-
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Have svelte put token into cookie for client
- Loading branch information
1 parent
b0e253d
commit 7845b1c
Showing
9 changed files
with
238 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,10 @@ | ||
| import type { Handle } from '@sveltejs/kit'; | ||
|
|
||
| export const handle: Handle = async ({ event, resolve }) => { | ||
| // Get the JWT from cookies | ||
| const jwt = event.cookies.get('jwt'); | ||
| // Set the user as authenticated in the locals object if JWT exists | ||
| event.locals.authenticated = !!jwt; | ||
|
|
||
| return await resolve(event); | ||
| }; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,86 @@ | ||
| import { isAuthenticated } from './stores/auth'; | ||
| import { goto } from '$app/navigation'; | ||
| import { env } from '$env/dynamic/private'; | ||
|
|
||
| interface AuthResponse { | ||
| ok: boolean; | ||
| error?: string; | ||
| } | ||
|
|
||
| export async function login(username: string, password: string): Promise<AuthResponse> { | ||
| try { | ||
| const response = await fetch(`${env.API_URL}/auth/login`, { | ||
| method: 'POST', | ||
| headers: { | ||
| 'Content-Type': 'application/json' | ||
| }, | ||
| body: JSON.stringify({ username, password }) | ||
| }); | ||
|
|
||
| if (response.ok) { | ||
| isAuthenticated.set(true); | ||
| return { ok: true }; | ||
| } | ||
|
|
||
| return { | ||
| ok: false, | ||
| error: 'Invalid credentials' | ||
| }; | ||
| } catch (error) { | ||
| console.error('Could not login', error); | ||
| return { | ||
| ok: false, | ||
| error: 'An error occurred during login' | ||
| }; | ||
| } | ||
| } | ||
|
|
||
| export async function register( | ||
| username: string, | ||
| email: string, | ||
| password: string, | ||
| passwordConfirmation: string | ||
| ): Promise<AuthResponse> { | ||
| try { | ||
| const response = await fetch(`${env.API_URL}/auth/register`, { | ||
| method: 'POST', | ||
| headers: { | ||
| 'Content-Type': 'application/json' | ||
| }, | ||
| body: JSON.stringify({ | ||
| username, | ||
| email, | ||
| password, | ||
| password_confirmation: passwordConfirmation | ||
| }) | ||
| }); | ||
|
|
||
| if (response.ok) { | ||
| isAuthenticated.set(true); | ||
| return { ok: true }; | ||
| } | ||
|
|
||
| return { | ||
| ok: false, | ||
| error: 'Registration failed' | ||
| }; | ||
| } catch (error) { | ||
| console.error('Could not register', error); | ||
| return { | ||
| ok: false, | ||
| error: 'An error occurred during registration' | ||
| }; | ||
| } | ||
| } | ||
|
|
||
| export async function logout() { | ||
| try { | ||
| await fetch(`${env.API_URL}/auth/logout`, { | ||
| method: 'POST' | ||
| }); | ||
| isAuthenticated.set(false); | ||
| goto('/login'); | ||
| } catch (error) { | ||
| console.error('Logout failed:', error); | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,3 @@ | ||
| import { writable } from 'svelte/store'; | ||
|
|
||
| export const isAuthenticated = writable<boolean>(false); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| import type { LayoutServerLoad } from './$types'; | ||
|
|
||
| export const load: LayoutServerLoad = async ({ locals }) => { | ||
| return { | ||
| authenticated: locals.authenticated | ||
| }; | ||
| }; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,47 @@ | ||
| import { fail, redirect } from '@sveltejs/kit'; | ||
| import type { Actions } from './$types'; | ||
| import { env } from '$env/dynamic/private'; | ||
|
|
||
| export const actions = { | ||
| default: async ({ request, cookies }) => { | ||
| const data = await request.formData(); | ||
| const username = data.get('username'); | ||
| const password = data.get('password'); | ||
|
|
||
| // Basic validation | ||
| if (!username || !password) { | ||
| return fail(400, { | ||
| error: 'Username and password are required', | ||
| username: username?.toString() | ||
| }); | ||
| } | ||
|
|
||
| const response = await fetch(`${env.API_URL}/auth/login`, { | ||
| method: 'POST', | ||
| headers: { | ||
| 'Content-Type': 'application/json' | ||
| }, | ||
| body: JSON.stringify({ | ||
| username: username.toString(), | ||
| password: password.toString() | ||
| }) | ||
| }); | ||
|
|
||
| if (!response.ok) { | ||
| const errorData = await response.json(); | ||
| return fail(response.status, { | ||
| error: errorData.message || 'Invalid credentials', | ||
| username: username.toString() | ||
| }); | ||
| } | ||
| const { token } = await response.json(); | ||
|
|
||
| cookies.set('jwt', token, { | ||
| path: '/', | ||
| expires: new Date(Date.now() + 1000 * 60 * 60 * 24), // 24 hours | ||
| sameSite: true | ||
| }); | ||
|
|
||
| throw redirect(303, '/'); | ||
| } | ||
| } satisfies Actions; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1 +1,73 @@ | ||
| login page | ||
| <script lang="ts"> | ||
| import Alert from '$lib/components/Alert.svelte'; | ||
| import { enhance } from '$app/forms'; | ||
| import type { ActionResult } from '@sveltejs/kit'; | ||
| export let form: ActionResult; | ||
| let isLoading = false; | ||
| </script> | ||
|
|
||
| <form | ||
| method="POST" | ||
| use:enhance={() => { | ||
| isLoading = true; | ||
| return async ({ update }) => { | ||
| await update(); | ||
| isLoading = false; | ||
| }; | ||
| }} | ||
| class="mx-auto mt-8 max-w-sm rounded-lg bg-white p-6 shadow-md dark:bg-secondary-950 dark:shadow-xl" | ||
| > | ||
| {#if form?.error} | ||
| <Alert type="error" message={form.error} /> | ||
| {/if} | ||
|
|
||
| <label class="mb-4 block"> | ||
| <span class="text-sm text-secondary-800 dark:text-secondary-100">Username</span> | ||
| <input | ||
| name="username" | ||
| type="text" | ||
| value={form?.username ?? ''} | ||
| class="mt-1 block w-full | ||
| rounded-md border-secondary-200 bg-white | ||
| text-base shadow-sm | ||
| focus:border-accent-500 focus:ring focus:ring-accent-200 focus:ring-opacity-50 | ||
| dark:border-secondary-800 dark:bg-secondary-900 dark:text-secondary-100 | ||
| dark:focus:border-accent-400 dark:focus:ring-accent-900" | ||
| /> | ||
| </label> | ||
|
|
||
| <label class="mb-4 block"> | ||
| <span class="text-sm text-secondary-800 dark:text-secondary-100">Password</span> | ||
| <input | ||
| name="password" | ||
| type="password" | ||
| class="mt-1 block w-full | ||
| rounded-md border-secondary-200 bg-white | ||
| text-base shadow-sm | ||
| focus:border-accent-500 focus:ring focus:ring-accent-200 focus:ring-opacity-50 | ||
| dark:border-secondary-800 dark:bg-secondary-900 dark:text-secondary-100 | ||
| dark:focus:border-accent-400 dark:focus:ring-accent-900" | ||
| /> | ||
| </label> | ||
|
|
||
| <button | ||
| type="submit" | ||
| disabled={isLoading} | ||
| class="flex w-full items-center | ||
| justify-center gap-2 rounded-md | ||
| bg-accent-500 | ||
| px-4 py-2 text-sm font-medium | ||
| text-white hover:bg-accent-600 focus:outline-none focus:ring-2 | ||
| focus:ring-accent-400 focus:ring-offset-2 disabled:cursor-not-allowed | ||
| disabled:opacity-50 dark:bg-accent-600 | ||
| dark:hover:bg-accent-500 | ||
| dark:focus:ring-accent-300 dark:focus:ring-offset-secondary-950" | ||
| > | ||
| {#if isLoading} | ||
| <span>Logging in...</span> | ||
| {:else} | ||
| <span>Login</span> | ||
| {/if} | ||
| </button> | ||
| </form> |