fix: throw trpc error if unable to delete

seaerchin · seaerchin · commit 966ffc298571 · 2025-11-25T19:24:19.000+09:00
since we pass all the checks, if we can't delete the token, we just
throw a trpc error to feedabck to the user
diff --git a/apps/web/src/server/modules/auth/auth.service.ts b/apps/web/src/server/modules/auth/auth.service.ts
@@ -119,9 +119,19 @@ export const emailVerifyOtp = async ({
       .deleteFrom('VerificationToken')
       .where('identifier', '=', vfnIdentifier)
       .returningAll()
-      .executeTakeFirstOrThrow()
+      .executeTakeFirstOrThrow(
+        // NOTE: If we are unable to find the token,
+        // this means that it has been deleted between
+        // our initial query and the deletion here
+        () =>
+          new TRPCError({
+            code: 'BAD_REQUEST',
+            message:
+              'Token is invalid or has expired. Please request a new OTP.',
+          }),
+      )
   } catch (error) {
-    // see error code here: https://www.prisma.io/docs/reference/api-reference/error-reference#p2025
+    // see error code here: https://www.prisma.io/docs/orm/reference/error-reference#p2025
     if (
       error instanceof Prisma.PrismaClientKnownRequestError &&
       error.code === 'P2025'
