Initial Typescript models.

2026-02-12 08:37:13 +01:00 · 2022-11-15 13:21:14 -08:00 · 2022-11-15 13:21:14 -08:00 · 0aaba8cbd1
commit 0aaba8cbd1
parent 04e9f06e93
74 changed files with 1144 additions and 768 deletions
--- a/pages/api/auth/login.ts
+++ b/pages/api/auth/login.ts
@ -0,0 +1,60 @@
+import {
+  ok,
+  unauthorized,
+  badRequest,
+  checkPassword,
+  createSecureToken,
+  methodNotAllowed,
+  getRandomChars,
+} from 'next-basics';
+import { getUser } from 'queries';
+import { secret } from 'lib/crypto';
+import redis from 'lib/redis';
+import { NextApiRequestQueryBody } from 'interface/api/nextApi';
+import { NextApiResponse } from 'next';
+import { User } from 'interface/api/models';
+
+export interface LoginRequestBody {
+  username: string;
+  password: string;
+}
+
+export interface LoginResponse {
+  token: string;
+  user: User;
+}
+
+export default async (
+  req: NextApiRequestQueryBody<any, LoginRequestBody>,
+  res: NextApiResponse<LoginResponse>,
+) => {
+  if (req.method === 'POST') {
+    const { username, password } = req.body;
+
+    if (!username || !password) {
+      return badRequest(res);
+    }
+
+    const user = await getUser({ username }, true);
+
+    if (user && checkPassword(password, user.password)) {
+      if (redis.enabled) {
+        const key = `auth:${getRandomChars(32)}`;
+
+        await redis.set(key, user);
+
+        const token = createSecureToken(key, secret());
+
+        return ok(res, { token, user });
+      }
+
+      const token = createSecureToken(user.id, secret());
+
+      return ok(res, { token, user });
+    }
+
+    return unauthorized(res, 'Incorrect username and/or password.');
+  }
+
+  return methodNotAllowed(res);
+};