ai-workspace-services/portal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: refine registration UX and migrate middleware CORS

Browse Source
This commit is contained in:
Haitao Pan 2026-01-25 12:02:06 +08:00
parent fee51ac323
commit caa658cabb
5 changed files with 374 additions and 648 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
frontend.log Normal file
View File

Binary file not shown.

14
next.config.mjs
View File

@ -62,6 +62,20 @@ const nextConfig = {
return config;
},
async headers() {
return [
{
source: "/api/:path*",
headers: [
{ key: "Access-Control-Allow-Credentials", value: "true" },
{ key: "Access-Control-Allow-Origin", value: process.env.CORS_ALLOWED_ORIGINS || "https://console.svc.plus,http://localhost:3000" },
{ key: "Access-Control-Allow-Methods", value: "GET,POST,PUT,PATCH,DELETE,OPTIONS" },
{ key: "Access-Control-Allow-Headers", value: "Content-Type, Authorization, X-Requested-With, X-Account-Session" },
],
},
];
},
reactStrictMode: true,
typedRoutes: false,
turbopack: {

590
src/app/(auth)/register/RegisterContent.tsx
View File

@ -28,6 +28,7 @@ const VERIFICATION_CODE_LENGTH = 6
const RESEND_COOLDOWN_SECONDS = 60
const EMAIL_PATTERN = /^[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}$/
const PASSWORD_STRENGTH_PATTERN = /^(?=.*[A-Za-z])(?=.*\d).{8,}$/
const USERNAME_PATTERN = /^[a-zA-Z][a-zA-Z0-9]{3,15}$/
export default function RegisterContent() {
const { language } = useLanguage()
@ -118,19 +119,22 @@ export default function RegisterContent() {
const [alert, setAlert] = useState<AlertState | null>(initialAlert)
const [isSubmitting, setIsSubmitting] = useState(false)
// Wizard Step State: 0 = Info, 1 = Verification, 2 = Success (Processing/Redirecting)
const [currentStep, setCurrentStep] = useState<0 | 1 | 2>(0)
const [codeDigits, setCodeDigits] = useState<string[]>(() => Array(VERIFICATION_CODE_LENGTH).fill(''))
const [hasRequestedCode, setHasRequestedCode] = useState(false)
const [pendingEmail, setPendingEmail] = useState('')
const [pendingPassword, setPendingPassword] = useState('')
const [isResending, setIsResending] = useState(false)
const [resendCooldown, setResendCooldown] = useState(0)
const [isVerified, setIsVerified] = useState(false)
const [isResending, setIsResending] = useState(false)
const [formValues, setFormValues] = useState({
username: '',
email: '',
password: '',
confirmPassword: '',
agreement: false,
})
const [isFormReady, setIsFormReady] = useState(false)
const formRef = useRef<HTMLFormElement | null>(null)
const codeInputRefs = useRef<(HTMLInputElement | null)[]>([])
@ -168,7 +172,7 @@ export default function RegisterContent() {
}, [])
const handleInputChange = useCallback(
(field: 'email' | 'password' | 'confirmPassword') =>
(field: 'username' | 'email' | 'password' | 'confirmPassword') =>
(event: ChangeEvent<HTMLInputElement>) => {
const { value } = event.target
setFormValues((previous) => ({ ...previous, [field]: value }))
@ -191,6 +195,13 @@ export default function RegisterContent() {
if (sanitized && index < VERIFICATION_CODE_LENGTH - 1) {
focusCodeInput(index + 1)
} else if (sanitized && index === VERIFICATION_CODE_LENGTH - 1) {
// Auto-submit when the last digit is entered
// We use a timeout to let the state update first
setTimeout(() => {
const form = formRef.current
if (form) form.requestSubmit()
}, 100)
}
},
[focusCodeInput],
@ -249,32 +260,6 @@ export default function RegisterContent() {
[focusCodeInput],
)
const handleSubmit = useCallback(
async (event: FormEvent<HTMLFormElement>) => {
event.preventDefault()
if (isSubmitting) {
return
}
formRef.current = event.currentTarget
const formData = new FormData(event.currentTarget)
const emailInput = String(formData.get('email') ?? '').trim()
const normalizedEmail = emailInput.toLowerCase()
const password = String(formData.get('password') ?? '')
const confirmPassword = String(formData.get('confirmPassword') ?? '')
const agreementAccepted = formData.get('agreement') === 'on'
const verificationCode = codeDigits.join('')
setFormValues((previous) => ({
...previous,
email: emailInput,
password,
confirmPassword,
agreement: agreementAccepted,
}))
const showError = (message: string) => {
setAlert({ type: 'error', message })
}
@ -283,8 +268,16 @@ export default function RegisterContent() {
setAlert({ type: 'info', message })
}
if (!hasRequestedCode) {
if (!emailInput || !EMAIL_PATTERN.test(emailInput)) {
// Step 1: Request Verification Code
const handleRequestVerification = async () => {
const { username, email, password, confirmPassword, agreement } = formValues
if (!username.trim() || !USERNAME_PATTERN.test(username.trim())) {
showError(alerts.invalidName ?? alerts.missingFields)
return
}
if (!email || !EMAIL_PATTERN.test(email)) {
showError(alerts.invalidEmail)
return
}
@ -304,7 +297,7 @@ export default function RegisterContent() {
return
}
if (!agreementAccepted) {
if (!agreement) {
showError(alerts.agreementRequired ?? alerts.missingFields)
return
}
@ -322,10 +315,11 @@ export default function RegisterContent() {
headers: {
'Content-Type': 'application/json',
},
body: JSON.stringify({ email: emailInput }),
body: JSON.stringify({ email: email.trim() }),
})
if (!response.ok) {
// ... (error handling)
let errorCode = 'generic_error'
try {
const data = await response.json()
@ -345,105 +339,36 @@ export default function RegisterContent() {
}
showError(errorMap[normalize(errorCode)] ?? alerts.genericError)
setIsSubmitting(false)
return
}
setPendingEmail(normalizedEmail)
setPendingPassword(password)
setHasRequestedCode(true)
setIsVerified(false)
resetCodeDigits()
focusCodeInput(0)
// Success: Move to Step 2
setCurrentStep(1)
setResendCooldown(RESEND_COOLDOWN_SECONDS)
resetCodeDigits()
const successMessage = alerts.verificationSent ?? alerts.genericError
setAlert({ type: 'success', message: successMessage })
// Focus code input after a short delay for state transition
setTimeout(() => focusCodeInput(0), 100)
} catch (error) {
console.error('Failed to request verification code', error)
showError(alerts.genericError)
} finally {
setIsSubmitting(false)
}
return
}
const emailForVerification = pendingEmail || normalizedEmail
if (!emailForVerification) {
showError(alerts.invalidEmail)
return
}
if (!isVerified) {
// Step 2: Verify Code & Register
const handleCompleteRegistration = async () => {
const verificationCode = codeDigits.join('')
if (verificationCode.length !== VERIFICATION_CODE_LENGTH) {
showError(alerts.codeRequired ?? alerts.invalidCode ?? alerts.missingFields)
return
}
setIsSubmitting(true)
showStatus(
t.form.validation?.verifying ??
t.form.verifying ??
t.form.verifySubmit ??
t.form.submit,
)
try {
const response = await fetch('/api/auth/register/verify', {
method: 'POST',
headers: {
'Content-Type': 'application/json',
},
body: JSON.stringify({ email: emailForVerification, code: verificationCode }),
})
if (!response.ok) {
let errorCode = 'generic_error'
try {
const data = await response.json()
if (typeof data?.error === 'string') {
errorCode = data.error
}
} catch (error) {
console.error('Failed to parse verification response', error)
}
const errorMap: Record<string, string> = {
invalid_request: alerts.genericError,
missing_verification: alerts.codeRequired ?? alerts.missingFields,
invalid_code:
alerts.verificationFailed ?? alerts.invalidCode ?? alerts.genericError,
verification_failed: alerts.verificationFailed ?? alerts.genericError,
account_service_unreachable: alerts.genericError,
}
showError(errorMap[normalize(errorCode)] ?? alerts.genericError)
setIsSubmitting(false)
return
}
setIsVerified(true)
const successMessage = alerts.verificationReady ?? alerts.success
setAlert({ type: 'success', message: successMessage })
} catch (error) {
console.error('Failed to verify email', error)
showError(alerts.genericError)
} finally {
setIsSubmitting(false)
}
return
}
if (!pendingPassword) {
showError(alerts.genericError)
return
}
if (verificationCode.length !== VERIFICATION_CODE_LENGTH) {
showError(alerts.codeRequired ?? alerts.invalidCode ?? alerts.genericError)
return
}
setIsSubmitting(true)
showStatus(
t.form.validation?.completing ??
@ -453,15 +378,17 @@ export default function RegisterContent() {
)
try {
const { username, email, password } = formValues
const registerResponse = await fetch('/api/auth/register', {
method: 'POST',
headers: {
'Content-Type': 'application/json',
},
body: JSON.stringify({
email: emailForVerification,
password: pendingPassword,
confirmPassword: pendingPassword,
name: username.trim(),
email: email.trim(),
password,
code: verificationCode,
}),
})
@ -474,6 +401,7 @@ export default function RegisterContent() {
}
if (!registerResponse.ok || registerData?.success === false) {
// ... (error handling)
const errorCode =
typeof registerData?.error === 'string' ? registerData.error : 'registration_failed'
const errorMap: Record<string, string> = {
@ -495,18 +423,18 @@ export default function RegisterContent() {
}
showError(errorMap[normalize(errorCode)] ?? alerts.genericError)
setIsSubmitting(false)
return
}
// 2. Login
const loginResponse = await fetch('/api/auth/login', {
method: 'POST',
headers: {
'Content-Type': 'application/json',
},
body: JSON.stringify({
email: emailForVerification,
password: pendingPassword,
email: email.trim(),
password,
}),
})
@ -520,69 +448,51 @@ export default function RegisterContent() {
}
if (!loginResponse.ok || !loginData?.success) {
const errorCode = typeof loginData?.error === 'string' ? loginData.error : 'generic_error'
const errorMap: Record<string, string> = {
invalid_credentials: alerts.genericError,
missing_credentials: alerts.missingFields,
account_service_unreachable: alerts.genericError,
authentication_failed: alerts.genericError,
// Login failed but registration succeeded
const successMessage = alerts.registrationComplete ?? alerts.success
setAlert({ type: 'success', message: successMessage })
router.push('/login')
return
}
if (loginData?.needMfa) {
router.push('/login?needMfa=1')
router.refresh()
setIsSubmitting(false)
return
}
showError(errorMap[normalize(errorCode)] ?? alerts.genericError)
setIsSubmitting(false)
return
}
// Success
setCurrentStep(2)
const successMessage = alerts.registrationComplete ?? alerts.success
setAlert({ type: 'success', message: successMessage })
router.push(loginData?.redirectTo || '/')
router.refresh()
} catch (error) {
console.error('Failed to complete registration', error)
showError(alerts.genericError)
} finally {
setIsSubmitting(false)
}
},
[
alerts,
codeDigits,
focusCodeInput,
hasRequestedCode,
isSubmitting,
isVerified,
normalize,
pendingEmail,
pendingPassword,
resetCodeDigits,
router,
t.form,
],
)
}
const handleSubmit = (event: FormEvent<HTMLFormElement>) => {
event.preventDefault()
if (isSubmitting) return
if (currentStep === 0) {
handleRequestVerification()
} else if (currentStep === 1) {
handleCompleteRegistration()
}
}
const handleResend = useCallback(async () => {
if (isResending || resendCooldown > 0 || isVerified) {
return
}
if (isResending || resendCooldown > 0) return
const emailFromFormRaw =
pendingEmail ||
(formRef.current ? String(new FormData(formRef.current).get('email') ?? '').trim() : '')
if (!emailFromFormRaw) {
setAlert({ type: 'error', message: alerts.invalidEmail })
return
}
const emailFromForm = emailFromFormRaw.trim()
const { email } = formValues
if (!email) return
setIsResending(true)
const resendStatusMessage =
@ -593,206 +503,47 @@ export default function RegisterContent() {
try {
const response = await fetch('/api/auth/register/send', {
method: 'POST',
headers: {
'Content-Type': 'application/json',
},
body: JSON.stringify({ email: emailFromForm }),
headers: { 'Content-Type': 'application/json' },
body: JSON.stringify({ email: email.trim() }),
})
if (!response.ok) {
let errorCode = 'generic_error'
try {
const data = await response.json()
if (typeof data?.error === 'string') {
errorCode = data.error
}
} catch (error) {
console.error('Failed to parse resend response', error)
}
const errorMap: Record<string, string> = {
invalid_request: alerts.genericError,
invalid_email: alerts.invalidEmail,
verification_failed: alerts.verificationFailed ?? alerts.genericError,
already_verified: alerts.verificationFailed ?? alerts.genericError,
account_service_unreachable: alerts.genericError,
email_already_exists: alerts.userExists,
}
setAlert({ type: 'error', message: errorMap[normalize(errorCode)] ?? alerts.genericError })
setIsResending(false)
setAlert({ type: 'error', message: alerts.genericError })
return
}
setPendingEmail(emailFromForm.toLowerCase())
setHasRequestedCode(true)
setIsVerified(false)
resetCodeDigits()
focusCodeInput(0)
setResendCooldown(RESEND_COOLDOWN_SECONDS)
const message = alerts.verificationResent ?? alerts.verificationSent ?? 'Verification code resent.'
setAlert({ type: 'success', message })
setIsResending(false)
} catch (error) {
console.error('Failed to resend verification code', error)
setAlert({ type: 'error', message: alerts.genericError })
} finally {
setIsResending(false)
}
}, [
alerts,
focusCodeInput,
isResending,
isVerified,
normalize,
pendingEmail,
resetCodeDigits,
resendCooldown,
t.form.verificationCodeResend,
t.form.verificationCodeResending,
])
}, [alerts, formValues, isResending, resendCooldown, t.form])
// Render Helpers
const aboveForm = t.uuidNote ? (
<div className="rounded-2xl border border-dashed border-sky-200 bg-sky-50/80 px-4 py-3 text-sm text-sky-700">
{t.uuidNote}
</div>
) : null
const isVerificationStep = hasRequestedCode && !isVerified
const submitLabel = isVerified
? isSubmitting
? t.form.completing ?? t.form.completeSubmit ?? t.form.submit
: t.form.completeSubmit ?? t.form.submit
: isVerificationStep
? isSubmitting
? t.form.verifying ?? t.form.verifySubmit ?? t.form.submit
: t.form.verifySubmit ?? t.form.submit
: isSubmitting
? t.form.submitting ?? t.form.submit
: t.form.submit
const submitLabel = useMemo(() => {
if (isSubmitting) {
if (currentStep === 0) return t.form.submitting ?? t.form.submit
return t.form.completing ?? t.form.submit
}
if (currentStep === 0) return '下一步 (获取验证码)'
return t.form.completeSubmit ?? '完成注册'
}, [isSubmitting, currentStep, t.form])
const resendLabel = isResending
? t.form.verificationCodeResending ?? t.form.verificationCodeResend
: resendCooldown > 0
? `${t.form.verificationCodeResend} (${resendCooldown}s)`
: t.form.verificationCodeResend
const verificationDescriptionId = useId()
const validationHints = t.form.validation
const validationState = useMemo(() => {
const messages: string[] = []
if (!isFormReady && validationHints?.initializing) {
return { disabled: true, messages: [validationHints.initializing] }
}
if (isSubmitting) {
if (isVerified) {
messages.push(
validationHints?.completing ??
t.form.completing ??
t.form.completeSubmit ??
t.form.submit,
)
} else if (isVerificationStep) {
messages.push(
validationHints?.verifying ??
t.form.verifying ??
t.form.verifySubmit ??
t.form.submit,
)
} else {
messages.push(validationHints?.submitting ?? t.form.submitting ?? t.form.submit)
}
return { disabled: true, messages }
}
if (!hasRequestedCode) {
const emailValue = formValues.email.trim()
if (!emailValue) {
messages.push(validationHints?.emailMissing ?? alerts.invalidEmail)
} else if (!EMAIL_PATTERN.test(emailValue)) {
messages.push(validationHints?.emailInvalid ?? alerts.invalidEmail)
}
if (!formValues.password) {
messages.push(validationHints?.passwordMissing ?? alerts.missingFields)
}
if (!formValues.confirmPassword) {
messages.push(validationHints?.confirmPasswordMissing ?? alerts.missingFields)
}
if (formValues.password && !PASSWORD_STRENGTH_PATTERN.test(formValues.password)) {
messages.push(validationHints?.passwordWeak ?? alerts.weakPassword ?? alerts.genericError)
}
if (
formValues.password &&
formValues.confirmPassword &&
formValues.password !== formValues.confirmPassword
) {
messages.push(validationHints?.passwordMismatch ?? alerts.passwordMismatch)
}
if (!formValues.agreement) {
messages.push(
validationHints?.agreementRequired ?? alerts.agreementRequired ?? alerts.missingFields,
)
}
const uniqueMessages = Array.from(new Set(messages.filter(Boolean)))
return { disabled: uniqueMessages.length > 0, messages: uniqueMessages }
}
if (!isVerified) {
if (codeDigits.some((digit) => !digit)) {
messages.push(
validationHints?.codeIncomplete ??
alerts.codeRequired ??
alerts.invalidCode ??
alerts.missingFields,
)
}
const uniqueMessages = Array.from(new Set(messages.filter(Boolean)))
return { disabled: uniqueMessages.length > 0, messages: uniqueMessages }
}
if (codeDigits.some((digit) => !digit)) {
messages.push(
validationHints?.codeIncomplete ??
alerts.codeRequired ??
alerts.invalidCode ??
alerts.missingFields,
)
}
if (!pendingPassword) {
messages.push(validationHints?.passwordUnavailable ?? alerts.genericError)
}
const uniqueMessages = Array.from(new Set(messages.filter(Boolean)))
return { disabled: uniqueMessages.length > 0, messages: uniqueMessages }
}, [
alerts,
codeDigits,
formValues,
hasRequestedCode,
isFormReady,
isSubmitting,
isVerificationStep,
isVerified,
pendingPassword,
t.form.completeSubmit,
t.form.completing,
t.form.submit,
t.form.submitting,
t.form.verifySubmit,
t.form.verifying,
validationHints,
])
const isSubmitDisabled = validationState.disabled
const validationMessages = validationState.messages
return (
<AuthLayout
@ -814,6 +565,25 @@ export default function RegisterContent() {
onSubmit={handleSubmit}
noValidate
>
{currentStep === 0 && (
<>
<div className="space-y-2">
<label htmlFor="username" className="text-sm font-medium text-slate-600">
{t.form.name || 'Username'}
</label>
<input
id="username"
name="username"
type="text"
autoComplete="username"
placeholder={t.form.namePlaceholder || '4-16 chars, starts with letter'}
className="w-full rounded-2xl border border-slate-200 bg-white/90 px-4 py-2.5 text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200"
required
value={formValues.username}
onChange={handleInputChange('username')}
/>
</div>
<div className="space-y-2">
<label htmlFor="email" className="text-sm font-medium text-slate-600">
{t.form.email}
@ -824,13 +594,13 @@ export default function RegisterContent() {
type="email"
autoComplete="email"
placeholder={t.form.emailPlaceholder}
className="w-full rounded-2xl border border-slate-200 bg-white/90 px-4 py-2.5 text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200 disabled:cursor-not-allowed disabled:bg-slate-100 disabled:text-slate-400"
className="w-full rounded-2xl border border-slate-200 bg-white/90 px-4 py-2.5 text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200"
required
disabled={isVerificationStep}
value={formValues.email}
onChange={handleInputChange('email')}
/>
</div>
<div className="grid gap-5 sm:grid-cols-2">
<div className="space-y-2">
<label htmlFor="password" className="text-sm font-medium text-slate-600">
@ -842,9 +612,8 @@ export default function RegisterContent() {
type="password"
autoComplete="new-password"
placeholder={t.form.passwordPlaceholder}
className="w-full rounded-2xl border border-slate-200 bg-white/90 px-4 py-2.5 text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200 disabled:cursor-not-allowed disabled:bg-slate-100 disabled:text-slate-400"
required={!isVerificationStep}
disabled={isVerificationStep}
className="w-full rounded-2xl border border-slate-200 bg-white/90 px-4 py-2.5 text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200"
required
value={formValues.password}
onChange={handleInputChange('password')}
/>
@ -859,78 +628,20 @@ export default function RegisterContent() {
type="password"
autoComplete="new-password"
placeholder={t.form.confirmPasswordPlaceholder}
className="w-full rounded-2xl border border-slate-200 bg-white/90 px-4 py-2.5 text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200 disabled:cursor-not-allowed disabled:bg-slate-100 disabled:text-slate-400"
required={!isVerificationStep}
disabled={isVerificationStep}
className="w-full rounded-2xl border border-slate-200 bg-white/90 px-4 py-2.5 text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200"
required
value={formValues.confirmPassword}
onChange={handleInputChange('confirmPassword')}
/>
</div>
</div>
<div className="space-y-2">
<label className="text-sm font-medium text-slate-600" htmlFor="verification-code-0">
{t.form.verificationCodeLabel}
</label>
{t.form.verificationCodeDescription ? (
<p
id={verificationDescriptionId}
className="text-xs text-slate-500"
>
{t.form.verificationCodeDescription}
</p>
) : null}
{hasRequestedCode && !isVerified ? (
<div className="space-y-4">
<div className="rounded-2xl border border-dashed border-sky-200 bg-sky-50/80 px-4 py-3 text-sm text-sky-700">
<strong>10 </strong>
<br />
</div>
<div className="flex justify-between gap-2">
{codeDigits.map((digit, index) => (
<input
key={index}
ref={(el) => {
codeInputRefs.current[index] = el
}}
id={`verification-code-${index}`}
name={`verification-code-${index}`}
type="text"
inputMode="numeric"
autoComplete="one-time-code"
pattern="\d{1}"
maxLength={1}
className="h-12 w-full rounded-xl border border-slate-200 bg-white/90 text-center text-lg font-semibold text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200"
value={digit}
onChange={(e) => handleCodeChange(index, e.target.value)}
onKeyDown={(e) => handleCodeKeyDown(index, e)}
onPaste={(e) => index === 0 && handleCodePaste(0, e)}
/>
))}
</div>
<div className="text-center">
<button
type="button"
onClick={handleResend}
disabled={isResending || resendCooldown > 0}
className="text-sm font-medium text-sky-600 transition hover:text-sky-500 disabled:cursor-not-allowed disabled:opacity-50"
>
{resendLabel}
</button>
</div>
</div>
) : null}
</div>
<label className="flex items-start gap-3 text-sm text-slate-600">
<input
type="checkbox"
name="agreement"
required={!isVerificationStep}
disabled={isVerificationStep}
className="mt-1 h-4 w-4 rounded border-slate-300 text-sky-600 focus:ring-sky-500 disabled:cursor-not-allowed disabled:opacity-60"
required
className="mt-1 h-4 w-4 rounded border-slate-300 text-sky-600 focus:ring-sky-500"
checked={formValues.agreement}
onChange={handleAgreementChange}
/>
@ -941,22 +652,67 @@ export default function RegisterContent() {
</Link>
</span>
</label>
{validationMessages.length > 0 ? (
<div
className="rounded-2xl border border-slate-200 bg-white/80 px-4 py-3 text-sm text-slate-600"
role="status"
aria-live="polite"
>
<ul className="list-disc space-y-1 pl-5">
{validationMessages.map((message) => (
<li key={message}>{message}</li>
))}
</ul>
</>
)}
{currentStep === 1 && (
<div className="space-y-6">
<div className="rounded-2xl border border-dashed border-sky-200 bg-sky-50/80 px-4 py-3 text-sm text-sky-700">
<strong>{formValues.email}</strong>
<br />
10
</div>
) : null}
<div className="space-y-2">
<label className="text-sm font-medium text-slate-600">
{t.form.verificationCodeLabel}
</label>
<div className="flex justify-between gap-2">
{codeDigits.map((digit, index) => (
<input
key={index}
ref={(el) => {
codeInputRefs.current[index] = el
}}
type="text"
inputMode="numeric"
autoComplete="one-time-code"
maxLength={1}
className="h-12 w-full rounded-xl border border-slate-200 bg-white/90 text-center text-lg font-semibold text-slate-900 shadow-sm transition focus:border-sky-500 focus:outline-none focus:ring-2 focus:ring-sky-200"
value={digit}
onChange={(e) => handleCodeChange(index, e.target.value)}
onKeyDown={(e) => handleCodeKeyDown(index, e)}
onPaste={(e) => index === 0 && handleCodePaste(0, e)}
/>
))}
</div>
</div>
<div className="flex items-center justify-between">
<button
type="button"
onClick={() => setCurrentStep(0)}
className="text-sm text-slate-500 hover:text-slate-700"
>
</button>
<button
type="button"
onClick={handleResend}
disabled={isResending || resendCooldown > 0}
className="text-sm font-medium text-sky-600 transition hover:text-sky-500 disabled:cursor-not-allowed disabled:opacity-50"
style={{ zIndex: 10, position: 'relative' }}
>
{resendLabel}
</button>
</div>
</div>
)}
<button
type="submit"
disabled={isSubmitDisabled}
disabled={isSubmitting || (currentStep === 1 && codeDigits.some(d => !d))}
className="w-full rounded-2xl bg-gradient-to-r from-sky-500 to-blue-500 px-4 py-2.5 text-sm font-semibold text-white shadow-lg shadow-sky-500/20 transition hover:from-sky-500 hover:to-blue-500 focus-visible:outline focus-visible:outline-2 focus-visible:outline-offset-2 focus-visible:outline-sky-500 disabled:cursor-not-allowed disabled:opacity-70"
>
{submitLabel}

6
src/i18n/translations.ts
View File

@ -222,6 +222,8 @@ type AuthRegisterTranslation = {
form: {
title: string
subtitle: string
name: string
namePlaceholder: string
email: string
emailPlaceholder: string
password: string
@ -723,6 +725,8 @@ export const translations: Record<'en' | 'zh', Translation> = {
form: {
title: 'Create your account',
subtitle: 'Submit your email and password, request the code, and enter it to activate your account.',
name: 'Username',
namePlaceholder: '4-16 chars, starts with letter',
email: 'Work email',
emailPlaceholder: 'name@example.com',
password: 'Password',
@ -1384,6 +1388,8 @@ export const translations: Record<'en' | 'zh', Translation> = {
form: {
title: '创建账号',
subtitle: '先提交邮箱和密码获取验证码,再输入邮箱收到的验证码完成注册。',
name: '用户名',
namePlaceholder: '4-16位字母或数字字母开头',
email: '邮箱',
emailPlaceholder: 'name@example.com',
password: '密码',

50
src/middleware.ts
View File

@ -1,50 +0,0 @@
import { NextResponse } from 'next/server'
import type { NextRequest } from 'next/server'
const DEFAULT_ALLOWED_ORIGINS = 'https://console.svc.plus,http://localhost:3000'
function parseAllowedOrigins() {
const raw = process.env.CORS_ALLOWED_ORIGINS ?? DEFAULT_ALLOWED_ORIGINS
return raw
.split(',')
.map((value) => value.trim())
.filter(Boolean)
}
function resolveAllowedOrigin(origin: string | null, allowed: string[]) {
if (!origin) return null
if (allowed.includes('*')) return '*'
return allowed.includes(origin) ? origin : null
}
function applyCorsHeaders(response: NextResponse, origin: string | null) {
if (!origin) return
response.headers.set('Access-Control-Allow-Origin', origin)
response.headers.set('Access-Control-Allow-Credentials', 'true')
response.headers.set('Access-Control-Allow-Methods', 'GET,POST,PUT,PATCH,DELETE,OPTIONS')
response.headers.set(
'Access-Control-Allow-Headers',
'Content-Type, Authorization, X-Requested-With, X-Account-Session',
)
response.headers.set('Vary', 'Origin')
}
export function middleware(request: NextRequest) {
const allowedOrigins = parseAllowedOrigins()
const originHeader = request.headers.get('origin')
const allowedOrigin = resolveAllowedOrigin(originHeader, allowedOrigins)
if (request.method === 'OPTIONS') {
const response = new NextResponse(null, { status: 204 })
applyCorsHeaders(response, allowedOrigin)
return response
}
const response = NextResponse.next()
applyCorsHeaders(response, allowedOrigin)
return response
}
export const config = {
matcher: ['/api/:path*'],
}