initial webapp

2025-07-15 18:58:21 +02:00
parent 835b73552b
commit 253111f741
32 changed files with 3885 additions and 77 deletions
--- a/app/api/auth/route.ts
+++ b/app/api/auth/route.ts
@@ -0,0 +1,108 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { db, users } from '@/lib/db';
+import { generateMemorableToken, isValidToken } from '@/lib/auth/tokens';
+import { setTokenCookie, getTokenCookie } from '@/lib/auth/cookies';
+import { eq } from 'drizzle-orm';
+
+export async function GET(request: NextRequest) {
+  try {
+    // Check if user already has a token
+    const existingToken = await getTokenCookie();
+
+    if (existingToken) {
+      // Verify token exists in database
+      const [user] = await db.select().from(users).where(eq(users.token, existingToken));
+
+      if (user) {
+        return NextResponse.json({
+          authenticated: true,
+          token: existingToken,
+          userId: user.id,
+        });
+      }
+    }
+
+    return NextResponse.json({ authenticated: false });
+  } catch (error) {
+    console.error('Auth check error:', error);
+    return NextResponse.json({ authenticated: false }, { status: 500 });
+  }
+}
+
+export async function POST(request: NextRequest) {
+  try {
+    const body = await request.json();
+    const { action, token } = body;
+
+    if (action === 'create') {
+      // Generate new token and create user
+      const newToken = generateMemorableToken();
+
+      const [newUser] = await db
+        .insert(users)
+        .values({
+          token: newToken,
+        })
+        .returning();
+
+      await setTokenCookie(newToken);
+
+      return NextResponse.json({
+        success: true,
+        token: newToken,
+        userId: newUser.id,
+      });
+    }
+
+    if (action === 'login' && token) {
+      // Validate token format
+      if (!isValidToken(token)) {
+        return NextResponse.json(
+          {
+            success: false,
+            error: 'Invalid token format',
+          },
+          { status: 400 },
+        );
+      }
+
+      // Check if token exists
+      const [user] = await db.select().from(users).where(eq(users.token, token));
+
+      if (!user) {
+        return NextResponse.json(
+          {
+            success: false,
+            error: 'Token not found',
+          },
+          { status: 404 },
+        );
+      }
+
+      await setTokenCookie(token);
+
+      return NextResponse.json({
+        success: true,
+        token,
+        userId: user.id,
+      });
+    }
+
+    return NextResponse.json(
+      {
+        success: false,
+        error: 'Invalid action',
+      },
+      { status: 400 },
+    );
+  } catch (error) {
+    console.error('Auth error:', error);
+    return NextResponse.json(
+      {
+        success: false,
+        error: 'Internal server error',
+      },
+      { status: 500 },
+    );
+  }
+}