umami/pages/api/auth/login.js

import { checkPassword, createSecureToken } from 'lib/crypto';
import { getAccountByUsername } from 'lib/queries';
import { ok, unauthorized, badRequest } from 'lib/response';

export default async (req, res) => {
  const { username, password } = req.body;

  if (!username || !password) {
    return badRequest(res);
  }

  const account = await getAccountByUsername(username);

  if (account && (await checkPassword(password, account.password))) {
    const { user_id, username, is_admin } = account;
    const user = { user_id, username, is_admin };
    const token = await createSecureToken(user);

    return ok(res, { token, user });
  }

  return unauthorized(res);
};
Changed JWT implementation. 2020-07-23 06:33:17 +02:00			`import { checkPassword, createSecureToken } from 'lib/crypto';`
Refactor database queries. 2020-08-12 07:24:41 +02:00			`import { getAccountByUsername } from 'lib/queries';`
Check username/password. 2021-10-04 05:44:02 +02:00			`import { ok, unauthorized, badRequest } from 'lib/response';`
Cookie authentication. 2020-07-23 00:46:05 +02:00
Switch to json web tokens. 2020-07-23 05:45:09 +02:00			`export default async (req, res) => {`
			`const { username, password } = req.body;`
Cookie authentication. 2020-07-23 00:46:05 +02:00
Check username/password. 2021-10-04 05:44:02 +02:00			`if (!username \|\| !password) {`
			`return badRequest(res);`
			`}`

Refactor database queries. 2020-08-12 07:24:41 +02:00			`const account = await getAccountByUsername(username);`
Cookie authentication. 2020-07-23 00:46:05 +02:00
Switch to json web tokens. 2020-07-23 05:45:09 +02:00			`if (account && (await checkPassword(password, account.password))) {`
			`const { user_id, username, is_admin } = account;`
Replaced redux with zustand. Fixed login issue, closes #980. 2022-02-23 07:47:59 +01:00			`const user = { user_id, username, is_admin };`
			`const token = await createSecureToken(user);`
Switch to json web tokens. 2020-07-23 05:45:09 +02:00
Replaced redux with zustand. Fixed login issue, closes #980. 2022-02-23 07:47:59 +01:00			`return ok(res, { token, user });`
Cookie authentication. 2020-07-23 00:46:05 +02:00			`}`
Display page views and unique visitors. 2020-07-29 04:04:45 +02:00
Handle website delete. Added response helper functions. 2020-08-08 02:19:42 +02:00			`return unauthorized(res);`
Cookie authentication. 2020-07-23 00:46:05 +02:00			`};`