feat: Implement user authentication and management API

- Added user registration, login, email verification, password reset, and profile retrieval functionalities.
- Created handler functions for each endpoint in `internal/user/handler.go`.
- Developed corresponding unit tests for handler functions in `internal/user/handler_test.go`.
- Introduced a repository layer for user data management in `internal/user/repository.go`.
- Implemented service layer for business logic in `internal/user/service.go`.
- Added JWT generation and parsing functionality in `pkg/jwt/jwt.go`.
- Created DTOs for request and response payloads in `pkg/dto/auth.go`.
- Defined custom error handling in `pkg/errors/errors.go`.
- Established user and social account models in `pkg/models/user.go` and `pkg/models/social_account.go`.
- Added shell scripts for running the API and testing endpoints.

Author: gjovanovicst

.air.toml

@@ -0,0 +1,44 @@
+root = "."
+testdata_dir = "testdata"
+tmp_dir = "tmp"
+
+[build]
+  args_bin = []
+  bin = "./tmp/main.exe"
+  cmd = "go build -o ./tmp/main.exe ./cmd/api"
+  delay = 1000
+  exclude_dir = ["assets", "tmp", "vendor", "testdata", "node_modules", ".git", "docs"]
+  exclude_file = []
+  exclude_regex = ["_test.go"]
+  exclude_unchanged = false
+  follow_symlink = false
+  full_bin = ""
+  include_dir = []
+  include_ext = ["go", "tpl", "tmpl", "html"]
+  include_file = []
+  kill_delay = "0s"
+  log = "build-errors.log"
+  poll = true
+  poll_interval = 1000
+  rerun = false
+  rerun_delay = 500
+  send_interrupt = false
+  stop_on_root = false
+
+[color]
+  app = ""
+  build = "yellow"
+  main = "magenta"
+  runner = "green"
+  watcher = "cyan"
+
+[log]
+  main_only = false
+  time = false
+
+[misc]
+  clean_on_exit = false
+
+[screen]
+  clear_on_rebuild = false
+  keep_scroll = true

.env.example

@@ -0,0 +1,33 @@
+# .env.example - Environment variable template for auth_api
+
+DB_HOST=localhost
+DB_PORT=5432
+DB_USER=postgres
+DB_PASSWORD=your_db_password
+DB_NAME=auth_db
+
+JWT_SECRET=your_jwt_secret
+ACCESS_TOKEN_EXPIRATION_MINUTES=15
+REFRESH_TOKEN_EXPIRATION_HOURS=720
+
+REDIS_ADDR=localhost:6379
+REDIS_PASSWORD=your_redis_password
+REDIS_DB=0
+
+GOOGLE_CLIENT_ID=your_google_client_id
+GOOGLE_CLIENT_SECRET=your_google_client_secret
+GOOGLE_REDIRECT_URL=http://localhost:8080/auth/google/callback
+
+FACEBOOK_CLIENT_ID=your_facebook_client_id
+FACEBOOK_CLIENT_SECRET=your_facebook_client_secret
+FACEBOOK_REDIRECT_URL=http://localhost:8080/auth/facebook/callback
+
+GITHUB_CLIENT_ID=your_github_client_id
+GITHUB_CLIENT_SECRET=your_github_client_secret
+GITHUB_REDIRECT_URL=http://localhost:8080/auth/github/callback
+
+EMAIL_HOST=smtp.example.com
+EMAIL_PORT=587
+EMAIL_USERNAME=your_email@example.com
+EMAIL_PASSWORD=your_email_password
+EMAIL_FROM=your_email@example.com

.github/workflows/ci.yml

@@ -0,0 +1,183 @@
+name: CI/CD Pipeline
+
+on:
+  push:
+    branches: [main, develop]
+  pull_request:
+    branches: [main]
+
+jobs:
+  test:
+    name: Test
+    runs-on: ubuntu-latest
+
+    services:
+      postgres:
+        image: postgres:15
+        env:
+          POSTGRES_PASSWORD: postgres
+          POSTGRES_DB: auth_test
+        options: >-
+          --health-cmd pg_isready
+          --health-interval 10s
+          --health-timeout 5s
+          --health-retries 5
+        ports:
+          - 5432:5432
+
+      redis:
+        image: redis:7
+        options: >-
+          --health-cmd "redis-cli ping"
+          --health-interval 10s
+          --health-timeout 5s
+          --health-retries 5
+        ports:
+          - 6379:6379
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Set up Go
+        uses: actions/setup-go@v4
+        with:
+          go-version: "1.22"
+
+      - name: Cache Go modules
+        uses: actions/cache@v3
+        with:
+          path: ~/go/pkg/mod
+          key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
+          restore-keys: |
+            ${{ runner.os }}-go-
+
+      - name: Download dependencies
+        run: go mod download
+
+      - name: Run unit tests
+        env:
+          JWT_SECRET: testsecret
+          ACCESS_TOKEN_EXPIRATION_MINUTES: 15
+          REFRESH_TOKEN_EXPIRATION_HOURS: 720
+          DB_HOST: localhost
+          DB_PORT: 5432
+          DB_USER: postgres
+          DB_PASSWORD: postgres
+          DB_NAME: auth_test
+          REDIS_ADDR: localhost:6379
+          REDIS_PASSWORD: ""
+          REDIS_DB: 0
+        run: go test -v -race -coverprofile=coverage.out ./...
+
+      - name: Upload coverage to Codecov
+        uses: codecov/codecov-action@v3
+        with:
+          file: ./coverage.out
+          flags: unittests
+          name: codecov-umbrella
+
+  build:
+    name: Build
+    runs-on: ubuntu-latest
+    needs: test
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Set up Go
+        uses: actions/setup-go@v4
+        with:
+          go-version: "1.22"
+
+      - name: Build application
+        run: go build -v ./cmd/api
+
+      - name: Build Docker image
+        run: docker build -t auth-api:${{ github.sha }} .
+
+      - name: Save Docker image
+        run: docker save auth-api:${{ github.sha }} | gzip > auth-api.tar.gz
+
+      - name: Upload Docker image artifact
+        uses: actions/upload-artifact@v3
+        with:
+          name: docker-image
+          path: auth-api.tar.gz
+
+  security-scan:
+    name: Security Scan
+    runs-on: ubuntu-latest
+    needs: test
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Set up Go
+        uses: actions/setup-go@v4
+        with:
+          go-version: "1.22"
+
+      - name: Run Gosec Security Scanner
+        run: |
+          go install github.com/securecodewarrior/gosec/v2/cmd/gosec@latest
+          gosec ./...
+
+      - name: Run Nancy vulnerability scanner
+        run: |
+          go install github.com/sonatypecommunity/nancy@latest
+          go list -json -deps ./... | nancy sleuth
+
+  deploy-staging:
+    name: Deploy to Staging
+    runs-on: ubuntu-latest
+    needs: [test, build, security-scan]
+    if: github.ref == 'refs/heads/develop'
+    environment: staging
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Download Docker image artifact
+        uses: actions/download-artifact@v3
+        with:
+          name: docker-image
+
+      - name: Load Docker image
+        run: docker load < auth-api.tar.gz
+
+      - name: Deploy to staging
+        run: |
+          echo "Deploying to staging environment..."
+          # Here you would add your actual deployment commands
+          # For example, using kubectl, docker-compose, or cloud provider CLI
+          echo "Deployment completed successfully"
+
+  deploy-production:
+    name: Deploy to Production
+    runs-on: ubuntu-latest
+    needs: [test, build, security-scan]
+    if: github.ref == 'refs/heads/main'
+    environment: production
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Download Docker image artifact
+        uses: actions/download-artifact@v3
+        with:
+          name: docker-image
+
+      - name: Load Docker image
+        run: docker load < auth-api.tar.gz
+
+      - name: Deploy to production
+        run: |
+          echo "Deploying to production environment..."
+          # Here you would add your actual deployment commands
+          # For example, using kubectl, docker-compose, or cloud provider CLI
+          echo "Production deployment completed successfully"

.gitignore

@@ -0,0 +1,85 @@
+# Binaries for programs and plugins
+*.exe
+*.exe~
+*.dll
+*.so
+*.dylib
+
+# Test binary, built with `go test -c`
+*.test
+
+# Output of the go coverage tool, specifically when used with LiteIDE
+*.out
+
+# Dependency directories
+vendor/
+
+# Go workspace file
+go.work
+
+# Environment variables and configuration files
+.env
+.env.local
+.env.development
+.env.test
+.env.production
+
+# Logs
+*.log
+
+# Runtime data
+pids
+*.pid
+*.seed
+*.pid.lock
+
+# IDE and editor files
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+
+# OS generated files
+.DS_Store
+.DS_Store?
+._*
+.Spotlight-V100
+.Trashes
+ehthumbs.db
+Thumbs.db
+
+# Build outputs
+/api
+/main
+/auth_api
+/cmd/api/api
+
+# Test coverage
+coverage.out
+coverage.html
+
+# Air live reload tool (for hot reloading during development)
+tmp/
+*.air.toml.bak
+.air.toml.bak
+
+# Build artifacts
+bin/
+*.exe
+
+# Batch files (optional - remove if you want to track run.bat)
+# *.bat
+
+# Delve debugger
+__debug_bin
+
+# Database files (for local development)
+*.db
+*.sqlite
+*.sqlite3
+
+# Application specific temporary files
+uploads/
+storage/
+cache/

Dockerfile

@@ -0,0 +1,36 @@
+# Use the official Golang image as a base image
+FROM golang:1.22-alpine AS builder
+
+# Set the current working directory inside the container
+WORKDIR /app
+
+# Set Go toolchain to local to prevent version conflicts
+ENV GOTOOLCHAIN=local
+
+# Copy go.mod and go.sum files and download dependencies
+COPY go.mod go.sum ./
+RUN go mod download
+
+# Copy the source code into the container
+COPY . .
+
+# Build the Go application
+RUN go build -o /go-auth-api ./cmd/api
+
+# Use a minimal image for the final stage
+FROM alpine:latest
+
+# Install ca-certificates for HTTPS connections
+RUN apk --no-cache add ca-certificates
+
+# Set the current working directory inside the container
+WORKDIR /root/
+
+# Copy the built binary from the builder stage
+COPY --from=builder /go-auth-api .
+
+# Expose the port the application runs on
+EXPOSE 8080
+
+# Run the application
+CMD ["./go-auth-api"]