till/managarten
1
0
Fork 0
mirror of https://github.com/Memo-2023/mana-monorepo.git synced 2026-05-22 03:02:12 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 5

fix(auth): surface email-not-verified error and detect needsVerification on signup

Browse source 
- mana-auth login route: catch Better Auth's email verification error and
  return 403 EMAIL_NOT_VERIFIED instead of 401 Invalid credentials
- shared-auth signUp: detect emailVerified:false in register response and
  return needsVerification:true so the UI shows the verification prompt
- shared-auth-ui LoginPage: map INVALID_CREDENTIALS error code to friendly message
- shared-i18n: add invalidCredentials translation (de/en)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Till JS 2026-03-31 17:52:47 +02:00
parent 999c54a5a1
commit b1af506b99
5 changed files with 15 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

8
services/mana-auth/src/routes/auth.ts
View file

@ -131,6 +131,14 @@ export function createAuthRoutes(
return c.json(response);
} catch (error) {
// Check if Better Auth rejected login due to unverified email
const errorMessage = error instanceof Error ? error.message : String(error);
const isEmailNotVerified =
errorMessage.includes('email') && errorMessage.toLowerCase().includes('verif');
if (isEmailNotVerified) {
return c.json({ error: 'Email not verified', code: 'EMAIL_NOT_VERIFIED' }, 403);
}
security.logEvent({
eventType: 'LOGIN_FAILURE',
ipAddress: ip,