mirror of
https://github.com/glimpse-app/server.git
synced 2025-04-02 10:52:45 -04:00
login endpoint
This commit is contained in:
array-in-a-matrix
parent
db04c12e34
commit
ea336b962f
1 changed files with 34 additions and 6 deletions
|
|
@ -18,6 +18,7 @@ type
|
||||||
|
|
||||||
# creates a url safe login token
|
# creates a url safe login token
|
||||||
# TODO: make sure this is secure + hash this maybe?
|
# TODO: make sure this is secure + hash this maybe?
|
||||||
|
# https://stackoverflow.com/questions/41432816/generate-totally-unique-token-that-has-never-been-used-using-php
|
||||||
proc generateToken(username: string = "", length: int = 20): string =
|
proc generateToken(username: string = "", length: int = 20): string =
|
||||||
for _ in 0..length:
|
for _ in 0..length:
|
||||||
with result:
|
with result:
|
||||||
|
|
@ -28,7 +29,7 @@ proc generateToken(username: string = "", length: int = 20): string =
|
||||||
|
|
||||||
# creates a new user object and sets default values, recommended by the norm documentation
|
# creates a new user object and sets default values, recommended by the norm documentation
|
||||||
proc newUser(username: string = "", email: string = "", password: string = ""): User =
|
proc newUser(username: string = "", email: string = "", password: string = ""): User =
|
||||||
User(username: username, email: email, password: password, token: generateToken(username))
|
User(username: username, email: email, password: password, token: generateToken())
|
||||||
|
|
||||||
# creates a new file object and sets default values, recommended by the norm documentation
|
# creates a new file object and sets default values, recommended by the norm documentation
|
||||||
func newFile(user: User = newUser(), path: string = "", tags: string = ""): File =
|
func newFile(user: User = newUser(), path: string = "", tags: string = ""): File =
|
||||||
|
|
@ -42,6 +43,10 @@ proc validToken(db: DbConn, user: var User, token: string): bool =
|
||||||
except NotFoundError:
|
except NotFoundError:
|
||||||
return false
|
return false
|
||||||
|
|
||||||
|
proc genNewToken(db: DbConn, user: var User) =
|
||||||
|
user.token = generateToken()
|
||||||
|
db.update(user)
|
||||||
|
|
||||||
# using sqlite as it makes setup faster
|
# using sqlite as it makes setup faster
|
||||||
# once project is stable enough this will switch to postgresql
|
# once project is stable enough this will switch to postgresql
|
||||||
let db = open("storage.db", "", "", "")
|
let db = open("storage.db", "", "", "")
|
||||||
|
|
@ -77,12 +82,35 @@ routes:
|
||||||
resp user.token
|
resp user.token
|
||||||
|
|
||||||
#? endpoint POST `/api/login`
|
#? endpoint POST `/api/login`
|
||||||
#[ request parameters:
|
#[ request parameters:
|
||||||
???
|
token - string - required
|
||||||
|
OR
|
||||||
|
username - string - required
|
||||||
|
password - string - required
|
||||||
]#
|
]#
|
||||||
# of "login":
|
of "login":
|
||||||
# TODO: replace old token with new provided one after successful login
|
# generates a new login token after signin
|
||||||
# resp user.token
|
var user = newUser()
|
||||||
|
|
||||||
|
if not @"token".isEmptyOrWhitespace():
|
||||||
|
|
||||||
|
if not db.validToken(user, @"token"):
|
||||||
|
resp "Login failed, Invalid token!"
|
||||||
|
|
||||||
|
db.genNewToken(user)
|
||||||
|
|
||||||
|
else:
|
||||||
|
var testUser = newUser()
|
||||||
|
try:
|
||||||
|
db.select(user, "username = ?", @"username")
|
||||||
|
db.select(testUser, "password = ?", @"password")
|
||||||
|
except NotFoundError:
|
||||||
|
resp "Login failed, Incorrect username and/or password!"
|
||||||
|
|
||||||
|
if user.username == testUser.username and user.password == testUser.password:
|
||||||
|
db.genNewToken(user)
|
||||||
|
|
||||||
|
resp user.token
|
||||||
|
|
||||||
#? endpoint POST `/api/getItem`
|
#? endpoint POST `/api/getItem`
|
||||||
#[ request parameters:
|
#[ request parameters:
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue