package auth import ( "encoding/json" "log" "net/http" "gitea.local/admin/hspguard/internal/util" "gitea.local/admin/hspguard/internal/web" ) type LoginParams struct { Email string `json:"email"` Password string `json:"password"` } func (h *AuthHandler) login(w http.ResponseWriter, r *http.Request) { var params LoginParams decoder := json.NewDecoder(r.Body) if err := decoder.Decode(¶ms); err != nil { web.Error(w, "failed to parse request body", http.StatusBadRequest) return } if params.Email == "" || params.Password == "" { web.Error(w, "missing required fields", http.StatusBadRequest) return } log.Printf("DEBUG: looking for user with following params: %#v\n", params) user, err := h.repo.FindUserEmail(r.Context(), params.Email) if err != nil { web.Error(w, "user with provided email does not exists", http.StatusBadRequest) return } if !util.VerifyPassword(params.Password, user.PasswordHash) { web.Error(w, "username or/and password are incorrect", http.StatusBadRequest) return } access, refresh, err := h.signTokens(&user) if err != nil { web.Error(w, "failed to generate tokens", http.StatusInternalServerError) return } if err := h.repo.UpdateLastLogin(r.Context(), user.ID); err != nil { web.Error(w, "failed to update user's last login", http.StatusInternalServerError) return } encoder := json.NewEncoder(w) type Response struct { AccessToken string `json:"access"` RefreshToken string `json:"refresh"` // fields required for UI in account selector, e.g. email, full name and avatar FullName string `json:"full_name"` Email string `json:"email"` Id string `json:"id"` ProfilePicture *string `json:"profile_picture"` // Avatar } w.Header().Set("Content-Type", "application/json") if err := encoder.Encode(Response{ AccessToken: access, RefreshToken: refresh, FullName: user.FullName, Email: user.Email, Id: user.ID.String(), ProfilePicture: user.ProfilePicture, // Avatar }); err != nil { web.Error(w, "failed to encode response", http.StatusInternalServerError) } }