82 lines
2.1 KiB
Go
82 lines
2.1 KiB
Go
package auth
|
|
|
|
import (
|
|
"encoding/json"
|
|
"log"
|
|
"net/http"
|
|
|
|
"gitea.local/admin/hspguard/internal/util"
|
|
"gitea.local/admin/hspguard/internal/web"
|
|
)
|
|
|
|
type LoginParams struct {
|
|
Email string `json:"email"`
|
|
Password string `json:"password"`
|
|
}
|
|
|
|
func (h *AuthHandler) login(w http.ResponseWriter, r *http.Request) {
|
|
var params LoginParams
|
|
|
|
decoder := json.NewDecoder(r.Body)
|
|
if err := decoder.Decode(¶ms); err != nil {
|
|
web.Error(w, "failed to parse request body", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
if params.Email == "" || params.Password == "" {
|
|
web.Error(w, "missing required fields", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
log.Printf("DEBUG: looking for user with following params: %#v\n", params)
|
|
|
|
user, err := h.repo.FindUserEmail(r.Context(), params.Email)
|
|
if err != nil {
|
|
web.Error(w, "user with provided email does not exists", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
if !util.VerifyPassword(params.Password, user.PasswordHash) {
|
|
web.Error(w, "username or/and password are incorrect", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
access, refresh, err := h.signTokens(&user)
|
|
if err != nil {
|
|
web.Error(w, "failed to generate tokens", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
if err := h.repo.UpdateLastLogin(r.Context(), user.ID); err != nil {
|
|
web.Error(w, "failed to update user's last login", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
encoder := json.NewEncoder(w)
|
|
|
|
type Response struct {
|
|
AccessToken string `json:"access"`
|
|
RefreshToken string `json:"refresh"`
|
|
// fields required for UI in account selector, e.g. email, full name and avatar
|
|
FullName string `json:"full_name"`
|
|
Email string `json:"email"`
|
|
Id string `json:"id"`
|
|
ProfilePicture *string `json:"profile_picture"`
|
|
// Avatar
|
|
}
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
|
|
if err := encoder.Encode(Response{
|
|
AccessToken: access,
|
|
RefreshToken: refresh,
|
|
FullName: user.FullName,
|
|
Email: user.Email,
|
|
Id: user.ID.String(),
|
|
ProfilePicture: user.ProfilePicture,
|
|
// Avatar
|
|
}); err != nil {
|
|
web.Error(w, "failed to encode response", http.StatusInternalServerError)
|
|
}
|
|
}
|