feat: implement resendConfirmationCode

server/api/@types/auth.ts

@@ -4,22 +4,20 @@ export type Jwks = { keys: [{ kid: string; alg: string }] };
 
 type TargetBody<Req, Res> = { reqBody: Req; resBody: Res };
 
+export type CodeDeliveryDetails = {
+  AttributeName: 'email';
+  DeliveryMedium: 'EMAIL';
+  Destination: string;
+};
+
 export type SignUpTarget = TargetBody<
   {
     Username: string;
     Password: string;
     UserAttributes: [{ Name: 'email'; Value: string }];
     ClientId: MaybeId['userPoolClient'];
   },
-  {
-    CodeDeliveryDetails: {
-      AttributeName: 'email';
-      DeliveryMedium: 'EMAIL';
-      Destination: string;
-    };
-    UserConfirmed: boolean;
-    UserSub: EntityId['user'];
-  }
+  { CodeDeliveryDetails: CodeDeliveryDetails; UserConfirmed: boolean; UserSub: EntityId['user'] }
 >;
 
 export type ConfirmSignUpTarget = TargetBody<
@@ -106,11 +104,17 @@ export type RevokeTokenTarget = TargetBody<
   Record<string, never>
 >;
 
+export type ResendConfirmationCodeTarget = TargetBody<
+  { ClientId: MaybeId['userPoolClient']; Username: string },
+  { CodeDeliveryDetails: CodeDeliveryDetails }
+>;
+
 export type AmzTargets = {
   'AWSCognitoIdentityProviderService.SignUp': SignUpTarget;
   'AWSCognitoIdentityProviderService.ConfirmSignUp': ConfirmSignUpTarget;
   'AWSCognitoIdentityProviderService.InitiateAuth': UserSrpAuthTarget | RefreshTokenAuthTarget;
   'AWSCognitoIdentityProviderService.RespondToAuthChallenge': RespondToAuthChallengeTarget;
   'AWSCognitoIdentityProviderService.GetUser': GetUserTarget;
   'AWSCognitoIdentityProviderService.RevokeToken': RevokeTokenTarget;
+  'AWSCognitoIdentityProviderService.ResendConfirmationCode': ResendConfirmationCodeTarget;
 };

server/api/controller.ts

@@ -68,6 +68,10 @@ const targets: {
     validator: z.object({ ClientId: brandedId.userPoolClient.maybe, Token: z.string() }),
     useCase: authUseCase.revokeToken,
   },
+  'AWSCognitoIdentityProviderService.ResendConfirmationCode': {
+    validator: z.object({ ClientId: brandedId.userPoolClient.maybe, Username: z.string() }),
+    useCase: authUseCase.resendConfirmationCode,
+  },
 };
 
 const main = async <T extends keyof AmzTargets>(target: T, body: AmzTargets[T]['reqBody']) =>

server/domain/user/service/genCodeDeliveryDetails.ts

@@ -0,0 +1,8 @@
+import type { CodeDeliveryDetails } from 'api/@types/auth';
+import type { UserEntity } from 'api/@types/user';
+
+export const genCodeDeliveryDetails = (user: UserEntity): CodeDeliveryDetails => ({
+  AttributeName: 'email',
+  DeliveryMedium: 'EMAIL',
+  Destination: user.email.replace(/^(.).*@(.).+$/, '$1***@$2***'),
+});

server/domain/user/service/sendConfirmationCode.ts

@@ -0,0 +1,9 @@
+import type { UserEntity } from 'api/@types/user';
+import { sendMail } from 'service/sendMail';
+
+export const sendConfirmationCode = (user: UserEntity): Promise<void> =>
+  sendMail({
+    to: { name: user.name, address: user.email },
+    subject: 'Your verification code',
+    text: `Your confirmation code is ${user.confirmationCode}`,
+  });

server/domain/user/useCase/authUseCase.ts

@@ -2,6 +2,7 @@ import type {
   ConfirmSignUpTarget,
   GetUserTarget,
   RefreshTokenAuthTarget,
+  ResendConfirmationCodeTarget,
   RespondToAuthChallengeTarget,
   RevokeTokenTarget,
   SignUpTarget,
@@ -17,8 +18,9 @@ import { userPoolQuery } from 'domain/userPool/repository/userPoolQuery';
 import { jwtDecode } from 'jwt-decode';
 import { cognitoAssert } from 'service/cognitoAssert';
 import { transaction } from 'service/prismaClient';
-import { sendMail } from 'service/sendMail';
 import type { AccessTokenJwt } from 'service/types';
+import { genCodeDeliveryDetails } from '../service/genCodeDeliveryDetails';
+import { sendConfirmationCode } from '../service/sendConfirmationCode';
 
 export const authUseCase = {
   signUp: (req: SignUpTarget['reqBody']): Promise<SignUpTarget['resBody']> =>
@@ -39,18 +41,10 @@ export const authUseCase = {
         userPoolId: poolClient.userPoolId,
       });
       await userCommand.save(tx, user);
-      await sendMail({
-        to: { name: user.name, address: user.email },
-        subject: 'Your verification code',
-        text: `Your confirmation code is ${user.confirmationCode}`,
-      });
+      await sendConfirmationCode(user);
 
       return {
-        CodeDeliveryDetails: {
-          AttributeName: 'email',
-          DeliveryMedium: 'EMAIL',
-          Destination: req.UserAttributes[0].Value.replace(/^(.).*@(.).+$/, '$1***@$2***'),
-        },
+        CodeDeliveryDetails: genCodeDeliveryDetails(user),
         UserConfirmed: false,
         UserSub: user.id,
       };
@@ -76,10 +70,7 @@ export const authUseCase = {
 
       await userCommand.save(tx, userWithChallenge);
 
-      return {
-        ChallengeName: 'PASSWORD_VERIFIER',
-        ChallengeParameters,
-      };
+      return { ChallengeName: 'PASSWORD_VERIFIER', ChallengeParameters };
     }),
   refreshTokenAuth: (
     req: RefreshTokenAuthTarget['reqBody'],
@@ -159,4 +150,17 @@ export const authUseCase = {
 
       return {};
     }),
+  resendConfirmationCode: (
+    req: ResendConfirmationCodeTarget['reqBody'],
+  ): Promise<ResendConfirmationCodeTarget['resBody']> =>
+    transaction(async (tx) => {
+      const poolClient = await userPoolQuery.findClientById(tx, req.ClientId);
+      const user = await userQuery.findByName(tx, req.Username);
+
+      assert(poolClient.userPoolId === user.userPoolId);
+
+      await sendConfirmationCode(user);
+
+      return { CodeDeliveryDetails: genCodeDeliveryDetails(user) };
+    }),
 };

server/tests/api/signUp.test.ts

@@ -18,6 +18,11 @@ test('signUp', async () => {
     },
   });
 
+  await noCookieClient.post({
+    headers: { 'x-amz-target': 'AWSCognitoIdentityProviderService.ResendConfirmationCode' },
+    body: { ClientId: DEFAULT_USER_POOL_CLIENT_ID, Username: 'user' },
+  });
+
   assert(process.env.INBUCKET_URL);
 
   const inbucketClient = new InbucketAPIClient(process.env.INBUCKET_URL);