Go to file

Samyak Piya f722a2d619 Add Email Verification for non-Microsoft/Google Emails (#9288 )

Closes twentyhq/twenty#8240 

This PR introduces email verification for non-Microsoft/Google Emails:

## Email Verification SignInUp Flow:

https://github.com/user-attachments/assets/740e9714-5413-4fd8-b02e-ace728ea47ef

The email verification link is sent as part of the
`SignInUpStep.EmailVerification`. The email verification token
validation is handled on a separate page (`AppPath.VerifyEmail`). A
verification email resend can be triggered from both pages.

## Email Verification Flow Screenshots (In Order):

![image](https://github.com/user-attachments/assets/d52237dc-fcc6-4754-a40f-b7d6294eebad)

![image](https://github.com/user-attachments/assets/263a4b6b-db49-406b-9e43-6c0f90488bb8)

![image](https://github.com/user-attachments/assets/0343ae51-32ef-48b8-8167-a96deb7db99e)

## Sent Email Details (Subject & Template):
![Screenshot 2025-01-05 at 11 56
56 PM](https://github.com/user-attachments/assets/475840d1-7d47-4792-b8c6-5c9ef5e02229)

![image](https://github.com/user-attachments/assets/a41b3b36-a36f-4a8e-b1f9-beeec7fe23e4)

### Successful Email Verification Redirect:

![image](https://github.com/user-attachments/assets/e2fad9e2-f4b1-485e-8f4a-32163c2718e7)

### Unsuccessful Email Verification (invalid token, invalid email, token
expired, user does not exist, etc.):

![image](https://github.com/user-attachments/assets/92f4b65e-2971-4f26-a9fa-7aafadd2b305)

### Force Sign In When Email Not Verified:

![image](https://github.com/user-attachments/assets/86d0f188-cded-49a6-bde9-9630fd18d71e)

# TODOs:

## Sign Up Process

- [x] Introduce server-level environment variable
IS_EMAIL_VERIFICATION_REQUIRED (defaults to false)
- [x] Ensure users joining an existing workspace through an invite are
not required to validate their email
- [x] Generate an email verification token
- [x] Store the token in appToken
- [x] Send email containing the verification link
  - [x] Create new email template for email verification
- [x] Create a frontend page to handle verification requests

## Sign In Process

- [x] After verifying user credentials, check if user's email is
verified and prompt to to verify
- [x] Show an option to resend the verification email

## Database

- [x] Rename the `emailVerified` colum on `user` to to `isEmailVerified`
for consistency

## During Deployment
- [x] Run a script/sql query to set `isEmailVerified` to `true` for all
users with a Google/Microsoft email and all users that show an
indication of a valid subscription (e.g. linked credit card)
- I have created a draft migration file below that shows one possible
approach to implementing this change:

```typescript
import { MigrationInterface, QueryRunner } from 'typeorm';

export class UpdateEmailVerifiedForActiveUsers1733318043628
  implements MigrationInterface
{
  name = 'UpdateEmailVerifiedForActiveUsers1733318043628';

  public async up(queryRunner: QueryRunner): Promise<void> {
    await queryRunner.query(`
      CREATE TABLE core."user_email_verified_backup" AS
      SELECT id, email, "isEmailVerified"
      FROM core."user"
      WHERE "deletedAt" IS NULL;
    `);

    await queryRunner.query(`
      -- Update isEmailVerified for users who have been part of workspaces with active subscriptions
      UPDATE core."user" u
      SET "isEmailVerified" = true
      WHERE EXISTS (
        -- Check if user has been part of a workspace through userWorkspace table
        SELECT 1 
        FROM core."userWorkspace" uw
        JOIN core."workspace" w ON uw."workspaceId" = w.id
        WHERE uw."userId" = u.id
        -- Check for valid subscription indicators
        AND (
          w."activationStatus" = 'ACTIVE'
          -- Add any other subscription-related conditions here
        )
      )
      AND u."deletedAt" IS NULL;
  `);
  }

  public async down(queryRunner: QueryRunner): Promise<void> {
    await queryRunner.query(`
      UPDATE core."user" u
      SET "isEmailVerified" = b."isEmailVerified"
      FROM core."user_email_verified_backup" b
      WHERE u.id = b.id;
    `);

    await queryRunner.query(`DROP TABLE core."user_email_verified_backup";`);
  }
}

```

---------

Co-authored-by: Antoine Moreaux <moreaux.antoine@gmail.com>
Co-authored-by: Félix Malfait <felix@twenty.com>

2025-01-15 18:43:40 +01:00

.github

[CI] Yarn install composite action remove --immutable-cache (#9641 )

2025-01-15 16:02:29 +01:00

.nx

Add nxw.js file (#8362 )

2024-11-06 14:24:07 +01:00

.vscode

Add Integration and unit tests on Billing (#9317 )

2025-01-09 18:30:41 +01:00

.yarn/releases

removed @blocknote/core from dependencies (#6580 )

2024-08-08 15:44:09 +02:00

packages

Add Email Verification for non-Microsoft/Google Emails (#9288 )

2025-01-15 18:43:40 +01:00

tools/eslint-rules

feat: add eslint rule for enforcing WorkspaceService naming convention (#6308 )

2024-07-19 19:17:57 +02:00

.cursorrules

Add cursor rules (#9268 )

2024-12-31 14:13:23 +01:00

.dockerignore

feat: merge front and server dockerfiles and optimize build (#4589 )

2024-03-21 19:22:21 +01:00

.eslintrc.cjs

Move FieldMetadataType to twenty-shared (#9482 )

2025-01-09 18:43:30 +01:00

.eslintrc.react.cjs

Create ESLint rule to discourage usage of navigate() and prefer Link (#5642 )

2024-06-04 17:04:57 +02:00

.gitignore

Devenv setup via devenvious (#8774 )

2024-11-28 11:33:22 +01:00

.nvmrc

Embrace nx monorepo structure with root package.json (#3255 )

2024-01-05 14:59:58 +01:00

.prettierignore

POC: chore: use Nx workspace lint rules (#3163 )

2024-01-03 23:07:25 +01:00

.prettierrc

POC: chore: use Nx workspace lint rules (#3163 )

2024-01-03 23:07:25 +01:00

.vale.ini

Fix vale ci (#3353 )

2024-01-10 17:05:23 +01:00

.yarnrc.yml

removed @blocknote/core from dependencies (#6580 )

2024-08-08 15:44:09 +02:00

jest.config.js

POC: chore: use Nx workspace lint rules (#3163 )

2024-01-03 23:07:25 +01:00

jest.preset.js

POC: chore: use Nx workspace lint rules (#3163 )

2024-01-03 23:07:25 +01:00

LICENSE

feat(sso): allow to use OIDC and SAML (#7246 )

2024-10-21 20:07:08 +02:00

Makefile

Fix Make Postgres on Docker (#8830 )

2024-12-02 09:58:03 +01:00

Migrate to a monorepo structure (#2909 )

2023-12-10 18:10:54 +01:00

nx.json

[CI][FRONT] Storybook tests sharding (#9448 )

2025-01-10 18:40:03 +01:00

package.json

Fix frontend bug when filtering with special character (#9307 )

2025-01-02 13:43:27 +01:00

README.md

Update README (#9351 )

2025-01-05 14:11:19 +01:00

render.yaml

Begin moving to postgres spilo + adding pgvector (#8309 )

2024-11-15 09:38:30 +01:00

tsconfig.base.json

Add Twenty Shared & Fix profile image rendering (#8841 )

2024-12-17 09:24:21 +01:00

yarn.lock

Fix frontend bug when filtering with special character (#9307 )

2025-01-02 13:43:27 +01:00

README.md

The #1 Open-Source CRM

🌐 Website · 📚 Documentation · Discord · Figma

Demo

Go to demo.twenty.com and login with the following credentials:

email: tim@apple.dev
password: Applecar2025

See also:
🚀 Self-hosting
🖥️ Local Setup

Does the world need another CRM?

We built Twenty for three reasons:

CRMs are too expensive, and users are trapped. Companies use locked-in customer data to hike prices. It shouldn't be that way.

A fresh start is required to build a better experience. We can learn from past mistakes and craft a cohesive experience inspired by new UX patterns from tools like Notion, Airtable or Linear.

We believe in Open-source and community. Hundreds of developers are already building Twenty together. Once we have plugin capabilities, a whole ecosystem will grow around it.