email.js

import { randomBytes } from "crypto"
import adapterErrorHandler from "../../../adapters/error-handler"

/**
 *
 * @param {string} email
 * @param {import("types/providers").EmailConfig} provider
 * @param {import("types/internals").AppOptions} options
 * @returns
 */
export default async function email(email, provider, options) {
  try {
    const { baseUrl, basePath, adapter, logger } = options

    const { createVerificationRequest } = adapterErrorHandler(
      await adapter.getAdapter(options),
      logger
    )

    // Prefer provider specific secret, but use default secret if none specified
    const secret = provider.secret || options.secret

    // Generate token
    const token =
      (await provider.generateVerificationToken?.()) ??
      randomBytes(32).toString("hex")

    // Send email with link containing token (the unhashed version)
    const url = `${baseUrl}${basePath}/callback/${encodeURIComponent(
      provider.id
    )}?email=${encodeURIComponent(email)}&token=${encodeURIComponent(token)}`

    // @TODO Create invite (send secret so can be hashed)
    await createVerificationRequest(
      email,
      url,
      token,
      secret,
      provider,
      options
    )

    // Return promise
    return Promise.resolve()
  } catch (error) {
    return Promise.reject(error)
  }
}