eric/express-twtkpr
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
298f267742e98018997244474f56ac5ffde927f8
express-twtkpr/dist/src/middlewares/postHandler/login.js
Eric Woodward 298f267742 update missed build files 
update link to repo (thanks to @<bender https://twtxt.net/user/bender/twtxt.txt>)

update to v0.8.2
2026-03-19 22:16:07 -04:00

57 lines
2.2 KiB
JavaScript
Raw Blame History

import bcrypt from 'bcryptjs';
import Debug from 'debug';
import { env } from '../../lib/env.js';
import refreshTokensDB from '../../lib/refreshTokensDB.js';
import userDB from '../../lib/userDB.js';
import { generateAccessToken, generateEtag, generateRefreshToken, } from '../../lib/utils.js';
const debug = Debug('twtkpr:login');
/**
* Handles login request and (if successful) returns the JWT access token wile setting the refresh n the
*
* @param req
* @param res
* @returns
*/
export default async function loginHandler(req, res, config) {
const { accessSecret, privateDirectory, refreshSecret } = config;
debug('starting');
try {
const tokens = await refreshTokensDB(privateDirectory);
const users = await userDB(privateDirectory);
const { username, password, rememberToggle } = req.body;
if (!username || !password || !users.get(username)) {
debug('no values found', username);
res.status(401).end();
return;
}
const isMatch = await bcrypt.compare(password, users.get(username));
if (!isMatch) {
privateDirectory;
debug('no match');
res.status(401).end();
return;
}
debug('generating tokens');
const accessToken = generateAccessToken(username, accessSecret);
debug(`access token: ${accessToken}`);
const refreshToken = generateRefreshToken(username, refreshSecret, !!rememberToggle);
debug(`refresh token: ${refreshToken}`);
debug('setting tokens');
tokens.set(username, (tokens.get(username) || []).concat([refreshToken]));
debug('setting refreshToken cookie');
res.cookie('refreshToken', refreshToken, {
httpOnly: true,
secure: env.NODE_ENV === 'production',
sameSite: 'strict',
// 1 hour or 7 days
maxAge: (rememberToggle ? 1 : 7 * 24) * 60 * 60 * 1000,
});
debug('setting response');
res.set('etag', generateEtag(accessToken)).status(200).send(accessToken);
}
catch (err) {
console.error(err);
res.status(500).end();
}
}
//# sourceMappingURL=login.js.map
Reference in New Issue View Git Blame Copy Permalink