Feature: Auth (#4)

* feat(api): add auth * feat(web): add auth and refactor * refactor(web): baseurl * feat: add autobrrctl cli for user creation * build: move static assets * refactor(web): auth guard and routing * refactor: rename var * fix: remove subrouter * build: update default config
2025-07-23 00:39:13 +00:00 · 2021-08-14 14:19:21 +02:00 · 2021-08-14 14:19:21 +02:00 · 40b855bf39
commit 40b855bf39
parent 2e8d0950c1
56 changed files with 1208 additions and 257 deletions
--- a/internal/auth/service.go
+++ b/internal/auth/service.go
@ -0,0 +1,51 @@
+package auth
+
+import (
+	"errors"
+
+	"github.com/autobrr/autobrr/internal/domain"
+	"github.com/autobrr/autobrr/internal/user"
+	"github.com/autobrr/autobrr/pkg/argon2id"
+)
+
+type Service interface {
+	Login(username, password string) (*domain.User, error)
+}
+
+type service struct {
+	userSvc user.Service
+}
+
+func NewService(userSvc user.Service) Service {
+	return &service{
+		userSvc: userSvc,
+	}
+}
+
+func (s *service) Login(username, password string) (*domain.User, error) {
+	if username == "" || password == "" {
+		return nil, errors.New("bad credentials")
+	}
+
+	// find user
+	u, err := s.userSvc.FindByUsername(username)
+	if err != nil {
+		return nil, err
+	}
+
+	if u == nil {
+		return nil, errors.New("bad credentials")
+	}
+
+	// compare password from request and the saved password
+	match, err := argon2id.ComparePasswordAndHash(password, u.Password)
+	if err != nil {
+		return nil, errors.New("error checking credentials")
+	}
+
+	if !match {
+		return nil, errors.New("bad credentials")
+	}
+
+	return u, nil
+}