Initial commit

Created from https://vercel.com/new
2021-12-08 18:25:42 +00:00 · 2021-12-08 18:25:42 +00:00 · 4047a7ec23
commit 4047a7ec23
378 changed files with 29334 additions and 0 deletions
--- a/pages/api/auth/login.js
+++ b/pages/api/auth/login.js
@ -0,0 +1,32 @@
+import { serialize } from 'cookie';
+import { checkPassword, createSecureToken } from 'lib/crypto';
+import { getAccountByUsername } from 'lib/queries';
+import { AUTH_COOKIE_NAME } from 'lib/constants';
+import { ok, unauthorized, badRequest } from 'lib/response';
+
+export default async (req, res) => {
+  const { username, password } = req.body;
+
+  if (!username || !password) {
+    return badRequest(res);
+  }
+
+  const account = await getAccountByUsername(username);
+
+  if (account && (await checkPassword(password, account.password))) {
+    const { user_id, username, is_admin } = account;
+    const token = await createSecureToken({ user_id, username, is_admin });
+    const cookie = serialize(AUTH_COOKIE_NAME, token, {
+      path: '/',
+      httpOnly: true,
+      sameSite: true,
+      maxAge: 60 * 60 * 24 * 365,
+    });
+
+    res.setHeader('Set-Cookie', [cookie]);
+
+    return ok(res, { token });
+  }
+
+  return unauthorized(res);
+};
--- a/pages/api/auth/logout.js
+++ b/pages/api/auth/logout.js
@ -0,0 +1,15 @@
+import { serialize } from 'cookie';
+import { AUTH_COOKIE_NAME } from 'lib/constants';
+import { ok } from 'lib/response';
+
+export default async (req, res) => {
+  const cookie = serialize(AUTH_COOKIE_NAME, '', {
+    path: '/',
+    httpOnly: true,
+    maxAge: 0,
+  });
+
+  res.setHeader('Set-Cookie', [cookie]);
+
+  return ok(res);
+};
--- a/pages/api/auth/verify.js
+++ b/pages/api/auth/verify.js
@ -0,0 +1,12 @@
+import { useAuth } from 'lib/middleware';
+import { ok, unauthorized } from 'lib/response';
+
+export default async (req, res) => {
+  await useAuth(req, res);
+
+  if (req.auth) {
+    return ok(res, req.auth);
+  }
+
+  return unauthorized(res);
+};