umami/pages/api/auth/login.ts

import { NextApiResponse } from 'next';
import {
  ok,
  unauthorized,
  badRequest,
  checkPassword,
  createSecureToken,
  methodNotAllowed,
} from 'next-basics';
import redis from '@umami/redis-client';
import { getUser } from 'queries';
import { secret } from 'lib/crypto';
import { NextApiRequestQueryBody, User } from 'lib/types';
import { setAuthKey } from 'lib/auth';

export interface LoginRequestBody {
  username: string;
  password: string;
}

export interface LoginResponse {
  token: string;
  user: User;
}

export default async (
  req: NextApiRequestQueryBody<any, LoginRequestBody>,
  res: NextApiResponse<LoginResponse>,
) => {
  if (req.method === 'POST') {
    const { username, password } = req.body;

    if (!username || !password) {
      return badRequest(res);
    }

    const user = await getUser({ username }, { includePassword: true });

    if (user && checkPassword(password, user.password)) {
      if (redis.enabled) {
        const token = await setAuthKey(user);

        return ok(res, { token, user });
      }

      const token = createSecureToken({ userId: user.id }, secret());

      return ok(res, { token, user });
    }

    return unauthorized(res, 'message.incorrect-username-password');
  }

  return methodNotAllowed(res);
};
Refactored SSO process. 2023-04-05 08:29:54 +02:00			`import { NextApiResponse } from 'next';`
Refactor authentication and token handling. 2022-11-09 07:58:52 +01:00			`import {`
			`ok,`
			`unauthorized,`
			`badRequest,`
			`checkPassword,`
			`createSecureToken,`
			`methodNotAllowed,`
			`} from 'next-basics';`
Updated prisma and redis clients. 2022-12-27 06:51:16 +01:00			`import redis from '@umami/redis-client';`
Added checks for CLOUD_MODE. 2023-02-28 05:03:04 +01:00			`import { getUser } from 'queries';`
Use next-basics package. 2022-08-29 05:20:54 +02:00			`import { secret } from 'lib/crypto';`
Added checks for CLOUD_MODE. 2023-02-28 05:03:04 +01:00			`import { NextApiRequestQueryBody, User } from 'lib/types';`
Refactored SSO process. 2023-04-05 08:29:54 +02:00			`import { setAuthKey } from 'lib/auth';`
Initial Typescript models. 2022-11-15 22:21:14 +01:00
			`export interface LoginRequestBody {`
			`username: string;`
			`password: string;`
			`}`

			`export interface LoginResponse {`
			`token: string;`
			`user: User;`
			`}`

			`export default async (`
			`req: NextApiRequestQueryBody<any, LoginRequestBody>,`
			`res: NextApiResponse<LoginResponse>,`
			`) => {`
Refactor authentication and token handling. 2022-11-09 07:58:52 +01:00			`if (req.method === 'POST') {`
			`const { username, password } = req.body;`
Cookie authentication. 2020-07-23 00:46:05 +02:00
Refactor authentication and token handling. 2022-11-09 07:58:52 +01:00			`if (!username \|\| !password) {`
			`return badRequest(res);`
			`}`

Implement react-basics styles. Fix queries. 2022-12-09 08:43:43 +01:00			`const user = await getUser({ username }, { includePassword: true });`
Check username/password. 2021-10-04 05:44:02 +02:00
Refactor authentication and token handling. 2022-11-09 07:58:52 +01:00			`if (user && checkPassword(password, user.password)) {`
			`if (redis.enabled) {`
Refactored SSO process. 2023-04-05 08:29:54 +02:00			`const token = await setAuthKey(user);`
Refactor authentication and token handling. 2022-11-09 07:58:52 +01:00
			`return ok(res, { token, user });`
			`}`

fix redis auth issue 2023-03-03 21:30:12 +01:00			`const token = createSecureToken({ userId: user.id }, secret());`
Added rev_id column. Updated redis calls. 2022-11-08 01:22:49 +01:00
			`return ok(res, { token, user });`
			`}`

Updated language bundles with new keys. 2023-04-08 22:14:22 +02:00			`return unauthorized(res, 'message.incorrect-username-password');`
Cookie authentication. 2020-07-23 00:46:05 +02:00			`}`
Display page views and unique visitors. 2020-07-29 04:04:45 +02:00
Refactor authentication and token handling. 2022-11-09 07:58:52 +01:00			`return methodNotAllowed(res);`
Cookie authentication. 2020-07-23 00:46:05 +02:00			`};`