makearmy/makearmy-app
1
0
Fork 0
Code Issues 11 Pull requests Projects Releases Packages Wiki Activity Actions

added basic user auth flow

Browse source
This commit is contained in:
makearmy 2025-09-26 11:46:01 -04:00
parent faa7372887
commit 5d2c668bad
7 changed files with 394 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

88
app/api/auth/login/route.ts Normal file
View file

@ -0,0 +1,88 @@
// app/app/api/auth/login/route.ts
import { NextRequest, NextResponse } from "next/server";
import { setAuthCookies } from "@/lib/auth-cookies";
const BASE = process.env.DIRECTUS_URL!;
const ADMIN_TOKEN = process.env.DIRECTUS_TOKEN_ADMIN_REGISTER!; // for username→email lookup
type DirectusList<T> = { data: T[] };
type LoginResp = { data: { access_token: string; refresh_token: string; expires: number } };
type MeResp = { data: { id: string; email: string | null; username?: string | null } };
async function adminFetch<T=any>(path: string, init?: RequestInit): Promise<T> {
const res = await fetch(`${BASE}${path}`, {
...init,
headers: {
"Accept": "application/json",
"Content-Type": "application/json",
"Authorization": `Bearer ${ADMIN_TOKEN}`,
...(init?.headers || {}),
},
});
const text = await res.text();
const json = text ? JSON.parse(text) : null;
if (!res.ok) throw new Error(`Directus ${res.status}: ${text || res.statusText}`);
return (json ?? {}) as T;
}
async function directusLogin(email: string, password: string): Promise<LoginResp["data"]> {
const res = await fetch(`${BASE}/auth/login`, {
method: "POST",
headers: { "Accept": "application/json", "Content-Type": "application/json" },
body: JSON.stringify({ email, password }),
});
const text = await res.text();
const json = text ? JSON.parse(text) : null;
if (!res.ok) throw new Error(`Login failed: ${text || res.statusText}`);
return json.data;
}
function isEmailLike(s: string) {
return /^[^@\s]+@[^@\s]+\.[^@\s]+$/.test(s);
}
export async function POST(req: NextRequest) {
try {
const body = await req.json().catch(() => ({}));
const identifier: string = (body?.identifier ?? "").trim(); // username OR email
const password: string = (body?.password ?? "").trim();
if (!identifier || !password) {
return NextResponse.json({ error: "Missing identifier or password." }, { status: 400 });
}
let email = identifier;
let username: string | undefined = undefined;
if (!isEmailLike(identifier)) {
// lookup email by username (custom field on directus_users)
const q = `/users?limit=1&filter[username][_eq]=${encodeURIComponent(identifier)}&fields=id,email,username`;
const found = await adminFetch<DirectusList<{id:string;email:string|null;username:string|null}>>(q);
const user = found.data?.[0];
if (!user?.email) return NextResponse.json({ error: "User not found." }, { status: 404 });
email = user.email;
username = user.username || undefined;
}
const tokens = await directusLogin(email, password);
// Fetch /users/me to confirm and obtain username (if email path)
const meRes = await fetch(`${BASE}/users/me?fields=id,email,username`, {
headers: { "Authorization": `Bearer ${tokens.access_token}`, "Accept": "application/json" },
});
const meText = await meRes.text();
const me: MeResp = meText ? JSON.parse(meText) : { data: { id: "", email: null, username: null } };
const user = {
id: String(me?.data?.id || ""),
email: me?.data?.email ?? null,
username: (me?.data?.username as string | null) ?? username ?? email.split("@")[0],
};
let res = NextResponse.json({ ok: true, user });
res = setAuthCookies(res, tokens, user);
return res;
} catch (err: any) {
return NextResponse.json({ error: err?.message || "Login failed" }, { status: 401 });
}
}

9
app/api/auth/logout/route.ts Normal file
View file

@ -0,0 +1,9 @@
// app/app/api/auth/logout/route.ts
import { NextRequest, NextResponse } from "next/server";
import { clearAuthCookies } from "@/lib/auth-cookies";
export async function POST(_req: NextRequest) {
let res = NextResponse.json({ ok: true });
res = clearAuthCookies(res);
return res;
}

114
app/api/auth/register/route.ts Normal file
View file

@ -0,0 +1,114 @@
// app/app/api/auth/register/route.ts
import { NextRequest, NextResponse } from "next/server";
const BASE = process.env.DIRECTUS_URL!;
const ADMIN_TOKEN = process.env.DIRECTUS_TOKEN_ADMIN_REGISTER!;
const MEMBER_ROLE_ID = process.env.DIRECTUS_ROLE_MEMBER_ID || ""; // optional override
if (!BASE) console.warn("[auth/register] Missing DIRECTUS_URL");
if (!ADMIN_TOKEN) console.warn("[auth/register] Missing DIRECTUS_TOKEN_ADMIN_REGISTER");
type DirectusList<T> = { data: T[] };
type DirectusItem<T> = { data: T };
async function dFetch<T=any>(path: string, init?: RequestInit): Promise<T> {
const res = await fetch(`${BASE}${path}`, {
...init,
headers: {
"Accept": "application/json",
"Content-Type": "application/json",
"Authorization": `Bearer ${ADMIN_TOKEN}`,
...(init?.headers || {}),
},
});
const text = await res.text();
const json = text ? JSON.parse(text) : null;
if (!res.ok) {
throw new Error(`Directus ${res.status}: ${text || res.statusText}`);
}
return (json ?? {}) as T;
}
async function getMemberRoleId(): Promise<string> {
if (MEMBER_ROLE_ID) return MEMBER_ROLE_ID;
const q = `/roles?limit=1&filter[name][_in]=Member,member&fields=id,name`;
const out = await dFetch<DirectusList<{id:string;name:string}>>(q);
const hit = out.data?.[0];
if (!hit?.id) throw new Error("Member role not found. Set DIRECTUS_ROLE_MEMBER_ID.");
return String(hit.id);
}
async function usernameExists(username: string): Promise<boolean> {
const q = `/users?limit=1&filter[username][_eq]=${encodeURIComponent(username)}&fields=id`;
const out = await dFetch<DirectusList<{id:string}>>(q);
return !!out.data?.length;
}
async function emailExists(email: string): Promise<boolean> {
const q = `/users?limit=1&filter[email][_eq]=${encodeURIComponent(email)}&fields=id`;
const out = await dFetch<DirectusList<{id:string}>>(q);
return !!out.data?.length;
}
function isEmailLike(s: string) {
return /^[^@\s]+@[^@\s]+\.[^@\s]+$/.test(s);
}
export async function POST(req: NextRequest) {
try {
const body = await req.json().catch(() => ({}));
const rawUsername: string = (body?.username ?? "").trim();
const rawPassword: string = (body?.password ?? "").trim();
const rawEmail: string = String(body?.email ?? "").trim();
if (!rawUsername || rawUsername.length < 3) {
return NextResponse.json({ error: "Username must be at least 3 characters." }, { status: 400 });
}
if (!rawPassword || rawPassword.length < 8) {
return NextResponse.json({ error: "Password must be at least 8 characters." }, { status: 400 });
}
if (rawEmail && !isEmailLike(rawEmail)) {
return NextResponse.json({ error: "Email format is invalid." }, { status: 400 });
}
if (await usernameExists(rawUsername)) {
return NextResponse.json({ error: "Username is already taken." }, { status: 409 });
}
// If no email provided, synthesize a placeholder thats unique.
let email = rawEmail;
if (!email) {
const base = `${rawUsername.toLowerCase()}+noemail@users.makearmy.local`;
let candidate = base;
let i = 1;
while (await emailExists(candidate)) {
i += 1;
candidate = `${rawUsername.toLowerCase()}+noemail${i}@users.makearmy.local`;
}
email = candidate;
} else {
if (await emailExists(email)) {
return NextResponse.json({ error: "Email already in use." }, { status: 409 });
}
}
const role = await getMemberRoleId();
// Create the user (status active to allow immediate login)
const create = await dFetch<DirectusItem<{id:string}>>(`/users`, {
method: "POST",
body: JSON.stringify({
email,
password: rawPassword,
role,
status: "active",
// Add custom field username on directus_users (unique)
username: rawUsername,
}),
});
return NextResponse.json({ ok: true, id: create.data.id, warning: rawEmail ? null : "No email provided. You won't be able to reset your password until you add one." });
} catch (err: any) {
return NextResponse.json({ error: err?.message || "Register failed" }, { status: 500 });
}
}