mirror of
https://github.com/Drop-OSS/drop.git
synced 2025-11-09 20:12:10 +10:00
1ae051f066
* chore: update prisma to 6.11 more prisma future proofing due to experimental features * chore: update dependencies twemoji - new unicode update argon2 - bux fixes vue3-carousel - improve mobile experiance vue-tsc - more stable * fix: incorrect prisma version in docker Also remove default value for BUILD_DROP_VERSION, that is now handled in nuxt config * fix: no logging in prod * chore: optimize docker builds even more * fix: revert adoption of prisma driverAdapters see: https://github.com/prisma/prisma/issues/27486 * chore: optimize dockerignore some more * Fix `pino-pretty` not being included in build (#135) * Remove `pino` from frontend * Fix for downloads and removing of library source (#136) * fix: downloads and removing library source * fix: linting * Fix max file size of 4GB (update droplet) (#137) * Fix manual metadata import (#138) * chore(deps): bump vue-i18n from 10.0.7 to 10.0.8 (#140) Bumps [vue-i18n](https://github.com/intlify/vue-i18n/tree/HEAD/packages/vue-i18n) from 10.0.7 to 10.0.8. - [Release notes](https://github.com/intlify/vue-i18n/releases) - [Changelog](https://github.com/intlify/vue-i18n/blob/master/CHANGELOG.md) - [Commits](https://github.com/intlify/vue-i18n/commits/v10.0.8/packages/vue-i18n) --- updated-dependencies: - dependency-name: vue-i18n dependency-version: 10.0.8 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump @intlify/core from 10.0.7 to 10.0.8 (#139) --- updated-dependencies: - dependency-name: "@intlify/core" dependency-version: 10.0.8 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Small fixes (#141) * fix: save task as Json rather than string * fix: pull objects before creating game in database * fix: strips relative dirs from version information * fix: #132 * fix: lint * fix: news object ids and small tweaks * fix: notification styling errors * fix: lint * fix: build issues by regenerating lockfile --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: DecDuck <declanahofmeyr@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
108 lines
2.8 KiB
TypeScript
108 lines
2.8 KiB
TypeScript
import { AuthMec } from "~/prisma/client/enums";
|
|
import type { JsonArray } from "@prisma/client/runtime/library";
|
|
import { type } from "arktype";
|
|
import prisma from "~/server/internal/db/database";
|
|
import sessionHandler from "~/server/internal/session";
|
|
import authManager, {
|
|
checkHashArgon2,
|
|
checkHashBcrypt,
|
|
} from "~/server/internal/auth";
|
|
import { logger } from "~/server/internal/logging";
|
|
|
|
const signinValidator = type({
|
|
username: "string",
|
|
password: "string",
|
|
"rememberMe?": "boolean | undefined",
|
|
});
|
|
|
|
export default defineEventHandler<{
|
|
body: typeof signinValidator.infer;
|
|
}>(async (h3) => {
|
|
const t = await useTranslation(h3);
|
|
|
|
if (!authManager.getAuthProviders().Simple)
|
|
throw createError({
|
|
statusCode: 403,
|
|
statusMessage: t("errors.auth.method.signinDisabled"),
|
|
});
|
|
|
|
const body = signinValidator(await readBody(h3));
|
|
if (body instanceof type.errors) {
|
|
// hover out.summary to see validation errors
|
|
logger.error(body.summary);
|
|
|
|
throw createError({
|
|
statusCode: 400,
|
|
statusMessage: body.summary,
|
|
});
|
|
}
|
|
|
|
const authMek = await prisma.linkedAuthMec.findFirst({
|
|
where: {
|
|
mec: AuthMec.Simple,
|
|
enabled: true,
|
|
user: {
|
|
username: body.username,
|
|
},
|
|
},
|
|
include: {
|
|
user: {
|
|
select: {
|
|
enabled: true,
|
|
},
|
|
},
|
|
},
|
|
});
|
|
|
|
if (!authMek)
|
|
throw createError({
|
|
statusCode: 401,
|
|
statusMessage: t("errors.auth.invalidUserOrPass"),
|
|
});
|
|
|
|
if (!authMek.user.enabled)
|
|
throw createError({
|
|
statusCode: 403,
|
|
statusMessage: t("errors.auth.disabled"),
|
|
});
|
|
|
|
// LEGACY bcrypt
|
|
if (authMek.version == 1) {
|
|
const credentials = authMek.credentials as JsonArray | null;
|
|
const hash = credentials?.at(1)?.toString();
|
|
|
|
if (!hash)
|
|
throw createError({
|
|
statusCode: 500,
|
|
statusMessage: t("errors.auth.invalidPassState"),
|
|
});
|
|
|
|
if (!(await checkHashBcrypt(body.password, hash)))
|
|
throw createError({
|
|
statusCode: 401,
|
|
statusMessage: t("errors.auth.invalidUserOrPass"),
|
|
});
|
|
|
|
// TODO: send user to forgot password screen or something to force them to change their password to new system
|
|
await sessionHandler.signin(h3, authMek.userId, body.rememberMe);
|
|
return { result: true, userId: authMek.userId };
|
|
}
|
|
|
|
// V2: argon2
|
|
const hash = authMek.credentials as string | undefined;
|
|
if (!hash || typeof hash !== "string")
|
|
throw createError({
|
|
statusCode: 500,
|
|
statusMessage: t("errors.auth.invalidPassState"),
|
|
});
|
|
|
|
if (!(await checkHashArgon2(body.password, hash)))
|
|
throw createError({
|
|
statusCode: 401,
|
|
statusMessage: t("errors.auth.invalidUserOrPass"),
|
|
});
|
|
|
|
await sessionHandler.signin(h3, authMek.userId, body.rememberMe);
|
|
return { result: true, userId: authMek.userId };
|
|
});
|