boredgame/src/lib/server/auth-utils.ts

import { generateIdFromEntropySize, type Session, type User } from 'lucia';
import { TimeSpan, createDate } from 'oslo';
import { eq } from 'drizzle-orm';
import db from '../../db';
import { password_reset_tokens } from '$db/schema';

export async function createPasswordResetToken(userId: string): Promise<string> {
	// optionally invalidate all existing tokens
	await db.delete(password_reset_tokens).where(eq(password_reset_tokens.user_id, userId));
	const tokenId = generateIdFromEntropySize(40);
	await db.insert(password_reset_tokens).values({
		id: tokenId,
		user_id: userId,
		expires_at: createDate(new TimeSpan(2, 'h')),
	});
	return tokenId;
}

/**
 * Checks if the user is fully authenticated.
 *
 * @param user - The user object.
 * @param session - The session object.
 * @returns True if the user is fully authenticated, otherwise false.
 */
export function userFullyAuthenticated(user: User | null, session: Session | null) {
	return user && session && (!session.isTwoFactorAuthEnabled || session.isTwoFactorAuthenticated);
}
Starting over migrations, revert schema date string type, using two variables in session for knowing if 2FA is valid, adding checks everywhere on protected routes and APIs. 2024-06-12 02:12:12 +00:00			`import { generateIdFromEntropySize, type Session, type User } from 'lucia';`
Update dependencies, change generate token based on new lucia method, and replace fails. 2024-04-25 18:26:05 +00:00			`import { TimeSpan, createDate } from 'oslo';`
			`import { eq } from 'drizzle-orm';`
Moving drizzle into it's own DB folder and moving all the table types to separate files. 2024-05-08 00:19:13 +00:00			`import db from '../../db';`
			`import { password_reset_tokens } from '$db/schema';`
Adding password reset tokens and API routes for creating and verifying token. 2024-03-02 02:00:27 +00:00
			`export async function createPasswordResetToken(userId: string): Promise<string> {`
			`// optionally invalidate all existing tokens`
			`await db.delete(password_reset_tokens).where(eq(password_reset_tokens.user_id, userId));`
Update dependencies, change generate token based on new lucia method, and replace fails. 2024-04-25 18:26:05 +00:00			`const tokenId = generateIdFromEntropySize(40);`
			`await db.insert(password_reset_tokens).values({`
			`id: tokenId,`
			`user_id: userId,`
			`expires_at: createDate(new TimeSpan(2, 'h')),`
			`});`
Adding password reset tokens and API routes for creating and verifying token. 2024-03-02 02:00:27 +00:00			`return tokenId;`
Update dependencies, change generate token based on new lucia method, and replace fails. 2024-04-25 18:26:05 +00:00			`}`
Starting over migrations, revert schema date string type, using two variables in session for knowing if 2FA is valid, adding checks everywhere on protected routes and APIs. 2024-06-12 02:12:12 +00:00
			`/**`
			`* Checks if the user is fully authenticated.`
			`*`
			`* @param user - The user object.`
			`* @param session - The session object.`
			`* @returns True if the user is fully authenticated, otherwise false.`
			`*/`
			`export function userFullyAuthenticated(user: User \| null, session: Session \| null) {`
			`return user && session && (!session.isTwoFactorAuthEnabled \|\| session.isTwoFactorAuthenticated);`
			`}`