56 lines
1.5 KiB
Go
56 lines
1.5 KiB
Go
package routes
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
|
|
"git.artlef.fr/bibliomane/internal/appcontext"
|
|
"git.artlef.fr/bibliomane/internal/dto"
|
|
"git.artlef.fr/bibliomane/internal/i18nresource"
|
|
"git.artlef.fr/bibliomane/internal/jwtauth"
|
|
"git.artlef.fr/bibliomane/internal/model"
|
|
"git.artlef.fr/bibliomane/internal/myvalidator"
|
|
"github.com/gin-gonic/gin"
|
|
"golang.org/x/crypto/bcrypt"
|
|
"gorm.io/gorm"
|
|
)
|
|
|
|
func PostLoginHandler(ac appcontext.AppContext) {
|
|
|
|
var username string
|
|
|
|
if !ac.Config.DemoMode {
|
|
var user dto.UserLogin
|
|
err := ac.C.ShouldBindJSON(&user)
|
|
if err != nil {
|
|
myvalidator.ReturnErrorsAsJsonResponse(&ac, err)
|
|
return
|
|
}
|
|
|
|
if !ac.Config.DemoMode && !isUserAndPasswordOk(ac.Db, user.Username, user.Password) {
|
|
ac.C.JSON(http.StatusUnauthorized,
|
|
gin.H{"error": i18nresource.GetTranslatedMessage(&ac, "InvalidCredentials")})
|
|
return
|
|
}
|
|
username = user.Username
|
|
} else {
|
|
username = ac.Config.DemoUsername
|
|
}
|
|
|
|
var jwtToken string
|
|
jwtToken, err := jwtauth.GenerateJwtToken(username)
|
|
if err != nil {
|
|
ac.C.JSON(http.StatusUnauthorized,
|
|
gin.H{"error": fmt.Errorf("Error when generating JWT token: %w", err)})
|
|
return
|
|
}
|
|
ac.C.JSON(http.StatusOK, gin.H{"message": i18nresource.GetTranslatedMessage(&ac, "AuthenticationSuccess"), "token": jwtToken})
|
|
}
|
|
|
|
func isUserAndPasswordOk(db *gorm.DB, username string, password string) bool {
|
|
var user model.User
|
|
db.Where("name = ?", username).First(&user)
|
|
err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(password))
|
|
return err == nil
|
|
}
|