Votre code d'authentification est: ${code}.
Il expire dans 10 minutes.
`, }); return { success: true }; }); /** * Vérifie un code d'authentification reçu par email. */ exports.verifyEmailAuthCode = functions.https.onCall(async (data) => { const email = normalizeEmail(data?.email); const code = String(data?.code || "").trim(); if (!email || !email.includes("@") || code.length !== 6) { throw new functions.https.HttpsError("invalid-argument", "Email ou code invalide."); } const now = admin.firestore.Timestamp.now(); const snapshot = await admin .firestore() .collection("emailAuthCodes") .where("email", "==", email) .where("used", "==", false) .orderBy("createdAt", "desc") .limit(1) .get(); if (snapshot.empty) { throw new functions.https.HttpsError("not-found", "Aucun code actif trouvé."); } const doc = snapshot.docs[0]; const payload = doc.data(); if (payload.expiresAt && payload.expiresAt.toMillis() < now.toMillis()) { throw new functions.https.HttpsError("deadline-exceeded", "Le code a expiré."); } if ((payload.attempts || 0) >= 5) { throw new functions.https.HttpsError("permission-denied", "Trop de tentatives."); } const providedHash = hashCode(code); if (providedHash !== payload.codeHash) { await doc.ref.update({ attempts: admin.firestore.FieldValue.increment(1) }); throw new functions.https.HttpsError("permission-denied", "Code incorrect."); } await doc.ref.update({ used: true, verifiedAt: admin.firestore.FieldValue.serverTimestamp(), }); return { verified: true }; }); exports.onActivityCreated = functions.firestore .document("activities/{activityId}") .onCreate(async (snapshot, context) => { const activity = snapshot.data(); const activityId = context.params.activityId; const tripId = activity.tripId; const createdBy = activity.createdBy || "Unknown"; if (!tripId) { return; } const tripDoc = await admin.firestore().collection("trips").doc(tripId).get(); if (!tripDoc.exists) { return; } const trip = tripDoc.data(); const participants = trip.participants || []; if (trip.createdBy && !participants.includes(trip.createdBy)) { participants.push(trip.createdBy); } let creatorName = "Quelqu'un"; if (createdBy !== "Unknown") { const userDoc = await admin.firestore().collection("users").doc(createdBy).get(); if (userDoc.exists) { creatorName = userDoc.data().prenom || "Quelqu'un"; } } await sendNotificationToUsers( participants, "Nouvelle activité", `${creatorName} a ajouté : ${activity.name || activity.title || "Activité"}`, createdBy, { type: "activity", tripId, activityId } ); }); exports.onMessageCreated = functions.firestore .document("groups/{groupId}/messages/{messageId}") .onCreate(async (snapshot, context) => { const message = snapshot.data(); const groupId = context.params.groupId; const senderId = message.senderId; const groupDoc = await admin.firestore().collection("groups").doc(groupId).get(); if (!groupDoc.exists) { return; } const group = groupDoc.data(); const memberIds = group.memberIds || []; const tripId = group.tripId || ""; const senderName = message.senderName || "Quelqu'un"; await sendNotificationToUsers( memberIds, "Nouveau message", `${senderName}: ${message.text}`, senderId, { type: "message", groupId, tripId } ); }); exports.onExpenseCreated = functions.firestore .document("expenses/{expenseId}") .onCreate(async (snapshot) => { const expense = snapshot.data(); const groupId = expense.groupId; const paidBy = expense.paidById || expense.paidBy; if (!groupId) { return; } const groupDoc = await admin.firestore().collection("groups").doc(groupId).get(); if (!groupDoc.exists) { return; } const group = groupDoc.data(); const memberIds = group.memberIds || []; const tripId = group.tripId || ""; const payerName = expense.paidByName || "Quelqu'un"; await sendNotificationToUsers( memberIds, "Nouvelle dépense", `${payerName} a ajouté une dépense : ${expense.amount} ${expense.currency || "€"}`, paidBy, { type: "expense", groupId, tripId } ); }); exports.onTripInvitationCreated = functions.firestore .document("tripInvitations/{invitationId}") .onCreate(async (snapshot, context) => { const invitationId = context.params.invitationId; const invitation = snapshot.data(); if (!invitation?.inviteeId) { return; } await sendNotificationToUser( invitation.inviteeId, "Invitation de voyage", `${invitation.inviterName || "Quelqu'un"} vous invite à rejoindre ${invitation.tripTitle || "un voyage"}`, { type: "trip_invitation", invitationId, tripId: invitation.tripId, inviterName: invitation.inviterName || "Quelqu'un", tripTitle: invitation.tripTitle || "Voyage", } ); }); exports.onTripInvitationUpdated = functions.firestore .document("tripInvitations/{invitationId}") .onUpdate(async (change) => { const before = change.before.data(); const after = change.after.data(); if (before.status === after.status || before.status !== "pending") { return; } const status = after.status; const tripId = after.tripId; const inviteeId = after.inviteeId; if (!tripId || !inviteeId) { return; } if (status === "accepted") { await admin.firestore().runTransaction(async (transaction) => { const userRef = admin.firestore().collection("users").doc(inviteeId); const userDoc = await transaction.get(userRef); if (!userDoc.exists) { throw new Error("Utilisateur invité introuvable"); } const user = userDoc.data(); const tripRef = admin.firestore().collection("trips").doc(tripId); transaction.update(tripRef, { participants: admin.firestore.FieldValue.arrayUnion(inviteeId), updatedAt: admin.firestore.FieldValue.serverTimestamp(), }); const groupSnapshot = await admin .firestore() .collection("groups") .where("tripId", "==", tripId) .limit(1) .get(); if (!groupSnapshot.empty) { const groupRef = groupSnapshot.docs[0].ref; const memberRef = groupRef.collection("members").doc(inviteeId); transaction.set( memberRef, { userId: inviteeId, firstName: user.prenom || "", lastName: user.nom || "", pseudo: user.prenom || "Voyageur", profilePictureUrl: user.profilePictureUrl || null, joinedAt: Date.now(), }, { merge: true } ); transaction.update(groupRef, { memberIds: admin.firestore.FieldValue.arrayUnion(inviteeId), updatedAt: Date.now(), }); } const accountSnapshot = await admin .firestore() .collection("accounts") .where("tripId", "==", tripId) .limit(1) .get(); if (!accountSnapshot.empty) { const accountRef = accountSnapshot.docs[0].ref; const accountMemberRef = accountRef.collection("members").doc(inviteeId); transaction.set( accountMemberRef, { userId: inviteeId, firstName: user.prenom || "", lastName: user.nom || "", pseudo: user.prenom || "Voyageur", profilePictureUrl: user.profilePictureUrl || null, joinedAt: Date.now(), }, { merge: true } ); } }); await sendNotificationToUser( after.inviterId, "Invitation acceptée", `${after.inviteeEmail || "L'utilisateur"} a accepté votre invitation.`, { type: "trip_invitation_response", tripId } ); return; } if (status === "rejected") { await sendNotificationToUser( after.inviterId, "Invitation refusée", `${after.inviteeEmail || "L'utilisateur"} a refusé votre invitation.`, { type: "trip_invitation_response", tripId } ); } }); exports.callbacks_signInWithApple = functions.https.onRequest((req, res) => { const code = req.body.code; const state = req.body.state; const id_token = req.body.id_token; const user = req.body.user; const params = new URLSearchParams(); if (code) params.append("code", code); if (state) params.append("state", state); if (id_token) params.append("id_token", id_token); if (user) params.append("user", user); const qs = params.toString(); const packageName = "be.devdayronvl.travel_mate"; const redirectUrl = `intent://callback?${qs}#Intent;package=${packageName};scheme=signinwithapple;end`; res.redirect(302, redirectUrl); });