
+
 NOTIFICATION_SETTINGS_UPDATED:
   ar: "تم تحديث إعدادات الإشعارات بنجاح"
   en: "Notification settings updated successfully"

backend/src/CCE.Api.External/Endpoints/Verification/RequestVerificationRequest.cs

@@ -0,0 +1,9 @@
+using CCE.Domain.Verification;
+
+namespace CCE.Api.External.Endpoints.Verification;
+
+public sealed record RequestVerificationRequest(
+    string? Token,
+    string? ProviderName,
+    string Contact,
+    OtpVerificationType TypeId);

backend/src/CCE.Api.External/Endpoints/Verification/VerificationEndpoints.cs

@@ -0,0 +1,41 @@
+using CCE.Api.Common.Extensions;
+using CCE.Application.Verification.Commands.RequestVerification;
+using CCE.Application.Verification.Commands.VerifyOtp;
+using MediatR;
+
+namespace CCE.Api.External.Endpoints.Verification;
+
+public static class VerificationEndpoints
+{
+    public static IEndpointRouteBuilder MapVerificationEndpoints(this IEndpointRouteBuilder app)
+    {
+        var verification = app.MapGroup("/verification").WithTags("Verification");
+
+        verification.MapPost("/request", async (
+            RequestVerificationRequest req,
+            ISender sender,
+            CancellationToken ct) =>
+        {
+            var cmd = new RequestVerificationCommand(
+                req.Token, req.ProviderName, req.Contact, req.TypeId);
+            var result = await sender.Send(cmd, ct).ConfigureAwait(false);
+            return result.ToHttpResult();
+        })
+        .AllowAnonymous()
+        .WithName("RequestVerification");
+
+        verification.MapPost("/verify", async (
+            VerifyOtpRequest req,
+            ISender sender,
+            CancellationToken ct) =>
+        {
+            var cmd = new VerifyOtpCommand(req.VerificationId, req.Code);
+            var result = await sender.Send(cmd, ct).ConfigureAwait(false);
+            return result.ToHttpResult();
+        })
+        .AllowAnonymous()
+        .WithName("VerifyOtp");
+
+        return app;
+    }
+}

backend/src/CCE.Api.External/Endpoints/Verification/VerifyOtpRequest.cs

@@ -0,0 +1,3 @@
+namespace CCE.Api.External.Endpoints.Verification;
+
+public sealed record VerifyOtpRequest(Guid VerificationId, string Code);

backend/src/CCE.Api.External/Program.cs

@@ -8,6 +8,7 @@
 using CCE.Api.Common.OpenApi;
 using CCE.Api.Common.RateLimiting;
 using CCE.Api.External.Endpoints;
+using CCE.Api.External.Endpoints.Verification;
 using CCE.Api.External.Hubs;
 using CCE.Application;
 using CCE.Infrastructure.Notifications;
@@ -116,6 +117,7 @@
 app.MapAboutSettingsPublicEndpoints();
 app.MapPoliciesSettingsPublicEndpoints();
 app.MapMediaPublicEndpoints();
+app.MapVerificationEndpoints();
 
 app.MapGet("/health", async (IMediator mediator) =>
 {

backend/src/CCE.Api.External/appsettings.Development.json

@@ -89,12 +89,7 @@
   "Seq": {
     "ServerUrl": "http://localhost:5341"
   },
-  "Messaging": {
-    "Transport": "InMemory",
-    "UseAsyncDispatcher": true
-    // For RabbitMQ production:
-    // "Transport": "RabbitMQ",
-    // "RabbitMqHost": "amqp://guest:guest@localhost",
-    // "RabbitMqVirtualHost": "/cce-dev"
+  "Otp": {
+    "HmacSecret": "3ahs3DvW/rdx+InzjOCpqSUDSFuvyF59sPjziVdeIhE="
   }
 }

backend/src/CCE.Api.External/appsettings.json

@@ -73,5 +73,8 @@
     "ApiKey": "",
     "OtlpEndpoint": "http://localhost:5341/ingest/otlp",
     "EnableTracing": true
+  },
+  "Otp": {
+    "HmacSecret": "replace-with-32-byte-base64-hmac-secret"
   }
 }

backend/src/CCE.Api.Internal/appsettings.Development.json

@@ -79,5 +79,8 @@
   },
   "Seq": {
     "ServerUrl": "http://localhost:5341"
+  },
+  "Otp": {
+    "HmacSecret": "3ahs3DvW/rdx+InzjOCpqSUDSFuvyF59sPjziVdeIhE="
   }
 }

backend/src/CCE.Api.Internal/appsettings.json

@@ -73,5 +73,8 @@
     "ApiKey": "",
     "OtlpEndpoint": "http://localhost:5341/ingest/otlp",
     "EnableTracing": true
+  },
+  "Otp": {
+    "HmacSecret": "replace-with-32-byte-base64-hmac-secret"
   }
 }

backend/src/CCE.Application/Common/Interfaces/ICceDbContext.cs

@@ -9,6 +9,7 @@
 using CCE.Domain.Notifications;
 using CCE.Domain.PlatformSettings;
 using CCE.Domain.Surveys;
+using CCE.Domain.Verification;
 using Microsoft.AspNetCore.Identity;
 using DomainCountry = CCE.Domain.Country;
 
@@ -70,11 +71,16 @@ public interface ICceDbContext
     IQueryable<KnowledgePartner> KnowledgePartners { get; }
     IQueryable<PolicySection> PolicySections { get; }
 
+    // ─── Verification ───
+    IQueryable<OtpVerification> OtpVerifications { get; }
+    IQueryable<UserVerification> UserVerifications { get; }
+
     // ─── Media ───
     IQueryable<MediaFile> MediaFiles { get; }
 
     // Write operations
     void Add<T>(T entity) where T : class;
+    void Attach<T>(T entity) where T : class;
     void Delete<T>(T entity) where T : class;
     void DeleteRange<T>(System.Collections.Generic.IEnumerable<T> entities) where T : class;