first commit

calcom/packages/trpc/server/routers/viewer/workflows/verifyEmailCode.handler.ts

@@ -0,0 +1,41 @@
+import { createHash } from "crypto";
+
+import { totpRawCheck } from "@calcom/lib/totp";
+import { prisma } from "@calcom/prisma";
+import type { TrpcSessionUser } from "@calcom/trpc/server/trpc";
+
+import { TRPCError } from "@trpc/server";
+
+import type { TVerifyEmailCodeInputSchema } from "./verifyEmailCode.schema";
+
+type VerifyEmailCodeOptions = {
+  ctx: {
+    user: NonNullable<TrpcSessionUser>;
+  };
+  input: TVerifyEmailCodeInputSchema;
+};
+
+export const verifyEmailCodeHandler = async ({ ctx, input }: VerifyEmailCodeOptions) => {
+  const { code, email, teamId } = input;
+  const { id } = ctx.user;
+
+  if (!code || !email) throw new TRPCError({ code: "BAD_REQUEST" });
+
+  const secret = createHash("md5")
+    .update(email + process.env.CALENDSO_ENCRYPTION_KEY)
+    .digest("hex");
+
+  const isValidToken = totpRawCheck(code, secret, { step: 900 });
+
+  if (!isValidToken) throw new TRPCError({ code: "BAD_REQUEST", message: "invalid_code" });
+
+  await prisma.verifiedEmail.create({
+    data: {
+      email,
+      userId: id,
+      teamId,
+    },
+  });
+
+  return isValidToken;
+};