TofuStack/src/lib/server/api/controllers/iam.controller.ts

import { setCookie } from 'hono/cookie';
import { inject, injectable } from 'tsyringe';
import { zValidator } from '@hono/zod-validator';
import { limiter } from '../middlewares/rate-limiter.middlware';
import { requireAuth } from '../middlewares/require-auth.middleware';
import { Controler } from '../common/types/controller';
import { updateEmailDto } from '$lib/server/api/dtos/update-email.dto';
import { verifyEmailDto } from '$lib/server/api/dtos/verify-email.dto';
import { LuciaService } from '../services/lucia.service';
import { AuthenticationService } from '../services/authentication.service';
import { EmailVerificationService } from '../services/email-verification.service';
import { loginDto } from '../dtos/login.dto';
import { verifyLoginDto } from '../dtos/verify-login.dto';

@injectable()
export class IamController extends Controler {
	constructor(
		@inject(AuthenticationService) private authenticationService: AuthenticationService,
		@inject(EmailVerificationService) private emailVerificationService: EmailVerificationService,
		@inject(LuciaService) private luciaService: LuciaService,
	) {
		super();
	}

	routes() {
		return this.controller
			.get('/me', async (c) => {
				const user = c.var.user;
				return c.json({ user: user });
			})
			.post('/login', zValidator('json', loginDto), limiter({ limit: 10, minutes: 60 }), async (c) => {
				const { email } = c.req.valid('json');
				await this.authenticationService.createLoginRequest({ email });
				return c.json({ message: 'Verification email sent' });
			})
			.post('/login/verify', zValidator('json', verifyLoginDto), limiter({ limit: 10, minutes: 60 }), async (c) => {
				const { email, token } = c.req.valid('json');
				const session = await this.authenticationService.verifyLoginRequest({ email, token });
				const sessionCookie = this.luciaService.lucia.createSessionCookie(session.id);
				setCookie(c, sessionCookie.name, sessionCookie.value, {
					path: sessionCookie.attributes.path,
					maxAge: sessionCookie.attributes.maxAge,
					domain: sessionCookie.attributes.domain,
					sameSite: sessionCookie.attributes.sameSite as any,
					secure: sessionCookie.attributes.secure,
					httpOnly: sessionCookie.attributes.httpOnly,
					expires: sessionCookie.attributes.expires
				});
				return c.json({ message: 'ok' });
			})
			.patch('/email', requireAuth, zValidator('json', updateEmailDto), limiter({ limit: 10, minutes: 60 }), async (c) => {
				const json = c.req.valid('json');
				await this.emailVerificationService.create(c.var.user.id, json.email);
				return c.json({ message: 'Verification email sent' });
			})
			// this could also be named to use custom methods, aka /email#verify
			// https://cloud.google.com/apis/design/custom_methods
			.post('/email/verify', requireAuth, zValidator('json', verifyEmailDto), limiter({ limit: 10, minutes: 60 }), async (c) => {
				const json = c.req.valid('json');
				await this.emailVerificationService.verify(c.var.user.id, json.token);
				return c.json({ message: 'Verified and updated' });
			})
			.post('/logout', requireAuth, async (c) => {
				const sessionId = c.var.session.id;
				await this.authenticationService.logout(sessionId);
				const sessionCookie = this.luciaService.lucia.createBlankSessionCookie();
				setCookie(c, sessionCookie.name, sessionCookie.value, {
					path: sessionCookie.attributes.path,
					maxAge: sessionCookie.attributes.maxAge,
					domain: sessionCookie.attributes.domain,
					sameSite: sessionCookie.attributes.sameSite as any,
					secure: sessionCookie.attributes.secure,
					httpOnly: sessionCookie.attributes.httpOnly,
					expires: sessionCookie.attributes.expires
				});
				return c.json({ status: 'success' });
			})
	}
}
Seperated iam logic into multiple services 2024-06-26 17:15:38 +00:00			`import { setCookie } from 'hono/cookie';`
added technical api structure 2024-05-25 06:02:26 +00:00			`import { inject, injectable } from 'tsyringe';`
			`import { zValidator } from '@hono/zod-validator';`
simplifying iam service 2024-08-07 15:13:36 +00:00			`import { limiter } from '../middlewares/rate-limiter.middlware';`
refactored auth services 2024-09-04 03:18:38 +00:00			`import { requireAuth } from '../middlewares/require-auth.middleware';`
removed providers in favor of services 2024-09-02 04:36:41 +00:00			`import { Controler } from '../common/types/controller';`
moved dtos within api folder 2024-09-01 21:32:50 +00:00			`import { updateEmailDto } from '$lib/server/api/dtos/update-email.dto';`
			`import { verifyEmailDto } from '$lib/server/api/dtos/verify-email.dto';`
removed providers in favor of services 2024-09-02 04:36:41 +00:00			`import { LuciaService } from '../services/lucia.service';`
refactored auth services 2024-09-04 03:18:38 +00:00			`import { AuthenticationService } from '../services/authentication.service';`
			`import { EmailVerificationService } from '../services/email-verification.service';`
			`import { loginDto } from '../dtos/login.dto';`
			`import { verifyLoginDto } from '../dtos/verify-login.dto';`
added technical api structure 2024-05-25 06:02:26 +00:00
			`@injectable()`
removed providers in favor of services 2024-09-02 04:36:41 +00:00			`export class IamController extends Controler {`
added technical api structure 2024-05-25 06:02:26 +00:00			`constructor(`
refactored auth services 2024-09-04 03:18:38 +00:00			`@inject(AuthenticationService) private authenticationService: AuthenticationService,`
			`@inject(EmailVerificationService) private emailVerificationService: EmailVerificationService,`
removed providers in favor of services 2024-09-02 04:36:41 +00:00			`@inject(LuciaService) private luciaService: LuciaService,`
refactored controller and jobs 2024-08-31 17:54:31 +00:00			`) {`
			`super();`
			`}`
added technical api structure 2024-05-25 06:02:26 +00:00
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`routes() {`
			`return this.controller`
refactored auth services 2024-09-04 03:18:38 +00:00			`.get('/me', async (c) => {`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`const user = c.var.user;`
			`return c.json({ user: user });`
			`})`
refactored auth services 2024-09-04 03:18:38 +00:00			`.post('/login', zValidator('json', loginDto), limiter({ limit: 10, minutes: 60 }), async (c) => {`
added technical api structure 2024-05-25 06:02:26 +00:00			`const { email } = c.req.valid('json');`
refactored auth services 2024-09-04 03:18:38 +00:00			`await this.authenticationService.createLoginRequest({ email });`
added technical api structure 2024-05-25 06:02:26 +00:00			`return c.json({ message: 'Verification email sent' });`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`})`
refactored auth services 2024-09-04 03:18:38 +00:00			`.post('/login/verify', zValidator('json', verifyLoginDto), limiter({ limit: 10, minutes: 60 }), async (c) => {`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`const { email, token } = c.req.valid('json');`
refactored auth services 2024-09-04 03:18:38 +00:00			`const session = await this.authenticationService.verifyLoginRequest({ email, token });`
removed providers in favor of services 2024-09-02 04:36:41 +00:00			`const sessionCookie = this.luciaService.lucia.createSessionCookie(session.id);`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`setCookie(c, sessionCookie.name, sessionCookie.value, {`
			`path: sessionCookie.attributes.path,`
			`maxAge: sessionCookie.attributes.maxAge,`
			`domain: sessionCookie.attributes.domain,`
			`sameSite: sessionCookie.attributes.sameSite as any,`
			`secure: sessionCookie.attributes.secure,`
			`httpOnly: sessionCookie.attributes.httpOnly,`
			`expires: sessionCookie.attributes.expires`
			`});`
			`return c.json({ message: 'ok' });`
			`})`
refactored auth services 2024-09-04 03:18:38 +00:00			`.patch('/email', requireAuth, zValidator('json', updateEmailDto), limiter({ limit: 10, minutes: 60 }), async (c) => {`
			`const json = c.req.valid('json');`
			`await this.emailVerificationService.create(c.var.user.id, json.email);`
			`return c.json({ message: 'Verification email sent' });`
			`})`
			`// this could also be named to use custom methods, aka /email#verify`
			`// https://cloud.google.com/apis/design/custom_methods`
			`.post('/email/verify', requireAuth, zValidator('json', verifyEmailDto), limiter({ limit: 10, minutes: 60 }), async (c) => {`
			`const json = c.req.valid('json');`
			`await this.emailVerificationService.verify(c.var.user.id, json.token);`
			`return c.json({ message: 'Verified and updated' });`
			`})`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`.post('/logout', requireAuth, async (c) => {`
			`const sessionId = c.var.session.id;`
refactored auth services 2024-09-04 03:18:38 +00:00			`await this.authenticationService.logout(sessionId);`
removed providers in favor of services 2024-09-02 04:36:41 +00:00			`const sessionCookie = this.luciaService.lucia.createBlankSessionCookie();`
Removed fragmented controllers in favor of hono's native chaining 2024-05-27 17:38:59 +00:00			`setCookie(c, sessionCookie.name, sessionCookie.value, {`
			`path: sessionCookie.attributes.path,`
			`maxAge: sessionCookie.attributes.maxAge,`
			`domain: sessionCookie.attributes.domain,`
			`sameSite: sessionCookie.attributes.sameSite as any,`
			`secure: sessionCookie.attributes.secure,`
			`httpOnly: sessionCookie.attributes.httpOnly,`
			`expires: sessionCookie.attributes.expires`
			`});`
			`return c.json({ status: 'success' });`
			`})`
added technical api structure 2024-05-25 06:02:26 +00:00			`}`
			`}`