2022-08-29 03:20:54 +00:00
|
|
|
import { ok, unauthorized, badRequest, checkPassword, createSecureToken } from 'next-basics';
|
2022-07-12 21:14:36 +00:00
|
|
|
import { getAccountByUsername } from 'queries/admin/account/getAccountByUsername';
|
2022-08-29 03:20:54 +00:00
|
|
|
import { secret } from 'lib/crypto';
|
2020-07-22 22:46:05 +00:00
|
|
|
|
2020-07-23 03:45:09 +00:00
|
|
|
export default async (req, res) => {
|
|
|
|
|
const { username, password } = req.body;
|
2020-07-22 22:46:05 +00:00
|
|
|
|
2021-10-04 03:44:02 +00:00
|
|
|
if (!username || !password) {
|
|
|
|
|
return badRequest(res);
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-12 05:24:41 +00:00
|
|
|
const account = await getAccountByUsername(username);
|
2020-07-22 22:46:05 +00:00
|
|
|
|
2022-08-29 03:20:54 +00:00
|
|
|
if (account && checkPassword(password, account.password)) {
|
2020-07-23 03:45:09 +00:00
|
|
|
const { user_id, username, is_admin } = account;
|
2022-02-23 06:47:59 +00:00
|
|
|
const user = { user_id, username, is_admin };
|
2022-08-29 03:20:54 +00:00
|
|
|
const token = createSecureToken(user, secret());
|
2020-07-23 03:45:09 +00:00
|
|
|
|
2022-02-23 06:47:59 +00:00
|
|
|
return ok(res, { token, user });
|
2020-07-22 22:46:05 +00:00
|
|
|
}
|
2020-07-29 02:04:45 +00:00
|
|
|
|
2020-08-08 00:19:42 +00:00
|
|
|
return unauthorized(res);
|
2020-07-22 22:46:05 +00:00
|
|
|
};
|
