portfolio/api/handlers/authHandler.go

package handlers

import (
	"context"
	"encoding/json"
	"net/http"
	"portfolio/api/service/bcrypt"
	"portfolio/api/service/jwt"
	"portfolio/database/ent"
	"portfolio/database/query"
	"time"
)

func Login(w http.ResponseWriter, r *http.Request) {
	var u *ent.User

	isHtmx := r.Header.Get("HX-Request")

	if isHtmx == "true" {
		u = &ent.User{
			Email:    r.PostFormValue("email"),
			Password: r.PostFormValue("password"),
		}
	} else {
		err := json.NewDecoder(r.Body).Decode(&u)
		if err != nil {
			InternalServerErrorHandler(w, err)
		}
	}

	User, err := query.GetLogin(context.Background(), u)
	if err != nil {
		UnprocessableEntityHandler(w, err)
		return
	}

	if bcrypt.CheckPasswordHash(u.Password, User.Password) {

		jwtToken := jwt.CreateUserJWT(User.Name, User.ID, string(User.Role))

		if jwtToken != "" {

			cookie := &http.Cookie{Name: "jwt",
				Value: jwtToken,
				//HttpOnly: true,
				//Secure:   true,
				SameSite: http.SameSiteLaxMode,
				Expires:  time.Now().Add(24 * time.Hour),
			}

			http.SetCookie(w, cookie)

			w.WriteHeader(http.StatusOK)
			_, err = w.Write([]byte("login success"))
			return
		} else {
			InternalServerErrorHandler(w, err)
			return
		}

	} else {
		UnauthorizedHandler(w)
		return
	}
}

func CanEdit(w http.ResponseWriter, r *http.Request) {

	_, audience, err := jwt.VerifyUser(r)
	if err != nil {
		w.WriteHeader(http.StatusOK)
		w.Write([]byte(""))
		return
	}
	if audience == "owner" || audience == "visitor" {
		w.WriteHeader(http.StatusOK)
		w.Write([]byte("<button class=\"button is-link\">Edit</button>"))
	} else {
		w.WriteHeader(http.StatusOK)
		w.Write([]byte(""))
	}
	return
}
refactor + docs added 2024-05-16 17:59:21 +02:00			`package handlers`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00
			`import (`
			`"context"`
			`"encoding/json"`
			`"net/http"`
Added jwt to cookie + database change 2024-05-19 17:49:20 +02:00			`"portfolio/api/service/bcrypt"`
			`"portfolio/api/service/jwt"`
MASSIVE REFACTOR STRUCTURE 2024-05-16 17:36:44 +02:00			`"portfolio/database/ent"`
			`"portfolio/database/query"`
security 2024-05-19 23:57:13 +02:00			`"time"`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00			`)`

			`func Login(w http.ResponseWriter, r *http.Request) {`
			`var u *ent.User`

			`isHtmx := r.Header.Get("HX-Request")`

			`if isHtmx == "true" {`
			`u = &ent.User{`
login added mostly done 2024-05-19 23:56:53 +02:00			`Email: r.PostFormValue("email"),`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00			`Password: r.PostFormValue("password"),`
			`}`
			`} else {`
			`err := json.NewDecoder(r.Body).Decode(&u)`
			`if err != nil {`
Added jwt to cookie + database change 2024-05-19 17:49:20 +02:00			`InternalServerErrorHandler(w, err)`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00			`}`
			`}`

Added jwt to cookie + database change 2024-05-19 17:49:20 +02:00			`User, err := query.GetLogin(context.Background(), u)`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00			`if err != nil {`
Added jwt to cookie + database change 2024-05-19 17:49:20 +02:00			`UnprocessableEntityHandler(w, err)`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00			`return`
			`}`

			`if bcrypt.CheckPasswordHash(u.Password, User.Password) {`

login added mostly done 2024-05-19 23:56:53 +02:00			`jwtToken := jwt.CreateUserJWT(User.Name, User.ID, string(User.Role))`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00
Added jwt to cookie + database change 2024-05-19 17:49:20 +02:00			`if jwtToken != "" {`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00
login added mostly done 2024-05-19 23:56:53 +02:00			`cookie := &http.Cookie{Name: "jwt",`
tset 2024-05-20 00:04:31 +02:00			`Value: jwtToken,`
			`//HttpOnly: true,`
			`//Secure: true,`
			`SameSite: http.SameSiteLaxMode,`
security 2024-05-19 23:57:13 +02:00			`Expires: time.Now().Add(24 * time.Hour),`
login added mostly done 2024-05-19 23:56:53 +02:00			`}`

Added jwt to cookie + database change 2024-05-19 17:49:20 +02:00			`http.SetCookie(w, cookie)`

			`w.WriteHeader(http.StatusOK)`
			`_, err = w.Write([]byte("login success"))`
			`return`
			`} else {`
			`InternalServerErrorHandler(w, err)`
			`return`
			`}`

			`} else {`
			`UnauthorizedHandler(w)`
folder structure refactor volgens doc 2024-05-15 15:27:18 +02:00			`return`
			`}`
			`}`
make projects editable ui added TODO add option to save changes 2024-06-25 00:26:56 +02:00
			`func CanEdit(w http.ResponseWriter, r *http.Request) {`

Save project edits button functionality added 2024-07-04 12:02:43 +02:00			`_, audience, err := jwt.VerifyUser(r)`
			`if err != nil {`
			`w.WriteHeader(http.StatusOK)`
			`w.Write([]byte(""))`
make projects editable ui added TODO add option to save changes 2024-06-25 00:26:56 +02:00			`return`
			`}`
Save project edits button functionality added 2024-07-04 12:02:43 +02:00			`if audience == "owner" \|\| audience == "visitor" {`
			`w.WriteHeader(http.StatusOK)`
			`w.Write([]byte("<button class=\"button is-link\">Edit</button>"))`
			`} else {`
			`w.WriteHeader(http.StatusOK)`
			`w.Write([]byte(""))`
			`}`
			`return`
make projects editable ui added TODO add option to save changes 2024-06-25 00:26:56 +02:00			`}`