Updated Account Form

Author: niemyjski

src/Exceptionless.Web/ClientApp/src/lib/features/shared/validation.ts

@@ -1,6 +1,6 @@
 import { ProblemDetails } from '@exceptionless/fetchclient';
 import { validate as classValidate } from 'class-validator';
-import { type FormPathLeavesWithErrors, setError, setMessage, type SuperValidated } from 'sveltekit-superforms';
+import { type ErrorStatus, type FormPathLeavesWithErrors, setError, setMessage, type SuperValidated } from 'sveltekit-superforms';
 
 export async function validate(data: null | object): Promise<null | ProblemDetails> {
     if (data === null) {
@@ -27,12 +27,12 @@ export function applyServerSideErrors<T extends Record<string, unknown> = Record
     problem: null | ProblemDetails
 ) {
     if (!problem || problem.status !== 422) {
-        setMessage(form, 'An error occurred. Please try again.' as M);
+        setMessage(form, problem?.title as M, { status: (problem?.status as ErrorStatus) ?? 500 });
         return;
     }
 
     for (const key in problem.errors) {
         const errors = problem.errors[key] as string[];
-        setError(form, key as FormPathLeavesWithErrors<T>, errors);
+        setError(form, key as FormPathLeavesWithErrors<T>, errors, { status: (problem?.status as ErrorStatus) ?? 500 });
     }
 }

src/Exceptionless.Web/ClientApp/src/lib/features/users/api.svelte.ts

@@ -2,11 +2,12 @@ import { accessToken } from '$features/auth/index.svelte';
 import { ProblemDetails, useFetchClient } from '@exceptionless/fetchclient';
 import { createMutation, createQuery, useQueryClient } from '@tanstack/svelte-query';
 
-import { type UpdateUser, User } from './models';
+import { UpdateEmailAddressResult, type UpdateUser, User } from './models';
 
 export const queryKeys = {
     all: ['User'] as const,
     id: (id: string | undefined) => [...queryKeys.all, id] as const,
+    idEmailAddress: (id?: string) => [...queryKeys.id(id), 'email-address'] as const,
     me: () => [...queryKeys.all, 'me'] as const
 };
 
@@ -30,6 +31,35 @@ export function getMeQuery() {
         queryKey: queryKeys.me()
     }));
 }
+export interface UpdateEmailAddressProps {
+    id: string | undefined;
+}
+
+export function mutateEmailAddress(props: UpdateEmailAddressProps) {
+    const queryClient = useQueryClient();
+    return createMutation<UpdateEmailAddressResult, ProblemDetails, Pick<User, 'email_address'>>(() => ({
+        enabled: () => !!accessToken.value && !!props.id,
+        mutationFn: async (data: Pick<User, 'email_address'>) => {
+            const client = useFetchClient();
+            const response = await client.postJSON<UpdateEmailAddressResult>(`users/${props.id}/email-address/${data.email_address}`);
+            return response.data!;
+        },
+        mutationKey: queryKeys.idEmailAddress(props.id),
+        onSuccess: (data, variables) => {
+            const partialUserData: User = { email_address: variables.email_address, is_email_address_verified: data.is_verified };
+
+            const user = queryClient.getQueryData<User>(queryKeys.id(props.id));
+            if (user) {
+                queryClient.setQueryData(queryKeys.id(props.id), <User>{ ...user, ...partialUserData });
+            }
+
+            const currentUser = queryClient.getQueryData<User>(queryKeys.me());
+            if (currentUser?.id === props.id) {
+                queryClient.setQueryData(queryKeys.me(), <User>{ ...currentUser, ...partialUserData });
+            }
+        }
+    }));
+}
 
 export interface UpdateUserProps {
     id: string | undefined;

src/Exceptionless.Web/ClientApp/src/lib/features/users/models.ts

@@ -1,6 +1,6 @@
 import { IsOptional } from 'class-validator';
 
-export { User } from '$generated/api';
+export { UpdateEmailAddressResult, User } from '$generated/api';
 
 export class UpdateUser {
     @IsOptional() email_notifications_enabled?: boolean;

src/Exceptionless.Web/ClientApp/src/routes/(app)/account/manage/+page.svelte

@@ -1,35 +1,64 @@
 <script lang="ts">
     import ErrorMessage from '$comp/ErrorMessage.svelte';
     import Loading from '$comp/Loading.svelte';
-    import { H3, Muted } from '$comp/typography';
+    import { A, H3, Muted, Small } from '$comp/typography';
     import * as Avatar from '$comp/ui/avatar';
     import * as Form from '$comp/ui/form';
     import { Input } from '$comp/ui/input';
     import { Separator } from '$comp/ui/separator';
     import { applyServerSideErrors } from '$features/shared/validation';
-    import { getMeQuery, mutateUser } from '$features/users/api.svelte';
+    import { getMeQuery, mutateEmailAddress, mutateUser } from '$features/users/api.svelte';
     import { getGravatarFromCurrentUser } from '$features/users/gravatar.svelte';
-    import { UpdateUser } from '$features/users/models';
-    import { ProblemDetails } from "@exceptionless/fetchclient";
+    import { UpdateUser, User } from '$features/users/models';
+    import { ProblemDetails, useFetchClient } from '@exceptionless/fetchclient';
     import { toast } from 'svelte-sonner';
     import { defaults, superForm } from 'sveltekit-superforms';
-    import SuperDebug from 'sveltekit-superforms';
     import { classvalidatorClient } from 'sveltekit-superforms/adapters';
     import { debounce } from 'throttle-debounce';
 
-    let toastId = $state<number|string>();
+    let toastId = $state<number | string>();
     const userResponse = getMeQuery();
+    const isEmailAddressVerified = $derived(userResponse.data?.is_email_address_verified ?? false);
     const gravatar = getGravatarFromCurrentUser(userResponse);
     const updateUser = mutateUser({
         get id() {
             return userResponse.data?.id;
         }
     });
+    const updateEmailAddress = mutateEmailAddress({
+        get id() {
+            return userResponse.data?.id;
+        }
+    });
+
+    const updateEmailAddressForm = superForm(defaults(userResponse.data ?? {}, classvalidatorClient(User)), {
+        id: 'update-email-address',
+        async onUpdate({ form, result }) {
+            if (!form.valid) {
+                return;
+            }
 
-    const form = superForm(defaults(userResponse.data ?? {}, classvalidatorClient(UpdateUser)), {
-        onError() {
-            toastId = toast.error('An error occurred while saving your full name.');
+            toast.dismiss(toastId);
+            try {
+                await updateEmailAddress.mutateAsync(form.data);
+                toastId = toast.success('Account updated successfully.');
+
+                // HACK: This is to prevent sveltekit from stealing focus
+                result.type = 'failure';
+            } catch (error: unknown) {
+                if (error instanceof ProblemDetails) {
+                    applyServerSideErrors(form, error);
+                    result.status = error.status ?? 500;
+                    toastId = toast.error(form.message ?? 'Error saving email address. Please try again.');
+                }
+            }
         },
+        SPA: true,
+        validators: classvalidatorClient(User)
+    });
+
+    const updateUserForm = superForm(defaults(userResponse.data ?? {}, classvalidatorClient(UpdateUser)), {
+        id: 'update-user',
         async onUpdate({ form, result }) {
             if (!form.valid) {
                 return;
@@ -39,27 +68,65 @@
             try {
                 form.data = await updateUser.mutateAsync(form.data);
                 toastId = toast.success('Account updated successfully.');
+
+                // HACK: This is to prevent sveltekit from stealing focus
+                result.type = 'failure';
             } catch (error: unknown) {
                 if (error instanceof ProblemDetails) {
-                    result.status = error.status ?? 500;
                     applyServerSideErrors(form, error);
+                    result.status = error.status ?? 500;
+                    toastId = toast.error(form.message ?? 'Error saving full name. Please try again.');
                 }
-
-                throw error;
             }
         },
         SPA: true,
         validators: classvalidatorClient(UpdateUser)
     });
 
     $effect(() => {
-        if (userResponse.isSuccess && !$submitting) {
-            form.reset({ data: userResponse.data });
+        if (!userResponse.isSuccess) {
+            return;
+        }
+
+        if (!$updateEmailAddressFormSubmitting && !$updateEmailAddressFormTainted) {
+            updateEmailAddressForm.reset({ data: userResponse.data, keepMessage: true });
+        }
+
+        if (!$updateUserFormSubmitting && !$updateUserFormTainted) {
+            updateUserForm.reset({ data: userResponse.data, keepMessage: true });
         }
     });
 
-    const { enhance, form: formData, message, submit, submitting, tainted } = form;
-    const debouncedSubmit = debounce(1000, submit);
+    const {
+        enhance: updateEmailAddressFormEnhance,
+        form: updateEmailAddressFormData,
+        message: updateEmailAddressFormMessage,
+        submit: updateEmailAddressFormSubmit,
+        submitting: updateEmailAddressFormSubmitting,
+        tainted: updateEmailAddressFormTainted
+    } = updateEmailAddressForm;
+    const debouncedUpdateEmailAddressFormSubmit = debounce(1000, updateEmailAddressFormSubmit);
+
+    const {
+        enhance: updateUserFormEnhance,
+        form: updateUserFormData,
+        message: updateUserFormMessage,
+        submit: updateUserFormSubmit,
+        submitting: updateUserFormSubmitting,
+        tainted: updateUserFormTainted
+    } = updateUserForm;
+    const debouncedUpdatedUserFormSubmit = debounce(1000, updateUserFormSubmit);
+
+    async function resendVerificationEmail() {
+        toast.dismiss(toastId);
+        const client = useFetchClient();
+        try {
+            await client.get(`users/${userResponse.data?.id}/resend-verification-email`);
+            toastId = toast.success('Please check your inbox for the verification email.');
+        } catch {
+            toastId = toast.error('Error sending verification email. Please try again.');
+        }
+    }
 </script>
 
 <div class="space-y-6">
@@ -79,32 +146,45 @@
     </Avatar.Root>
     <Muted>Your avatar is generated by requesting a Gravatar image with the email address below.</Muted>
 
-    <SuperDebug data={$tainted} />
-    <SuperDebug data={$formData} />
-    <form use:enhance>
-        <ErrorMessage message={$message}></ErrorMessage>
-        <Form.Field {form} name="full_name">
+    <form use:updateUserFormEnhance>
+        <Form.Field form={updateUserForm} name="full_name">
             <Form.Control let:attrs>
                 <Form.Label>Full Name</Form.Label>
-                <Input {...attrs} bind:value={$formData.full_name} placeholder="Full Name" autocomplete="name" required oninput={debouncedSubmit} />
+                <Input
+                    {...attrs}
+                    bind:value={$updateUserFormData.full_name}
+                    placeholder="Full Name"
+                    autocomplete="name"
+                    required
+                    oninput={debouncedUpdatedUserFormSubmit}
+                />
             </Form.Control>
             <Form.Description />
             <Form.FieldErrors />
+            <ErrorMessage message={$updateUserFormMessage}></ErrorMessage>
         </Form.Field>
-        <!-- <Form.Field {form} name="email_address">
+    </form>
+    <form use:updateEmailAddressFormEnhance>
+        <Form.Field form={updateEmailAddressForm} name="email_address">
             <Form.Control let:attrs>
                 <Form.Label>Email</Form.Label>
-                <Input {...attrs} bind:value={$formData.email_address} placeholder="Enter email address" autocomplete="email" required />
+                <Input
+                    {...attrs}
+                    bind:value={$updateEmailAddressFormData.email_address}
+                    placeholder="Enter email address"
+                    autocomplete="email"
+                    required
+                    oninput={debouncedUpdateEmailAddressFormSubmit}
+                />
             </Form.Control>
             <Form.Description />
             <Form.FieldErrors />
-        </Form.Field> -->
-        <!-- <Form.Button>
-            {#if $submitting}
-                <Loading class="mr-2" variant="secondary"></Loading> Saving...
-            {:else}
-                Save
-            {/if}
-        </Form.Button> -->
+            <ErrorMessage message={$updateEmailAddressFormMessage}></ErrorMessage>
+        </Form.Field>
     </form>
+    {#if !isEmailAddressVerified}
+        <Small>
+            Email not verified. <A class="cursor-pointer" onclick={resendVerificationEmail}>Resend</A> verification email.
+        </Small>
+    {/if}
 </div>

src/Exceptionless.Web/ClientApp/src/routes/(auth)/login/+page.svelte

@@ -34,7 +34,7 @@
     const defaultFormData = new Login();
     defaultFormData.invite_token = $page.url.searchParams.get('token');
     const form = superForm(defaults(defaultFormData, classvalidatorClient(Login)), {
-        async onUpdate({ form }) {
+        async onUpdate({ form, result }) {
             if (!form.valid) {
                 return;
             }
@@ -44,6 +44,7 @@
                 await goto(redirectUrl);
             } else {
                 applyServerSideErrors(form, response.problem);
+                result.status = response.problem.status ?? 500;
             }
         },
         SPA: true,

src/Exceptionless.Web/Controllers/Base/ExceptionlessApiController.cs

@@ -196,24 +196,30 @@ protected ObjectResult BadRequest(ModelActionResults results)
     {
         return StatusCode(StatusCodes.Status400BadRequest, results);
     }
+
     protected StatusCodeResult Forbidden()
     {
         return StatusCode(StatusCodes.Status403Forbidden);
     }
 
     protected ObjectResult Forbidden(string message)
     {
-        return StatusCode(StatusCodes.Status403Forbidden, new MessageContent(message));
+        return Problem(statusCode: StatusCodes.Status403Forbidden, title: message);
     }
 
     protected ObjectResult PlanLimitReached(string message)
     {
-        return StatusCode(StatusCodes.Status426UpgradeRequired, new MessageContent(message));
+        return Problem(statusCode: StatusCodes.Status426UpgradeRequired, title: message);
+    }
+
+    protected ObjectResult TooManyRequests(string message)
+    {
+        return Problem(statusCode: StatusCodes.Status429TooManyRequests, title: message);
     }
 
     protected ObjectResult NotImplemented(string message)
     {
-        return StatusCode(StatusCodes.Status501NotImplemented, new MessageContent(message));
+        return Problem(statusCode: StatusCodes.Status501NotImplemented, title: message);
     }
 
     protected OkWithHeadersContentResult<T> OkWithLinks<T>(T content, string link)

src/Exceptionless.Web/Controllers/UserController.cs

@@ -14,6 +14,7 @@
 using Foundatio.Repositories;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.ModelBinding;
 
 namespace Exceptionless.Web.Controllers;
 
@@ -136,7 +137,7 @@ public Task<ActionResult<WorkInProgressResult>> DeleteCurrentUserAsync()
     /// <summary>
     /// Remove
     /// </summary>
-    /// <param name="ids">A comma delimited list of user identifiers.</param>
+    /// <param name="ids">A comma-delimited list of user identifiers.</param>
     /// <response code="204">No Content.</response>
     /// <response code="400">One or more validation errors occurred.</response>
     /// <response code="404">One or more users were not found.</response>
@@ -155,7 +156,8 @@ public Task<ActionResult<WorkInProgressResult>> DeleteAsync(string ids)
     /// <param name="id">The identifier of the user.</param>
     /// <param name="email">The new email address.</param>
     /// <response code="400">An error occurred while updating the users email address.</response>
-    /// <response code="404">The user could not be found.</response>
+    /// <response code="422">Validation error</response>
+    /// <response code="429">Update email address rate limit reached.</response>
     [HttpPost("{id:objectid}/email-address/{email:minlength(1)}")]
     public async Task<ActionResult<UpdateEmailAddressResult>> UpdateEmailAddressAsync(string id, string email)
     {
@@ -173,10 +175,13 @@ public async Task<ActionResult<UpdateEmailAddressResult>> UpdateEmailAddressAsyn
         string updateEmailAddressAttemptsCacheKey = $"{CurrentUser.Id}:attempts";
         long attempts = await _cache.IncrementAsync(updateEmailAddressAttemptsCacheKey, 1, _timeProvider.GetUtcNow().UtcDateTime.Ceiling(TimeSpan.FromHours(1)));
         if (attempts > 3)
-            return BadRequest("Update email address rate limit reached. Please try updating later.");
+            return TooManyRequests("Unable to update email address. Please try later.");
 
         if (!await IsEmailAddressAvailableInternalAsync(email))
-            return BadRequest("A user with this email address already exists.");
+        {
+            ModelState.AddModelError<User>(m => m.EmailAddress, "A user already exists with this email address.");
+            return ValidationProblem(ModelState);
+        }
 
         user.ResetPasswordResetToken();
         user.EmailAddress = email;
@@ -199,7 +204,7 @@ public async Task<ActionResult<UpdateEmailAddressResult>> UpdateEmailAddressAsyn
         if (!user.IsEmailAddressVerified)
             await ResendVerificationEmailAsync(id);
 
-        // TODO: We may want to send an email to old email addresses as well.
+        // TODO: We may want to send email to old email addresses as well.
         return Ok(new UpdateEmailAddressResult { IsVerified = user.IsEmailAddressVerified });
     }