corrad-software/corrad-af-2024
Template
9
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity
corrad-af-2024/server/api/auth/login.post.js
corrad-software 46b84b1535
Initial commit
2024-08-26 09:09:46 +08:00

94 lines
2.0 KiB
JavaScript
Raw Blame History

import sha256 from "crypto-js/sha256.js";
import jwt from "jsonwebtoken";
const ENV = useRuntimeConfig();
export default defineEventHandler(async (event) => {
try {
const { username, password } = await readBody(event);
if (!username || !password) {
return {
statusCode: 400,
message: "Username and password are required",
};
}
const user = await prisma.user.findFirst({
where: {
userUsername: username,
},
});
if (!user) {
return {
statusCode: 404,
message: "User does not exist",
};
}
const hashedPassword = sha256(password).toString();
if (user.userPassword !== hashedPassword) {
return {
statusCode: 401,
message: "Invalid password",
};
}
// Get user roles
const roles = await prisma.userrole.findMany({
where: {
userRoleUserID: user.userID,
},
select: {
role: {
select: {
roleName: true,
},
},
},
});
const roleNames = roles.map((r) => r.role.roleName);
const accessToken = generateAccessToken({
username: user.userUsername,
roles: roleNames,
});
const refreshToken = generateRefreshToken({
username: user.userUsername,
roles: roleNames,
});
// Set cookie httpOnly
event.res.setHeader("Set-Cookie", [
`accessToken=${accessToken}; HttpOnly; Secure; SameSite=Lax; Path=/`,
`refreshToken=${refreshToken}; HttpOnly; Secure; SameSite=Lax; Path=/`,
]);
return {
statusCode: 200,
message: "Login success",
data: {
username: user.userUsername,
roles: roleNames,
},
};
} catch (error) {
console.log(error);
return {
statusCode: 500,
message: "Internal server error",
};
}
});
function generateAccessToken(user) {
return jwt.sign(user, ENV.auth.secretAccess, { expiresIn: "1d" });
}
function generateRefreshToken(user) {
return jwt.sign(user, ENV.auth.secretRefresh, { expiresIn: "30d" });
}
Reference in New Issue View Git Blame Copy Permalink