验证邮箱验证码

src/email/dto/email.dto.ts

@@ -31,3 +31,8 @@ export class EmailVerifyDto {
   @IsNotEmpty()
   verifyCode: string
 }
+
+export class EmailVerifycationDto extends EmailVerifyDto {
+  @IsNotEmpty()
+  scene: EmailScene
+}

src/email/email-verify.decorator.ts

@@ -6,11 +6,9 @@ import {
   applyDecorators,
   UseGuards,
   SetMetadata,
-  ForbiddenException,
 } from '@nestjs/common'
-import { EmailScene, EmailSendDto } from './dto/email.dto'
+import { EmailScene, EmailVerifyDto } from './dto/email.dto'
 import { EmailService } from './email.service'
-import { JwtService } from '@nestjs/jwt'
 import { type Request } from 'express'
 
 const EMAIL_SCENE_KEY = 'EMAIL_SCENE'
@@ -20,24 +18,16 @@ class EmailVeriyGuard implements CanActivate {
   constructor(
     private emailService: EmailService,
     private reflector: Reflector,
-    private jwtService: JwtService,
   ) {}
 
-  canActivate(ctx: ExecutionContext) {
+  async canActivate(ctx: ExecutionContext) {
     const scene = this.reflector.get<EmailScene>(
       EMAIL_SCENE_KEY,
       ctx.getHandler(),
     )
 
-    const request = ctx.switchToHttp().getRequest<Request>()
+    const body: EmailVerifyDto = ctx.switchToHttp().getRequest<Request>().body
-    const { token, email, verifyCode } = request.body
+    await this.emailService.verifyEmailCode({ scene, ...body })
-
-    const payload = this.jwtService.verify<EmailSendDto>(token, {
-      secret: this.emailService.getEmailJwtSecret(verifyCode, scene),
-    })
-    if (payload.email !== email || payload.scene !== scene) {
-      throw new ForbiddenException('请输入正确的邮箱验证码')
-    }
     return true
   }
 }

src/email/email.controller.ts

@@ -1,7 +1,7 @@
-import { Body, Controller, Post } from '@nestjs/common'
+import { Body, Controller, Post, Get, Query } from '@nestjs/common'
 import { EmailService } from './email.service'
 import { ApiTags, ApiOperation } from '@nestjs/swagger'
-import { EmailSendDto } from './dto/email.dto'
+import { EmailSendDto, EmailVerifycationDto } from './dto/email.dto'
 
 @ApiTags('Email')
 @Controller('api/email')
@@ -9,8 +9,14 @@ export class EmailController {
   constructor(private readonly emailService: EmailService) {}
 
   @ApiOperation({ summary: '发送邮箱验证码' })
-  @Post('verifyCode')
+  @Get('verifyCode')
-  async sendEmailCode(@Body() payload: EmailSendDto) {
+  async sendEmailCode(@Query() payload: EmailSendDto) {
     return this.emailService.sendEmailToken(payload.email, payload.scene)
   }
+
+  @ApiOperation({ summary: '验证邮箱验证码' })
+  @Post('verifyCode')
+  async verifyEmailCode(@Body() payload: EmailVerifycationDto) {
+    return this.emailService.verifyEmailCode(payload)
+  }
 }

src/email/email.service.ts

@@ -3,12 +3,13 @@ import {
   Injectable,
   ConflictException,
   NotFoundException,
+  ForbiddenException,
 } from '@nestjs/common'
 import { securityConfig, SecurityConfig } from 'src/common/configs'
 import { MailerService } from '@nestjs-modules/mailer'
 import { JwtService } from '@nestjs/jwt'
 import { PrismaService } from 'nestjs-prisma'
-import { EmailScene } from './dto/email.dto'
+import { EmailScene, EmailVerifycationDto, EmailSendDto } from './dto/email.dto'
 import { UserEntity } from 'src/users/entities/user.entity'
 
 @Injectable()
@@ -59,6 +60,16 @@ export class EmailService {
     return { token, userId: user?.id }
   }
 
+  async verifyEmailCode(data: EmailVerifycationDto) {
+    const { token, verifyCode, email, scene } = data
+    const payload = this.jwtService.verify<EmailSendDto>(token, {
+      secret: this.getEmailJwtSecret(verifyCode, scene),
+    })
+    if (payload.email !== email || payload.scene !== scene) {
+      throw new ForbiddenException('邮箱验证码验证失败')
+    }
+  }
+
   getEmailJwtSecret(verifyCode: string, scene: EmailScene) {
     return this.secureConfig.jwt_access_secret + verifyCode + scene
   }