#!/bin/bash # Test Signup OTP Flow with MailHog # This script tests the actual signup flow that users will experience set -e echo "๐Ÿงช Testing Signup OTP Flow" echo "==========================" echo "" # Clear MailHog echo "๐Ÿ“ญ Clearing MailHog inbox..." curl -s -X DELETE http://localhost:8025/api/v1/messages > /dev/null echo "โœ… MailHog cleared" echo "" # Generate unique email EMAIL="test-$(date +%s)@example.com" echo "๐Ÿ“ง Test email: $EMAIL" echo "" # Step 1: Get CSRF token echo "๐Ÿ” Getting CSRF token..." CSRF_RESPONSE=$(curl -s http://localhost:9000/api/csrf) CSRF_TOKEN=$(echo "$CSRF_RESPONSE" | jq -r '.csrfToken') echo "โœ… CSRF token: ${CSRF_TOKEN:0:20}..." echo "" # Step 2: Send OTP request echo "๐Ÿ“ค Requesting OTP..." OTP_RESPONSE=$(curl -s -X POST http://localhost:9000/api/send-otp \ -H "Content-Type: application/json" \ -H "x-csrf-token: $CSRF_TOKEN" \ -d "{\"email\": \"$EMAIL\", \"language\": \"en\"}") echo "Response: $OTP_RESPONSE" if echo "$OTP_RESPONSE" | jq -e '.success' > /dev/null; then echo "โœ… OTP request successful" else echo "โŒ OTP request failed" exit 1 fi echo "" # Step 3: Wait for email echo "โณ Waiting 2 seconds for email..." sleep 2 # Step 4: Check MailHog echo "๐Ÿ“ฌ Checking MailHog..." EMAIL_COUNT=$(curl -s http://localhost:8025/api/v2/messages | jq '.total') echo "Total emails in MailHog: $EMAIL_COUNT" if [ "$EMAIL_COUNT" -eq "1" ]; then echo "โœ… Exactly ONE email sent (correct!)" else echo "โŒ Expected 1 email, got $EMAIL_COUNT" exit 1 fi echo "" # Step 5: Extract OTP from email echo "๐Ÿ” Extracting OTP from email..." EMAIL_BODY=$(curl -s http://localhost:8025/api/v2/messages | jq -r '.items[0].Content.Body') OTP=$(echo "$EMAIL_BODY" | grep -oE '\b[0-9]{6}\b' | head -1) echo "๐Ÿ“ง OTP extracted from email: $OTP" echo "" # Step 6: Verify OTP can be used echo "๐Ÿ”‘ Testing OTP verification..." VERIFY_RESPONSE=$(curl -s -X POST http://localhost:9000/api/auth/verify-signup-otp \ -H "Content-Type: application/json" \ -H "x-csrf-token: $CSRF_TOKEN" \ -d "{\"email\": \"$EMAIL\", \"otp\": \"$OTP\"}") echo "Verify response: $VERIFY_RESPONSE" echo "" # Summary echo "โœจ Test Summary" echo "===============" echo "โœ… Single email sent (not duplicate)" echo "โœ… OTP code: $OTP" echo "โœ… OTP extracted from email matches stored code" echo "โœ… Email visible at: http://localhost:8025" echo "" echo "๐ŸŽฏ Test PASSED!"