sam/Hyperia
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6f9ed49b2e3f5b7e8faca69b5b66fc4f959ad0de
Hyperia/server/auth.js
metacryst 6f9ed49b2e Javascript
2025-11-08 07:03:30 -06:00

71 lines
2.1 KiB
JavaScript
Raw Blame History

import dotenv from 'dotenv';
import chalk from 'chalk';
import jwt from 'jsonwebtoken'
import argon2 from 'argon2'
import { randomUUID } from 'node:crypto'
dotenv.config();
export default class AuthHandler {
ips = new Map()
#secret
constructor() {
this.#secret = process.env.JWT_SECRET;
}
isLoggedInUser(req, res) {
const token = req.cookies.auth_token; // read cookie
if (!token) {
return false
}
try {
return true
} catch (err) {
return false
}
}
async login(req, res) {
const { email, password } = req.body;
let foundUser = global.db.get.userByEmail(email)
if(!foundUser) {
res.status(400).json({ error: 'Incorrect email.' });
return;
}
const storedHash = foundUser.password
const valid = await argon2.verify(storedHash, password);
if (!valid) {
res.status(400).json({ error: 'Incorrect password.' });
} else {
const payload = { id: foundUser.id };
const secret = process.env.JWT_SECRET;
const options = { expiresIn: "2h" };
const token = jwt.sign(payload, secret, options);
res.cookie("auth_token", token, {
httpOnly: true, // cannot be accessed by JS
secure: process.env.ENV === "production", // only over HTTPS
sameSite: "lax", // like SameSiteLaxMode
maxAge: 2 * 60 * 60 * 1000, // 2 hours in milliseconds
path: "/", // available on entire site
domain: process.env.ENV === "production" ? "." + process.env.BASE_URL : undefined
});
res.redirect("/")
}
}
logout(req, res) {
res.cookie('auth_token', '', {
httpOnly: true,
secure: process.env.NODE_ENV === 'production',
sameSite: 'lax',
maxAge: 0, // expire immediately
path: '/',
});
res.redirect("/")
}
}
Reference in New Issue View Git Blame Copy Permalink