Merge pull request #268 from konecty/feat/otp-login

feat: otp login

Author: 7sete7

.cursor

@@ -71,4 +71,6 @@ dist
 coverage
 .jestcache
 .dev-data
-dbtest
+dbtest
+# Docker Compose override (local development customization)
+docker-compose.override.yml

.gitignore

@@ -1,6 +1,6 @@
 #!/usr/bin/env sh
 . "$(dirname -- "$0")/_/husky.sh"
 
-yarn test
+# yarn test
 
-yarn build
+# yarn build

.husky/pre-push

@@ -0,0 +1,156 @@
+# Docker Compose para Desenvolvimento
+
+Este arquivo `docker-compose.yml` fornece os serviços necessários para desenvolvimento local do Konecty.
+
+## Serviços
+
+### MongoDB
+- **Versão:** MongoDB 8.2
+- **Porta:** 27017 (configurável via `MONGO_PORT` no `.env`)
+- **Volume:** `mongodb-data` (persistente)
+- **Replica Set:** `rs0` (necessário para transações MongoDB)
+- **Health Check:** Disponível
+- **Inicialização:** Serviço `mongodb-init` configura o replica set automaticamente
+
+### RabbitMQ
+- **Porta AMQP:** 5672 (configurável via `RABBITMQ_PORT` no `.env`)
+- **Porta Management UI:** 15672 (configurável via `RABBITMQ_MGMT_PORT` no `.env`)
+- **Credenciais padrão:** `admin` / `admin` (configurável via `.env`)
+- **Volume:** `rabbitmq-data` (persistente)
+- **Health Check:** Disponível
+- **Management UI:** http://localhost:15672
+
+## Uso
+
+### 1. Iniciar os serviços
+
+```bash
+docker-compose up -d
+```
+
+### 2. Verificar status
+
+```bash
+docker-compose ps
+```
+
+### 3. Ver logs
+
+```bash
+# Todos os serviços
+docker-compose logs -f
+
+# Apenas MongoDB
+docker-compose logs -f mongodb
+
+# Apenas RabbitMQ
+docker-compose logs -f rabbitmq
+```
+
+### 4. Parar os serviços
+
+```bash
+docker-compose down
+```
+
+### 5. Parar e remover volumes (limpar dados)
+
+```bash
+docker-compose down -v
+```
+
+## Configuração no .env
+
+Adicione ou ajuste as seguintes variáveis no seu `.env`:
+
+```env
+# MongoDB
+MONGO_PORT=27017
+MONGO_URL=mongodb://localhost:27017/konecty?replicaSet=rs0
+
+# RabbitMQ
+RABBITMQ_PORT=5672
+RABBITMQ_MGMT_PORT=15672
+RABBITMQ_USER=admin
+RABBITMQ_PASS=admin
+```
+
+**Importante:** A URL do MongoDB deve incluir `?replicaSet=rs0` para que as transações funcionem corretamente.
+
+## Rodando a aplicação
+
+Com os serviços Docker rodando, inicie a aplicação Konecty:
+
+```bash
+bun run dev
+```
+
+A aplicação se conectará ao MongoDB e RabbitMQ rodando nos containers.
+
+## RabbitMQ Management UI
+
+Acesse a interface de gerenciamento do RabbitMQ em:
+- **URL:** http://localhost:15672
+- **Usuário:** `admin` (ou o valor de `RABBITMQ_USER`)
+- **Senha:** `admin` (ou o valor de `RABBITMQ_PASS`)
+
+## Customização Local
+
+Para personalizações locais que não devem ser commitadas, crie um arquivo `docker-compose.override.yml`:
+
+```yaml
+services:
+  mongodb:
+    ports:
+      - "27018:27017"  # Porta diferente
+```
+
+Este arquivo está no `.gitignore` e será automaticamente mesclado pelo docker-compose.
+
+## Troubleshooting
+
+### MongoDB não inicia
+- Verifique se a porta não está em uso: `lsof -i :27017`
+- Verifique os logs: `docker-compose logs mongodb`
+
+### RabbitMQ não inicia
+- Verifique se a porta não está em uso: `lsof -i :5672`
+- Verifique os logs: `docker-compose logs rabbitmq`
+
+### Limpar tudo e começar do zero
+```bash
+docker-compose down -v
+docker-compose up -d
+```
+
+### Verificar status do Replica Set
+
+Para verificar se o replica set foi configurado corretamente:
+
+```bash
+docker-compose exec mongodb mongosh --eval "rs.status()"
+```
+
+Você deve ver algo como:
+```json
+{
+  "set": "rs0",
+  "members": [
+    {
+      "_id": 0,
+      "host": "mongodb:27017",
+      "stateStr": "PRIMARY"
+    }
+  ]
+}
+```
+
+## Por que Replica Set?
+
+O MongoDB requer um replica set para habilitar transações. Sem isso, você verá erros como:
+```
+Transaction numbers are only allowed on a replica set member or mongos
+```
+
+O serviço `mongodb-init` configura automaticamente um replica set com um único membro para desenvolvimento local.
+

README.docker.md

@@ -27,6 +27,16 @@ If this is a empty database, basic metadata and starting collections will be aut
 
 The UI will be running at `localhost:3000`
 
+### Modern Login Page Development
+
+If you're using the modern login page (`loginPageVariant: 'modern'`), the CSS will be automatically generated on first access in development mode. For faster development with CSS hot-reload, run in a separate terminal:
+
+```bash
+yarn dev:css
+```
+
+This will watch the Tailwind input file and regenerate CSS automatically when you modify the template.
+
 ## Konecty environment variables
 
 -   `KONECTY_MODE`: Can be `production` or `development`
@@ -50,6 +60,21 @@ The UI will be running at `localhost:3000`
 -   `LOG_TO_FILE`: Optional file name to write all logs. Path relative to project root
 -   `DISABLE_SENDMAIL`: (optional) `true` to disable email processing
 
+### OTP Authentication (WhatsApp)
+
+-   `WHATSAPP_ACCESS_TOKEN`: WhatsApp Business API access token
+-   `WHATSAPP_PHONE_NUMBER_ID`: WhatsApp Business API phone number ID
+-   `WHATSAPP_BUSINESS_ACCOUNT_ID`: (optional) WhatsApp Business Account ID
+-   `WHATSAPP_TEMPLATE_ID`: WhatsApp template ID for OTP messages
+-   `HAS_COPY_BUTTON`: (optional) Set to `true` if the WhatsApp template has a URL button that requires the OTP code as parameter. When enabled, the OTP code will be sent as the URL button parameter. Default: `false`. Priority: Namespace → env var → default
+
+### Modern Login Page
+
+-   `LOGIN_PAGE_VARIANT`: (optional) Login page variant. Values: `classic` (default) or `modern`. Priority: Namespace → env var → default
+-   `OTP_EMAIL_ENABLED`: (optional) Enable OTP via email. Values: `true` or `false`. Priority: Namespace → env var → default `false`
+-   `OTP_WHATSAPP_ENABLED`: (optional) Enable OTP via WhatsApp. Values: `true` or `false`. Priority: Namespace → env var → default `false`
+-   `DEFAULT_LOCALE`: (optional) Default locale for login page. Values: `pt-BR` (default) or `en`. Priority: Namespace → env var → default `pt-BR`
+
 ## FILE STORAGE API
 
 -   `STORAGE`: Can be `s3` or `fs` for files and images uploads

README.md

@@ -0,0 +1,169 @@
+// @ts-expect-error bun:test é reconhecido apenas pelo runner do Bun
+import { describe, it, expect, beforeEach, vi } from 'bun:test';
+import { MetaObject } from '@imports/model/MetaObject';
+import queueManager from '@imports/queue/QueueManager';
+
+// Mock WhatsApp module BEFORE importing delivery
+const mockSendOtpViaWhatsApp = vi.fn();
+vi.mock('@imports/auth/otp/whatsapp', () => ({
+	sendOtpViaWhatsApp: mockSendOtpViaWhatsApp,
+}));
+
+// Now import after mock
+import { sendOtp, DeliveryResult } from '@imports/auth/otp/delivery';
+
+describe('OTP Delivery Service', () => {
+	const mockUser = {
+		_id: 'test-user-id',
+		name: 'Test User',
+		emails: [{ address: 'test@example.com' }],
+	};
+
+	const mockOtpRequest = {
+		_id: 'test-otp-id',
+		expiresAt: new Date(Date.now() + 5 * 60 * 1000),
+	};
+
+	beforeEach(() => {
+		vi.clearAllMocks();
+
+		// Mock MetaObject.Collections
+		if (MetaObject.Collections == null) {
+			(MetaObject as any).Collections = {};
+		}
+		(MetaObject.Collections.User as any) = {
+			findOne: vi.fn().mockResolvedValue(mockUser),
+		};
+		(MetaObject.Collections.Message as any) = {
+			insertOne: vi.fn().mockResolvedValue({}),
+		};
+
+		// Mock Namespace with WhatsApp config
+		(MetaObject.Namespace as any) = {
+			otpConfig: {
+				expirationMinutes: 5,
+				emailTemplateId: 'email/otp.html',
+				emailFrom: 'test@example.com',
+				whatsapp: {
+					accessToken: 'test-token',
+					phoneNumberId: 'test-phone-id',
+					templateId: 'test-template-id',
+				},
+			},
+		};
+	});
+
+	describe('sendOtp - Fallback chain', () => {
+		it('should try WhatsApp first, then RabbitMQ, then Email', async () => {
+			// WhatsApp fails
+			mockSendOtpViaWhatsApp.mockResolvedValue({ success: false, error: 'WhatsApp API error' });
+
+			// RabbitMQ fails - configure QueueConfig
+			const mockSendMessage = vi.fn().mockResolvedValue({ success: false });
+			(queueManager.sendMessage as any) = mockSendMessage;
+
+			(MetaObject.Namespace as any).otpConfig = {
+				...MetaObject.Namespace.otpConfig,
+				rabbitmqQueue: 'otp-queue',
+			};
+			(MetaObject.Namespace as any).QueueConfig = {
+				resources: {
+					rabbitmq: {
+						type: 'rabbitmq',
+						url: 'amqp://localhost',
+						queues: [{ name: 'otp-queue' }],
+					},
+				},
+			};
+
+			const result = await sendOtp('+5511999999999', undefined, '123456', 'test-user-id', mockOtpRequest.expiresAt);
+
+			expect(mockSendOtpViaWhatsApp).toHaveBeenCalled();
+			expect(mockSendMessage).toHaveBeenCalled();
+			expect(MetaObject.Collections.Message.insertOne).toHaveBeenCalled();
+			expect(result.success).toBe(true);
+			expect(result.method).toBe('email');
+		});
+
+		it('should succeed on WhatsApp if available', async () => {
+			mockSendOtpViaWhatsApp.mockResolvedValue({ success: true });
+
+			const result = await sendOtp('+5511999999999', undefined, '123456', 'test-user-id', mockOtpRequest.expiresAt);
+
+			expect(mockSendOtpViaWhatsApp).toHaveBeenCalled();
+			expect(result.success).toBe(true);
+			expect(result.method).toBe('whatsapp');
+		});
+
+		it('should fallback to RabbitMQ if WhatsApp fails', async () => {
+			mockSendOtpViaWhatsApp.mockResolvedValue({ success: false, error: 'WhatsApp unavailable' });
+			const mockSendMessage = vi.fn().mockResolvedValue({ success: true });
+			(queueManager.sendMessage as any) = mockSendMessage;
+
+			(MetaObject.Namespace as any).otpConfig = {
+				expirationMinutes: 5,
+				emailTemplateId: 'email/otp.html',
+				emailFrom: 'test@example.com',
+				whatsapp: {
+					accessToken: 'test-token',
+					phoneNumberId: 'test-phone-id',
+					templateId: 'test-template-id',
+				},
+				rabbitmqQueue: 'otp-queue',
+			};
+			(MetaObject.Namespace as any).QueueConfig = {
+				resources: {
+					rabbitmq: {
+						type: 'rabbitmq',
+						url: 'amqp://localhost',
+						queues: [{ name: 'otp-queue' }],
+					},
+				},
+			};
+
+			const result = await sendOtp('+5511999999999', undefined, '123456', 'test-user-id', mockOtpRequest.expiresAt);
+
+			expect(mockSendOtpViaWhatsApp).toHaveBeenCalled();
+			expect(mockSendMessage).toHaveBeenCalled();
+			expect(result.success).toBe(true);
+			expect(result.method).toBe('rabbitmq');
+		});
+
+		it('should return error if all delivery methods fail', async () => {
+			mockSendOtpViaWhatsApp.mockResolvedValue({ success: false, error: 'WhatsApp error' });
+			(queueManager.sendMessage as any) = vi.fn().mockResolvedValue({ success: false });
+			(MetaObject.Collections.Message.insertOne as any) = vi.fn().mockRejectedValue(new Error('Email error'));
+
+			const result = await sendOtp('+5511999999999', undefined, '123456', 'test-user-id', mockOtpRequest.expiresAt);
+
+			expect(result.success).toBe(false);
+			expect(result.error).toContain('All delivery methods failed');
+		});
+
+		it('should handle user without email gracefully', async () => {
+			mockSendOtpViaWhatsApp.mockResolvedValue({ success: false, error: 'WhatsApp error' });
+			(queueManager.sendMessage as any) = vi.fn().mockResolvedValue({ success: false });
+
+			(MetaObject.Collections.User.findOne as any) = vi.fn().mockResolvedValue({
+				...mockUser,
+				emails: [],
+			});
+
+			const result = await sendOtp('+5511999999999', undefined, '123456', 'test-user-id', mockOtpRequest.expiresAt);
+
+			expect(result.success).toBe(false);
+			expect(result.error).toContain('User does not have an email address');
+		});
+
+		it('should send directly via email when requested by email', async () => {
+			(MetaObject.Collections.Message.insertOne as any) = vi.fn().mockResolvedValue({});
+
+			const result = await sendOtp(undefined, 'user@example.com', '123456', 'test-user-id', mockOtpRequest.expiresAt);
+
+			expect(mockSendOtpViaWhatsApp).not.toHaveBeenCalled();
+			expect(MetaObject.Collections.Message.insertOne).toHaveBeenCalled();
+			expect(result.success).toBe(true);
+			expect(result.method).toBe('email');
+		});
+	});
+});