mirror of
https://github.com/jakejarvis/jarv.is.git
synced 2025-06-27 17:05:42 -04:00
108 lines
3.7 KiB
TypeScript
108 lines
3.7 KiB
TypeScript
"use server";
|
|
|
|
import { env } from "@/lib/env";
|
|
import { headers } from "next/headers";
|
|
import * as v from "valibot";
|
|
import { Resend } from "resend";
|
|
import siteConfig from "@/lib/config/site";
|
|
|
|
const ContactSchema = v.object({
|
|
name: v.message(v.pipe(v.string(), v.trim(), v.nonEmpty()), "Your name is required."),
|
|
email: v.message(v.pipe(v.string(), v.trim(), v.nonEmpty(), v.email()), "Your email address is required."),
|
|
message: v.message(v.pipe(v.string(), v.trim(), v.minLength(15)), "Your message must be at least 15 characters."),
|
|
"cf-turnstile-response": v.message(
|
|
v.pipe(
|
|
// token wasn't submitted at _all_, most likely a direct POST request by a spam bot
|
|
v.string(),
|
|
// form submitted properly but token was missing, might be a forgetful human
|
|
v.nonEmpty(),
|
|
// very rudimentary length check based on Cloudflare's docs
|
|
// https://developers.cloudflare.com/turnstile/troubleshooting/testing/
|
|
// https://developers.cloudflare.com/turnstile/get-started/server-side-validation/
|
|
v.maxLength(2048),
|
|
v.readonly()
|
|
),
|
|
"Are you sure you're not a robot...? 🤖"
|
|
),
|
|
});
|
|
|
|
export type ContactInput = v.InferInput<typeof ContactSchema>;
|
|
|
|
export type ContactState = {
|
|
success: boolean;
|
|
message: string;
|
|
errors?: v.FlatErrors<typeof ContactSchema>["nested"];
|
|
};
|
|
|
|
export const send = async (state: ContactState, payload: FormData): Promise<ContactState> => {
|
|
// TODO: remove after debugging why automated spam entries are causing 500 errors
|
|
console.debug("[server/resend] received payload:", payload);
|
|
|
|
try {
|
|
const data = v.safeParse(ContactSchema, Object.fromEntries(payload));
|
|
|
|
if (!data.success) {
|
|
return {
|
|
success: false,
|
|
message: "Please make sure all fields are filled in.",
|
|
errors: v.flatten(data.issues).nested,
|
|
};
|
|
}
|
|
|
|
// try to get the client IP (for turnstile accuracy, not logging!) but no biggie if we can't
|
|
let remoteip;
|
|
try {
|
|
remoteip = (await headers()).get("x-forwarded-for");
|
|
} catch {} // eslint-disable-line no-empty
|
|
|
|
// validate captcha
|
|
const turnstileResponse = await fetch("https://challenges.cloudflare.com/turnstile/v0/siteverify", {
|
|
method: "POST",
|
|
headers: { "Content-Type": "application/json" },
|
|
body: JSON.stringify({
|
|
secret: env.TURNSTILE_SECRET_KEY,
|
|
response: data.output["cf-turnstile-response"],
|
|
remoteip,
|
|
}),
|
|
cache: "no-store",
|
|
});
|
|
|
|
if (!turnstileResponse || !turnstileResponse.ok) {
|
|
throw new Error(`[server/resend] turnstile validation failed: ${turnstileResponse.status}`);
|
|
}
|
|
|
|
const turnstileData = (await turnstileResponse.json()) as { success: boolean };
|
|
|
|
if (!turnstileData.success) {
|
|
return {
|
|
success: false,
|
|
message: "Did you complete the CAPTCHA? (If you're human, that is...)",
|
|
};
|
|
}
|
|
|
|
if (env.RESEND_FROM_EMAIL === "onboarding@resend.dev") {
|
|
// https://resend.com/docs/api-reference/emails/send-email
|
|
console.warn("[server/resend] 'RESEND_FROM_EMAIL' is not set, falling back to onboarding@resend.dev.");
|
|
}
|
|
|
|
// send email
|
|
const resend = new Resend(env.RESEND_API_KEY);
|
|
await resend.emails.send({
|
|
from: `${data.output.name} <${env.RESEND_FROM_EMAIL || "onboarding@resend.dev"}>`,
|
|
replyTo: `${data.output.name} <${data.output.email}>`,
|
|
to: [env.RESEND_TO_EMAIL],
|
|
subject: `[${siteConfig.name}] Contact Form Submission`,
|
|
text: data.output.message,
|
|
});
|
|
|
|
return { success: true, message: "Thanks! You should hear from me soon." };
|
|
} catch (error) {
|
|
console.error("[server/resend] fatal error:", error);
|
|
|
|
return {
|
|
success: false,
|
|
message: "Internal server error. Please try again later or shoot me an email.",
|
|
};
|
|
}
|
|
};
|