Returning Object instead of String, DTO Added

Author: MonuChaudhary14

src/main/java/org/spacehub/DTO/EmailRequest.java

@@ -0,0 +1,10 @@
+package org.spacehub.DTO;
+
+import lombok.Data;
+
+@Data
+public class EmailRequest {
+
+    private String email;
+
+}

src/main/java/org/spacehub/DTO/LoginRequest.java

@@ -0,0 +1,11 @@
+package org.spacehub.DTO;
+
+import lombok.Data;
+
+@Data
+public class LoginRequest {
+
+    private String email;
+    private String password;
+
+}

src/main/java/org/spacehub/DTO/OTPRequest.java

@@ -0,0 +1,11 @@
+package org.spacehub.DTO;
+
+import lombok.Data;
+
+@Data
+public class OTPRequest {
+
+    private String email;
+    private String otp;
+
+}

src/main/java/org/spacehub/controller/UserController.java

@@ -1,17 +1,20 @@
 package org.spacehub.controller;
 
+import org.spacehub.DTO.EmailRequest;
+import org.spacehub.DTO.LoginRequest;
+import org.spacehub.DTO.OTPRequest;
+import org.spacehub.entities.ApiResponse;
 import org.spacehub.entities.User;
 import org.spacehub.entities.RegistrationRequest;
 import org.spacehub.security.EmailValidator;
 import org.spacehub.service.OTPService;
+import org.spacehub.service.UserService;
 import org.spacehub.service.VerificationService;
 import org.spacehub.service.RegistrationService;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.http.ResponseEntity;
-import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestBody;
-import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RestController;
 
@@ -26,68 +29,86 @@ public class UserController {
   @Autowired
   private OTPService otpService;
 
+  @Autowired
+  private UserService userService;
+
   public UserController(VerificationService verificationService, RegistrationService registrationService, EmailValidator emailValidator) {
     this.verificationService = verificationService;
     this.registrationService = registrationService;
     this.emailValidator = emailValidator;
   }
 
   @PostMapping("/login")
-  public ResponseEntity<String> login(@RequestBody User user) {
-    String email = emailValidator.normalize(user.getEmail());
+  public ResponseEntity<ApiResponse<String>> login(@RequestBody LoginRequest request) {
+    String email = emailValidator.normalize(request.getEmail());
     if (!emailValidator.test(email)) {
-      return ResponseEntity.badRequest().body("Invalid email format!");
+      return ResponseEntity.badRequest().body(new ApiResponse<>(400, "Invalid email format!", null));
     }
+
+    User user = new User();
     user.setEmail(email);
+    user.setPassword(request.getPassword());
+
     String token = verificationService.check(user);
-    if (token == null) return ResponseEntity.status(401).body("Invalid credentials");
-    return ResponseEntity.ok(token);
+    if (token == null) {
+      return ResponseEntity.status(401).body(new ApiResponse<>(401, "Invalid credentials", null));
+    }
+    return ResponseEntity.ok(new ApiResponse<>(200, "Login successful", token));
   }
 
   @PostMapping("/registration")
-  public ResponseEntity<String> register(@RequestBody RegistrationRequest request) {
+  public ResponseEntity<ApiResponse<String>> register(@RequestBody RegistrationRequest request) {
     String email = emailValidator.normalize(request.getEmail());
     if (!emailValidator.test(email)) {
-      return ResponseEntity.badRequest().body("Invalid email format!");
+      return ResponseEntity.badRequest().body(new ApiResponse<>(400, "Invalid email format!", null));
     }
     request.setEmail(email);
     try {
-      String result = registrationService.register(request);
-      return ResponseEntity.status(201).body(result);
-    } catch (IllegalStateException ex) {
-      return ResponseEntity.badRequest().body(ex.getMessage());
-    } catch (Exception ex) {
-      return ResponseEntity.internalServerError().body("Registration failed");
+      String token = registrationService.register(request);
+      return ResponseEntity.status(201).body(new ApiResponse<>(201, "Registration successful", token));
+    } catch (IllegalStateException e) {
+      return ResponseEntity.badRequest().body(new ApiResponse<>(400, e.getMessage(), null));
+    } catch (Exception e) {
+      return ResponseEntity.internalServerError().body(new ApiResponse<>(500, "Registration failed", null));
     }
   }
 
-  @GetMapping("/sendotp")
-  public ResponseEntity<String> sendOTP(@RequestParam(required = false) String email) {
-    email = emailValidator.normalize(email);
+  @PostMapping("/sendotp")
+  public ResponseEntity<ApiResponse<String>> sendOTP(@RequestBody EmailRequest request) {
+    String email = emailValidator.normalize(request.getEmail());
     if (email == null || !emailValidator.test(email)) {
-      return ResponseEntity.badRequest().body("Invalid or missing email!");
+      return ResponseEntity.badRequest().body(new ApiResponse<>(400, "Invalid or missing email!", null));
     }
-    try {
-      boolean allowed = otpService.canSendOTP(email);
-      if (!allowed) {
-        long secondsLeft = otpService.cooldownTime(email);
-        return ResponseEntity.badRequest().body("Please wait " + secondsLeft + " seconds before requesting OTP again.");
-      }
-      otpService.sendOTP(email);
-      return ResponseEntity.ok("OTP sent successfully to " + email);
-    } catch (Exception e) {
-      return ResponseEntity.status(500).body("Error sending OTP: " + e.getMessage());
+    if (!otpService.canSendOTP(email)) {
+      long secondsLeft = otpService.cooldownTime(email);
+      return ResponseEntity.badRequest().body(new ApiResponse<>(400, "Please wait " + secondsLeft + " seconds before requesting OTP again.", null));
     }
+    otpService.sendOTP(email);
+    return ResponseEntity.ok(new ApiResponse<>(200, "OTP sent successfully to " + email, null));
   }
 
-  @GetMapping("/validateotp")
-  public ResponseEntity<String> validateOTP(@RequestParam String otp) {
-    boolean valid = otpService.validateOTP(otp);
+  @PostMapping("/validateotp")
+  public ResponseEntity<ApiResponse<String>> validateOTP(@RequestBody OTPRequest request) {
+    boolean valid = otpService.validateOTP(request.getEmail(), request.getOtp());
     if (valid) {
-      return ResponseEntity.ok("OTP is valid");
+      return ResponseEntity.ok(new ApiResponse<>(200, "OTP is valid", null));
     } else {
-      return ResponseEntity.status(400).body("OTP is invalid or expired");
+      return ResponseEntity.status(400).body(new ApiResponse<>(400, "OTP is invalid or expired", null));
+    }
+  }
+
+  @PostMapping("/forgotpassword")
+  public ResponseEntity<ApiResponse<String>> forgotPassword(@RequestBody EmailRequest request) {
+    String email = emailValidator.normalize(request.getEmail());
+    if (email == null || !emailValidator.test(email)) {
+      return ResponseEntity.badRequest().body(new ApiResponse<>(400, "Invalid email format!", null));
     }
+    if (!userService.checkUser(email)) {
+      return ResponseEntity.badRequest().body(new ApiResponse<>(400, "User with this email does not exist", null));
+    }
+    otpService.sendOTP(email);
+    return ResponseEntity.ok(new ApiResponse<>(200, "OTP sent to your email", null));
   }
 
+
 }

src/main/java/org/spacehub/entities/ApiResponse.java

@@ -0,0 +1,16 @@
+package org.spacehub.entities;
+
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+@Data
+@NoArgsConstructor
+@AllArgsConstructor
+public class ApiResponse<T> {
+
+    private int status;
+    private String message;
+    private T data;
+
+}

src/main/java/org/spacehub/entities/MobileSmsRequest.java

@@ -0,0 +1,31 @@
+package org.spacehub.entities;
+
+import jakarta.persistence.*;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+import java.time.Instant;
+
+@Data
+@NoArgsConstructor
+@Entity
+@Table(name = "otps")
+public class OTP {
+
+    @Id
+    @GeneratedValue(strategy = GenerationType.IDENTITY)
+    private Long id;
+
+    @Column(nullable = false)
+    private String email;
+
+    @Column(nullable = false)
+    private String code;
+
+    @Column(nullable = false)
+    private Instant createdAt;
+
+    @Column(nullable = false)
+    private Instant expiresAt;
+
+}

src/main/java/org/spacehub/entities/OTP.java

@@ -43,8 +43,8 @@ public class User implements UserDetails {
   private String password;
   @Enumerated(EnumType.STRING)
   private UserRole userRole;
-  private Boolean locked = false; // Determine if account is locked
-  private Boolean enabled = false; // For after email verification
+  private Boolean locked = false;
+  private Boolean enabled = false;
 
   public User(String firstName,
                  String lastName,

src/main/java/org/spacehub/entities/User.java

@@ -0,0 +1,15 @@
+package org.spacehub.repository;
+
+import org.spacehub.entities.OTP;
+import org.springframework.data.jpa.repository.JpaRepository;
+import org.springframework.stereotype.Repository;
+
+import java.util.Optional;
+
+@Repository
+public interface OTPRepository extends JpaRepository<OTP, Long> {
+
+    Optional<OTP> findTopByEmail(String email);
+
+    Optional<OTP> findByEmailAndCode(String email, String code);
+}

src/main/java/org/spacehub/repository/OTPRepository.java

@@ -1,13 +1,15 @@
 package org.spacehub.service;
 
+import org.spacehub.entities.OTP;
+import org.spacehub.repository.OTPRepository;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mail.SimpleMailMessage;
 import org.springframework.mail.javamail.JavaMailSender;
 import org.springframework.stereotype.Service;
 
+import java.time.Duration;
 import java.time.Instant;
-import java.util.HashMap;
-import java.util.Map;
+import java.util.Optional;
 import java.util.Random;
 
 @Service
@@ -16,10 +18,10 @@ public class OTPService {
     @Autowired
     private JavaMailSender mailSender;
 
-    private final String DEFAULT_EMAIL = "[email protected]";
-    private final Map<String, String> otpMap = new HashMap<>();
-    private final Map<String, Instant> sendTimeMap = new HashMap<>();
+    @Autowired
+    private OTPRepository otpRepository;
 
+    private final String DEFAULT_EMAIL = "[email protected]";
     private static final int expirySeconds = 300;
     private static final int cooldownSeconds = 60;
 
@@ -29,35 +31,43 @@ public void sendOTP(String email) {
         }
 
         int num = new Random().nextInt(1000000);
-        String otp = String.format("%06d", num);
+        String otpCode = String.format("%06d", num);
+        Instant now = Instant.now();
 
-        otpMap.put(email, otp);
-        sendTimeMap.put(email, Instant.now());
+        OTP otp = new OTP();
+        otp.setEmail(email);
+        otp.setCode(otpCode);
+        otp.setCreatedAt(now);
+        otp.setExpiresAt(now.plusSeconds(expirySeconds));
+
+        otpRepository.save(otp);
 
         SimpleMailMessage message = new SimpleMailMessage();
         message.setFrom(DEFAULT_EMAIL);
         message.setTo(email);
         message.setSubject("OTP Verification");
-        message.setText("Your OTP is: " + otp);
+        message.setText("Your OTP is: " + otpCode); // send the code, not the OTP object
 
         mailSender.send(message);
     }
 
-    public boolean validateOTP(String otp) {
-        return otpMap.containsValue(otp);
+    public boolean validateOTP(String email, String otpCode) {
+        Optional<OTP> otpOptional = otpRepository.findByEmailAndCode(email, otpCode);
+        return otpOptional.map(otp -> Instant.now().isBefore(otp.getExpiresAt())).orElse(false);
     }
 
     public boolean canSendOTP(String email) {
-        Instant lastSent = sendTimeMap.get(email);
-        if (lastSent == null) return true;
-        return Instant.now().isAfter(lastSent.plusSeconds(cooldownSeconds));
+        Optional<OTP> lastOtp = otpRepository.findTopByEmail(email);
+        return lastOtp.map(otp -> Duration.between(otp.getCreatedAt(), Instant.now()).getSeconds() >= cooldownSeconds)
+                .orElse(true);
     }
 
-
     public long cooldownTime(String email) {
-        Instant lastSent = sendTimeMap.get(email);
-        if (lastSent == null) return 0;
-        long diff = Instant.now().getEpochSecond() - lastSent.getEpochSecond();
-        return Math.max(0, cooldownSeconds - diff);
+        Optional<OTP> lastOtp = otpRepository.findTopByEmail(email);
+        return lastOtp.map(otp -> {
+                    long elapsed = Duration.between(otp.getCreatedAt(), Instant.now()).getSeconds();
+                    return Math.max(0, cooldownSeconds - elapsed);
+                })
+                .orElse(0L);
     }
 }