Create register

2025-05-24 02:02:36 -04:00 · 2024-08-28 18:06:18 +02:00 · 2024-08-28 18:06:18 +02:00 · 306dbbd024
commit 306dbbd024
parent dfc411e5f6
6 changed files with 87 additions and 65 deletions
--- a/auth/auth.go
+++ b/auth/auth.go
@ -1,64 +0,0 @@
-package main
-
-import (
-	"context"
-	"net/http"
-
-	"github.com/alexedwards/argon2id"
-	"github.com/golang-jwt/jwt/v5"
-	"github.com/labstack/echo/v4"
-	"github.com/zoriya/kyoo/keibi/dbc"
-)
-
-type LoginDto struct {
-	Login    string `json:"login" validate:"required"`
-	Password string `json:"password" validate:"required"`
-}
-
-type RegisterDto struct {
-	Username string `json:"username" validate:"required"`
-	Email    string `json:"email" validate:"required,email"`
-	Password string `json:"password" validate:"required"`
-}
-
-func (h *Handler) Register(c echo.Context) error {
-	var req RegisterDto
-	err := c.Bind(&req)
-	if err != nil {
-		return echo.NewHTTPError(http.StatusBadRequest, err.Error())
-	}
-	if err = c.Validate(&req); err != nil {
-		return err
-	}
-
-	pass, err := argon2id.CreateHash(req.Password, argon2id.DefaultParams)
-	if err != nil {
-		return echo.NewHTTPError(400, "Invalid password")
-	}
-
-	duser, err := h.db.CreateUser(context.Background(), dbc.CreateUserParams{
-		Username: req.Username,
-		Email:    req.Email,
-		Password: &pass,
-		Claims:   h.config.DefaultClaims,
-	})
-	if err != nil {
-		return echo.NewHTTPError(409, "Email or username already taken")
-	}
-	user := MapDbUser(&duser)
-	return h.createToken(c, &user)
-}
-
-func (h *Handler) createToken(c echo.Context, user *User) error {
-	claims := &jwt.RegisteredClaims{
-		Subject: user.ID.String(),
-	}
-	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
-	t, err := token.SignedString(h.config.JwtSecret)
-	if err != nil {
-		return err
-	}
-	return c.JSON(http.StatusOK, echo.Map{
-		"token": t,
-	})
-}
--- a/auth/config.go
+++ b/auth/config.go
@ -5,12 +5,14 @@ import (
 	"crypto/rand"
 	"encoding/base64"

+	"github.com/golang-jwt/jwt/v5"
 	"github.com/zoriya/kyoo/keibi/dbc"
 )

 type Configuration struct {
 	JwtSecret     []byte
-	DefaultClaims []byte
+	Issuer        string
+	DefaultClaims jwt.MapClaims
 }

 const (
--- a/auth/main.go
+++ b/auth/main.go
@ -132,6 +132,7 @@ func main() {
 	h.config = conf

 	e.GET("/users", h.ListUsers)
+	e.POST("/users", h.Register)

 	e.Logger.Fatal(e.Start(":4568"))
 }
--- a/auth/session.go
+++ b/auth/session.go
@ -0,0 +1,39 @@
+package main
+
+import (
+	"maps"
+	"net/http"
+	"time"
+
+	"github.com/golang-jwt/jwt/v5"
+	"github.com/labstack/echo/v4"
+)
+
+type LoginDto struct {
+	Login    string `json:"login" validate:"required"`
+	Password string `json:"password" validate:"required"`
+}
+
+func (h *Handler) createToken(c echo.Context, user *User) error {
+	return nil
+}
+
+func (h *Handler) CreateJwt(c echo.Context, user *User) error {
+	claims := maps.Clone(user.Claims)
+	claims["sub"] = user.ID.String()
+	claims["iss"] = h.config.Issuer
+	claims["exp"] = &jwt.NumericDate{
+		Time: time.Now().UTC().Add(time.Hour),
+	}
+	claims["iss"] = &jwt.NumericDate{
+		Time: time.Now().UTC(),
+	}
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
+	t, err := token.SignedString(h.config.JwtSecret)
+	if err != nil {
+		return err
+	}
+	return c.JSON(http.StatusOK, echo.Map{
+		"token": t,
+	})
+}
--- a/auth/sqlc.yaml
+++ b/auth/sqlc.yaml
@ -19,5 +19,10 @@ sql:
          go_type:
            import: "github.com/google/uuid"
            type: "UUID"
+        - column: "users.claims"
+          go_type:
+            import: "github.com/golang-jwt/jwt/v5"
+            package: "jwt"
+            type: "MapClaims"


--- a/auth/users.go
+++ b/auth/users.go
@ -2,8 +2,11 @@ package main

 import (
 	"context"
+	"net/http"
 	"time"

+	"github.com/alexedwards/argon2id"
+	"github.com/golang-jwt/jwt/v5"
 	"github.com/google/uuid"
 	"github.com/labstack/echo/v4"
 	"github.com/zoriya/kyoo/keibi/dbc"
@ -15,6 +18,7 @@ type User struct {
 	Email       string                `json:"email"`
 	CreatedDate time.Time             `json:"createdDate"`
 	LastSeen    time.Time             `json:"lastSeen"`
+	Claims      jwt.MapClaims         `json:"claims"`
 	Oidc        map[string]OidcHandle `json:"oidc,omitempty"`
 }

@ -24,6 +28,12 @@ type OidcHandle struct {
 	ProfileUrl *string `json:"profileUrl"`
 }

+type RegisterDto struct {
+	Username string `json:"username" validate:"required"`
+	Email    string `json:"email" validate:"required,email"`
+	Password string `json:"password" validate:"required"`
+}
+
 func MapDbUser(user *dbc.User) User {
 	return User{
 		ID:          user.ID,
@ -31,6 +41,7 @@ func MapDbUser(user *dbc.User) User {
 		Email:       user.Email,
 		CreatedDate: user.CreatedDate,
 		LastSeen:    user.LastSeen,
+		Claims:      user.Claims,
 		Oidc:        nil,
 	}
 }
@ -65,3 +76,31 @@ func (h *Handler) ListUsers(c echo.Context) error {
 	}
 	return c.JSON(200, ret)
 }
+
+func (h *Handler) Register(c echo.Context) error {
+	var req RegisterDto
+	err := c.Bind(&req)
+	if err != nil {
+		return echo.NewHTTPError(http.StatusBadRequest, err.Error())
+	}
+	if err = c.Validate(&req); err != nil {
+		return err
+	}
+
+	pass, err := argon2id.CreateHash(req.Password, argon2id.DefaultParams)
+	if err != nil {
+		return echo.NewHTTPError(400, "Invalid password")
+	}
+
+	duser, err := h.db.CreateUser(context.Background(), dbc.CreateUserParams{
+		Username: req.Username,
+		Email:    req.Email,
+		Password: &pass,
+		Claims:   h.config.DefaultClaims,
+	})
+	if err != nil {
+		return echo.NewHTTPError(409, "Email or username already taken")
+	}
+	user := MapDbUser(&duser)
+	return h.createToken(c, &user)
+}