julienfroidefond/stripstream
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refacto(db): auth and user cleaner

Browse Source
This commit is contained in:
Julien Froidefond
2025-02-14 17:19:15 +01:00
parent ca36f4ce6a
commit 85eeae0a1b
3 changed files with 126 additions and 82 deletions
Download Patch File Download Diff File Expand all files Collapse all files

39
src/app/api/auth/login/route.ts
View File

@@ -1,16 +1,17 @@
import { NextResponse } from "next/server"; import { NextResponse } from "next/server";
import { cookies } from "next/headers"; import { AuthServerService } from "@/lib/services/auth-server.service";
import connectDB from "@/lib/mongodb";
import { UserModel } from "@/lib/models/user.model";
export async function POST(request: Request) { export async function POST(request: Request) {
try { try {
const { email, password, remember } = await request.json(); const { email, password } = await request.json();
await connectDB();
const user = await UserModel.findOne({ email: email.toLowerCase() }); try {
const userData = await AuthServerService.loginUser(email, password);
AuthServerService.setUserCookie(userData);
if (!user || user.password !== password) { return NextResponse.json({ message: "Connexion réussie", user: userData });
} catch (error) {
if (error instanceof Error && error.message === "INVALID_CREDENTIALS") {
return NextResponse.json( return NextResponse.json(
{ {
error: { error: {
@@ -21,28 +22,8 @@ export async function POST(request: Request) {
{ status: 401 } { status: 401 }
); );
} }
throw error;
const userData = { }
id: user._id.toString(),
email: user.email,
roles: user.roles,
authenticated: true,
};
// Encoder les données utilisateur en base64
const encodedUserData = Buffer.from(JSON.stringify(userData)).toString("base64");
// Définir le cookie avec les données utilisateur
cookies().set("stripUser", encodedUserData, {
httpOnly: true,
secure: process.env.NODE_ENV === "production",
sameSite: "lax",
path: "/",
// 30 jours si "remember me" est coché, sinon 24 heures
maxAge: remember ? 30 * 24 * 60 * 60 : 24 * 60 * 60,
});
return NextResponse.json({ message: "Connexion réussie", user: userData });
} catch (error) { } catch (error) {
console.error("Erreur lors de la connexion:", error); console.error("Erreur lors de la connexion:", error);
return NextResponse.json( return NextResponse.json(

47
src/app/api/auth/register/route.ts
View File

@@ -1,16 +1,17 @@
import { NextResponse } from "next/server"; import { NextResponse } from "next/server";
import { cookies } from "next/headers"; import { AuthServerService } from "@/lib/services/auth-server.service";
import connectDB from "@/lib/mongodb";
import { UserModel } from "@/lib/models/user.model";
export async function POST(request: Request) { export async function POST(request: Request) {
try { try {
const { email, password } = await request.json(); const { email, password } = await request.json();
await connectDB();
// Vérifier si l'utilisateur existe déjà try {
const existingUser = await UserModel.findOne({ email: email.toLowerCase() }); const userData = await AuthServerService.createUser(email, password);
if (existingUser) { AuthServerService.setUserCookie(userData);
return NextResponse.json({ message: "Inscription réussie", user: userData });
} catch (error) {
if (error instanceof Error && error.message === "EMAIL_EXISTS") {
return NextResponse.json( return NextResponse.json(
{ {
error: { error: {
@@ -21,36 +22,8 @@ export async function POST(request: Request) {
{ status: 400 } { status: 400 }
); );
} }
throw error;
// Créer le nouvel utilisateur }
const user = await UserModel.create({
email: email.toLowerCase(),
password,
roles: ["ROLE_USER"],
authenticated: true,
});
const userData = {
id: user._id.toString(),
email: user.email,
roles: user.roles,
authenticated: true,
};
// Encoder les données utilisateur en base64
const encodedUserData = Buffer.from(JSON.stringify(userData)).toString("base64");
// Définir le cookie avec les données utilisateur
cookies().set("stripUser", encodedUserData, {
httpOnly: true,
secure: process.env.NODE_ENV === "production",
sameSite: "lax",
path: "/",
// 24 heures par défaut pour les nouveaux utilisateurs
maxAge: 24 * 60 * 60,
});
return NextResponse.json({ message: "Inscription réussie", user: userData });
} catch (error) { } catch (error) {
console.error("Erreur lors de l'inscription:", error); console.error("Erreur lors de l'inscription:", error);
return NextResponse.json( return NextResponse.json(

90
src/lib/services/auth-server.service.ts Normal file
View File

@@ -0,0 +1,90 @@
import { cookies } from "next/headers";
import connectDB from "@/lib/mongodb";
import { UserModel } from "@/lib/models/user.model";
interface UserData {
id: string;
email: string;
roles: string[];
authenticated: boolean;
}
export class AuthServerService {
static async createUser(email: string, password: string): Promise<UserData> {
await connectDB();
// Check if user already exists
const existingUser = await UserModel.findOne({ email: email.toLowerCase() });
if (existingUser) {
throw new Error("EMAIL_EXISTS");
}
// Create new user
const user = await UserModel.create({
email: email.toLowerCase(),
password,
roles: ["ROLE_USER"],
authenticated: true,
});
const userData: UserData = {
id: user._id.toString(),
email: user.email,
roles: user.roles,
authenticated: true,
};
return userData;
}
static setUserCookie(userData: UserData): void {
// Encode user data in base64
const encodedUserData = Buffer.from(JSON.stringify(userData)).toString("base64");
// Set cookie with user data
cookies().set("stripUser", encodedUserData, {
httpOnly: true,
secure: process.env.NODE_ENV === "production",
sameSite: "lax",
path: "/",
maxAge: 24 * 60 * 60, // 24 hours by default for new users
});
}
static getCurrentUser(): UserData | null {
const userCookie = cookies().get("stripUser");
if (!userCookie) {
return null;
}
try {
return JSON.parse(atob(userCookie.value));
} catch (error) {
console.error("Error while getting user from cookie:", error);
return null;
}
}
static async loginUser(email: string, password: string): Promise<UserData> {
await connectDB();
const user = await UserModel.findOne({ email: email.toLowerCase() });
if (!user) {
throw new Error("INVALID_CREDENTIALS");
}
if (user.password !== password) {
throw new Error("INVALID_CREDENTIALS");
}
const userData: UserData = {
id: user._id.toString(),
email: user.email,
roles: user.roles,
authenticated: true,
};
return userData;
}
}