partial: user routes

2025-11-21 04:01:10 +10:00 · 2025-08-10 10:19:45 +10:00
parent 80f7757558
commit a0b4381f0b
54 changed files with 545 additions and 410 deletions
--- a/server/api/v1/auth/index.get.ts
+++ b/server/api/v1/auth/index.get.ts
@ -1,5 +1,8 @@
 import authManager from "~/server/internal/auth";

+/**
+ * Fetch public authentication provider mechanisms
+ */
 export default defineEventHandler(() => {
  return authManager.getEnabledAuthProviders();
 });
--- a/server/api/v1/auth/signin/simple.post.ts
+++ b/server/api/v1/auth/signin/simple.post.ts
@ -15,6 +15,9 @@ const signinValidator = type({
  "rememberMe?": "boolean | undefined",
 });

+/**
+ * Sign in as a session using the "Simple" authentication mechanism. Not recommended for third-party applications.
+ */
 export default defineEventHandler<{
  body: typeof signinValidator.infer;
 }>(async (h3) => {
--- a/server/api/v1/auth/signup/simple.get.ts
+++ b/server/api/v1/auth/signup/simple.get.ts
@ -1,8 +1,16 @@
 import prisma from "~/server/internal/db/database";
 import taskHandler from "~/server/internal/tasks";
 import authManager from "~/server/internal/auth";
+import { ArkErrors, type } from "arktype";

-export default defineEventHandler(async (h3) => {
+const Query = type({
+  id: "string",
+});
+
+/**
+ * Fetch invitation details for pre-filling
+ */
+export default defineEventHandler<{ query: typeof Query.infer }>(async (h3) => {
  const t = await useTranslation(h3);

  if (!authManager.getAuthProviders().Simple)
@ -11,13 +19,13 @@ export default defineEventHandler(async (h3) => {
      statusMessage: t("errors.auth.method.signinDisabled"),
    });

-  const query = getQuery(h3);
-  const id = query.id?.toString();
-  if (!id)
+  const query = Query(getQuery(h3));
+  if (query instanceof ArkErrors)
    throw createError({
      statusCode: 400,
-      statusMessage: t("errors.auth.inviteIdRequired"),
+      statusMessage: "Invalid query: " + query.summary,
    });
+  const id = query.id;
  taskHandler.runTaskGroupByName("cleanup:invitations");

  const invitation = await prisma.invitation.findUnique({ where: { id: id } });
--- a/server/api/v1/auth/signup/simple.post.ts
+++ b/server/api/v1/auth/signup/simple.post.ts
@ -18,6 +18,9 @@ const CreateUserValidator = SharedRegisterValidator.and({
  "displayName?": "string | undefined",
 }).configure(throwingArktype);

+/**
+ * Create user from invitation
+ */
 export default defineEventHandler<{
  body: typeof CreateUserValidator.infer;
 }>(async (h3) => {