feat(auth): enhance registration process to return tokens when email verification is not required and update login redirection message

aalmada · aalmada · commit e8d4371db3f1 · 2026-03-12T23:08:16.000Z
diff --git a/src/BookStore.Web/Components/Pages/Register.razor b/src/BookStore.Web/Components/Pages/Register.razor
@@ -36,7 +36,7 @@
                 }
                 else
                 {
-                    <text> Redirecting to login...</text>
+                    <text> You are now logged in. Redirecting...</text>
                 }
             </MudAlert>
         }
@@ -239,7 +239,30 @@
             if (result.IsSuccess)
             {
                 registrationSuccess = true;
-                requiresVerification = true; // Safe default for UI message.
+
+                if (result.Value is { AccessToken: not null } loginResponse)
+                {
+                    // Email verification is not required — auto-login the user immediately.
+                    requiresVerification = false;
+                    await AuthStateProvider.NotifyUserAuthentication(loginResponse.AccessToken, loginResponse.RefreshToken);
+
+                    try
+                    {
+                        await JS.InvokeVoidAsync("authBroadcast.notifyLogin");
+                    }
+                    catch
+                    {
+                        // BroadcastChannel might not be available, continue anyway
+                    }
+
+                    await Task.Delay(1500);
+                    Navigation.NavigateTo("/");
+                }
+                else
+                {
+                    // Email verification is required — user must confirm email first.
+                    requiresVerification = true;
+                }
             }
             else
             {
diff --git a/src/BookStore.Web/Services/AuthenticationService.cs b/src/BookStore.Web/Services/AuthenticationService.cs
@@ -74,31 +74,34 @@ public async Task<Result<LoginResponse>> LoginAsync(string email, string passwor
     }
 
     /// <summary>
-    /// Register a new user
+    /// Register a new user. Returns tokens when email verification is not required.
     /// </summary>
-    public async Task<Result> RegisterAsync(string email, string password,
+    public async Task<Result<LoginResponse?>> RegisterAsync(string email, string password,
         CancellationToken cancellationToken = default)
     {
         // Validate password strength
         var validationError = ValidatePassword(password);
         if (validationError != null)
         {
-            return Result.Failure(Error.Validation(ErrorCodes.Auth.PasswordMismatch, validationError));
+            return Result.Failure<LoginResponse?>(Error.Validation(ErrorCodes.Auth.PasswordMismatch, validationError));
         }
 
         try
         {
             var request = new RegisterRequest(email, password);
-            _ = await identityClient.RegisterAsync(request, cancellationToken);
-            return Result.Success();
+            var response = await identityClient.RegisterAsync(request, cancellationToken);
+            // When email verification is not required the server returns a full LoginResponse with tokens.
+            // When verification is required it returns an anonymous message object, so AccessToken is null.
+            return Result.Success<LoginResponse?>(
+                string.IsNullOrEmpty(response?.AccessToken) ? null : response);
         }
         catch (Refit.ApiException ex)
         {
-            return ex.ToResult();
+            return ex.ToResult<LoginResponse?>();
         }
         catch (Exception ex)
         {
-            return Result.Failure(Error.Failure("ERR_REGISTRATION_FAILED", ex.Message));
+            return Result.Failure<LoginResponse?>(Error.Failure("ERR_REGISTRATION_FAILED", ex.Message));
         }
     }
 

Original file line number	Diff line number	Diff line change
`@@ -74,31 +74,34 @@ public async Task<Result<LoginResponse>> LoginAsync(string email, string passwor`
`74`	`74`	`}`
`75`	`75`
`76`	`76`	`/// <summary>`
`77`		`- /// Register a new user`
	`77`	`+ /// Register a new user. Returns tokens when email verification is not required.`
`78`	`78`	`/// </summary>`
`79`		`- public async Task<Result> RegisterAsync(string email, string password,`
	`79`	`+ public async Task<Result<LoginResponse?>> RegisterAsync(string email, string password,`
`80`	`80`	`CancellationToken cancellationToken = default)`
`81`	`81`	`{`
`82`	`82`	`// Validate password strength`
`83`	`83`	`var validationError = ValidatePassword(password);`
`84`	`84`	`if (validationError != null)`
`85`	`85`	`{`
`86`		`- return Result.Failure(Error.Validation(ErrorCodes.Auth.PasswordMismatch, validationError));`
	`86`	`+ return Result.Failure<LoginResponse?>(Error.Validation(ErrorCodes.Auth.PasswordMismatch, validationError));`
`87`	`87`	`}`
`88`	`88`
`89`	`89`	`try`
`90`	`90`	`{`
`91`	`91`	`var request = new RegisterRequest(email, password);`
`92`		`- _ = await identityClient.RegisterAsync(request, cancellationToken);`
`93`		`- return Result.Success();`
	`92`	`+ var response = await identityClient.RegisterAsync(request, cancellationToken);`
	`93`	`+ // When email verification is not required the server returns a full LoginResponse with tokens.`
	`94`	`+ // When verification is required it returns an anonymous message object, so AccessToken is null.`
	`95`	`+ return Result.Success<LoginResponse?>(`
	`96`	`+ string.IsNullOrEmpty(response?.AccessToken) ? null : response);`
`94`	`97`	`}`
`95`	`98`	`catch (Refit.ApiException ex)`
`96`	`99`	`{`
`97`		`- return ex.ToResult();`
	`100`	`+ return ex.ToResult<LoginResponse?>();`
`98`	`101`	`}`
`99`	`102`	`catch (Exception ex)`
`100`	`103`	`{`
`101`		`- return Result.Failure(Error.Failure("ERR_REGISTRATION_FAILED", ex.Message));`
	`104`	`+ return Result.Failure<LoginResponse?>(Error.Failure("ERR_REGISTRATION_FAILED", ex.Message));`
`102`	`105`	`}`
`103`	`106`	`}`
`104`	`107`