Hemmelig.app/client/api/authentication.js

import config from '../config';

export const signIn = async (username, password) => {
    const data = await fetch(`${config.get('api.host')}/authentication/signin`, {
        method: 'POST',
        cache: 'no-cache',
        headers: {
            'Content-Type': 'application/json',
        },
        body: JSON.stringify({ username, password }),
    });

    if (data.status === 401) {
        return {
            statusCode: 401,
        };
    }

    const json = await data.json();

    if (data.status === 403) {
        return {
            statusCode: 403,
            message: json.message,
        };
    }

    return json;
};

export const signUp = async (email, username, password) => {
    const data = await fetch(`${config.get('api.host')}/authentication/signup`, {
        method: 'POST',
        cache: 'no-cache',
        headers: {
            'Content-Type': 'application/json',
        },
        body: JSON.stringify({ email, username, password }),
    });

    const json = await data.json();

    if (data.status === 403) {
        return {
            statusCode: 403,
            message: json.message,
        };
    }

    return json;
};

export const signOut = async () => {
    const data = await fetch(`${config.get('api.host')}/authentication/signout`, {
        method: 'POST',
        cache: 'no-cache',
    });

    return data.json();
};

export const verify = async () => {
    const data = await fetch(`${config.get('api.host')}/authentication/verify`, {
        method: 'GET',
        cache: 'no-cache',
        headers: {
            'Content-Type': 'application/json',
        },
    });

    if (data.status === 401) {
        return {
            statusCode: 401,
        };
    }

    return data.json();
};

export const refresh = async () => {
    const data = await fetch(`${config.get('api.host')}/authentication/refresh`, {
        method: 'GET',
        cache: 'no-cache',
        headers: {
            'Content-Type': 'application/json',
        },
    });

    if (data.status === 401) {
        return {
            statusCode: 401,
        };
    }

    return data.json();
};
Account (#22) * initial * Add working sign in / sign up logic * Set expire jwt token in 7 days * Use a JWT secret that is not the encryption secret * Add basic sign in page * Add user verification * Add account page * Add simple api docs * Update basic auth account page * Add more prerender urls * Remove logged in pages * Add basic auth check * Rename SECRET_HOSTNAME to SECRET_LOCAL_HOSTNAME as this is what is defined for fastify * update to localHostname * Add comments * Move account data to its own controller * Minor styling 2021-06-18 14:57:10 +02:00			`import config from '../config';`

			`export const signIn = async (username, password) => {`
			const data = await fetch(`${config.get('api.host')}/authentication/signin`, {
			`method: 'POST',`
			`cache: 'no-cache',`
			`headers: {`
			`'Content-Type': 'application/json',`
			`},`
			`body: JSON.stringify({ username, password }),`
			`});`

			`if (data.status === 401) {`
			`return {`
			`statusCode: 401,`
			`};`
			`}`

feat: add user management (#172) * feat: add root user creation * feat: add roles Unfortunately enums is not supported by SQLite, which means we manually have to handle roles as strings * feat: add admin settings endpoint and database fields * refactor: move the db cleaner to the bootstrap file * feat: add read only flag this means the user only is allowed to read content and not write * feat: create admin settings to be used by the server * feat: add read only migration * feat: add read only prehandler with configuration * refactor: use the initialized prisma connection * fix: get the decoded cookie token * feat: set the user cookie values available for all routes * refactor: remove the cookie token handling from the handler * chore: change the user fetch behaviour * fix: update admin settings immediately * chore: connect the dots * feat: implement the read only logic for the frontend * feat: add the UI admin settings page * feat: add the UI admin settings page * chore: change the title to success * chore: use translations for parts of the settings Will add it for all when the text is decided * chore: use translations for parts of the settings * fix: error handling if you are not allowed to update settings * refactor: how the user disable feature is working * refactor: how we update the admin settings config * docs: remove comment * docs: remove disable users env var doc * docs: add information about admin settings * chore: handle code smells 2023-04-09 11:36:01 +02:00			`const json = await data.json();`

			`if (data.status === 403) {`
			`return {`
			`statusCode: 403,`
fix: get email domain in a simplified way (#282) this will replace the extract domain package 2024-03-10 09:51:15 +01:00			`message: json.message,`
feat: add user management (#172) * feat: add root user creation * feat: add roles Unfortunately enums is not supported by SQLite, which means we manually have to handle roles as strings * feat: add admin settings endpoint and database fields * refactor: move the db cleaner to the bootstrap file * feat: add read only flag this means the user only is allowed to read content and not write * feat: create admin settings to be used by the server * feat: add read only migration * feat: add read only prehandler with configuration * refactor: use the initialized prisma connection * fix: get the decoded cookie token * feat: set the user cookie values available for all routes * refactor: remove the cookie token handling from the handler * chore: change the user fetch behaviour * fix: update admin settings immediately * chore: connect the dots * feat: implement the read only logic for the frontend * feat: add the UI admin settings page * feat: add the UI admin settings page * chore: change the title to success * chore: use translations for parts of the settings Will add it for all when the text is decided * chore: use translations for parts of the settings * fix: error handling if you are not allowed to update settings * refactor: how the user disable feature is working * refactor: how we update the admin settings config * docs: remove comment * docs: remove disable users env var doc * docs: add information about admin settings * chore: handle code smells 2023-04-09 11:36:01 +02:00			`};`
			`}`

			`return json;`
Account (#22) * initial * Add working sign in / sign up logic * Set expire jwt token in 7 days * Use a JWT secret that is not the encryption secret * Add basic sign in page * Add user verification * Add account page * Add simple api docs * Update basic auth account page * Add more prerender urls * Remove logged in pages * Add basic auth check * Rename SECRET_HOSTNAME to SECRET_LOCAL_HOSTNAME as this is what is defined for fastify * update to localHostname * Add comments * Move account data to its own controller * Minor styling 2021-06-18 14:57:10 +02:00			`};`

feat: add email and signup route 2021-06-27 21:03:47 +02:00			`export const signUp = async (email, username, password) => {`
Account (#22) * initial * Add working sign in / sign up logic * Set expire jwt token in 7 days * Use a JWT secret that is not the encryption secret * Add basic sign in page * Add user verification * Add account page * Add simple api docs * Update basic auth account page * Add more prerender urls * Remove logged in pages * Add basic auth check * Rename SECRET_HOSTNAME to SECRET_LOCAL_HOSTNAME as this is what is defined for fastify * update to localHostname * Add comments * Move account data to its own controller * Minor styling 2021-06-18 14:57:10 +02:00			const data = await fetch(`${config.get('api.host')}/authentication/signup`, {
			`method: 'POST',`
			`cache: 'no-cache',`
			`headers: {`
			`'Content-Type': 'application/json',`
			`},`
feat: add email and signup route 2021-06-27 21:03:47 +02:00			`body: JSON.stringify({ email, username, password }),`
Account (#22) * initial * Add working sign in / sign up logic * Set expire jwt token in 7 days * Use a JWT secret that is not the encryption secret * Add basic sign in page * Add user verification * Add account page * Add simple api docs * Update basic auth account page * Add more prerender urls * Remove logged in pages * Add basic auth check * Rename SECRET_HOSTNAME to SECRET_LOCAL_HOSTNAME as this is what is defined for fastify * update to localHostname * Add comments * Move account data to its own controller * Minor styling 2021-06-18 14:57:10 +02:00			`});`

feat: add user management (#172) * feat: add root user creation * feat: add roles Unfortunately enums is not supported by SQLite, which means we manually have to handle roles as strings * feat: add admin settings endpoint and database fields * refactor: move the db cleaner to the bootstrap file * feat: add read only flag this means the user only is allowed to read content and not write * feat: create admin settings to be used by the server * feat: add read only migration * feat: add read only prehandler with configuration * refactor: use the initialized prisma connection * fix: get the decoded cookie token * feat: set the user cookie values available for all routes * refactor: remove the cookie token handling from the handler * chore: change the user fetch behaviour * fix: update admin settings immediately * chore: connect the dots * feat: implement the read only logic for the frontend * feat: add the UI admin settings page * feat: add the UI admin settings page * chore: change the title to success * chore: use translations for parts of the settings Will add it for all when the text is decided * chore: use translations for parts of the settings * fix: error handling if you are not allowed to update settings * refactor: how the user disable feature is working * refactor: how we update the admin settings config * docs: remove comment * docs: remove disable users env var doc * docs: add information about admin settings * chore: handle code smells 2023-04-09 11:36:01 +02:00			`const json = await data.json();`

			`if (data.status === 403) {`
			`return {`
			`statusCode: 403,`
fix: get email domain in a simplified way (#282) this will replace the extract domain package 2024-03-10 09:51:15 +01:00			`message: json.message,`
feat: add user management (#172) * feat: add root user creation * feat: add roles Unfortunately enums is not supported by SQLite, which means we manually have to handle roles as strings * feat: add admin settings endpoint and database fields * refactor: move the db cleaner to the bootstrap file * feat: add read only flag this means the user only is allowed to read content and not write * feat: create admin settings to be used by the server * feat: add read only migration * feat: add read only prehandler with configuration * refactor: use the initialized prisma connection * fix: get the decoded cookie token * feat: set the user cookie values available for all routes * refactor: remove the cookie token handling from the handler * chore: change the user fetch behaviour * fix: update admin settings immediately * chore: connect the dots * feat: implement the read only logic for the frontend * feat: add the UI admin settings page * feat: add the UI admin settings page * chore: change the title to success * chore: use translations for parts of the settings Will add it for all when the text is decided * chore: use translations for parts of the settings * fix: error handling if you are not allowed to update settings * refactor: how the user disable feature is working * refactor: how we update the admin settings config * docs: remove comment * docs: remove disable users env var doc * docs: add information about admin settings * chore: handle code smells 2023-04-09 11:36:01 +02:00			`};`
			`}`

			`return json;`
Account (#22) * initial * Add working sign in / sign up logic * Set expire jwt token in 7 days * Use a JWT secret that is not the encryption secret * Add basic sign in page * Add user verification * Add account page * Add simple api docs * Update basic auth account page * Add more prerender urls * Remove logged in pages * Add basic auth check * Rename SECRET_HOSTNAME to SECRET_LOCAL_HOSTNAME as this is what is defined for fastify * update to localHostname * Add comments * Move account data to its own controller * Minor styling 2021-06-18 14:57:10 +02:00			`};`

feat(cookie): change the flow to use cookies for sign in / out / up (#164) * feat(cookie): change the flow to use cookies for sign in / out / up 2023-03-11 17:58:35 +01:00			`export const signOut = async () => {`
			const data = await fetch(`${config.get('api.host')}/authentication/signout`, {
			`method: 'POST',`
			`cache: 'no-cache',`
			`});`

			`return data.json();`
			`};`

			`export const verify = async () => {`
Account (#22) * initial * Add working sign in / sign up logic * Set expire jwt token in 7 days * Use a JWT secret that is not the encryption secret * Add basic sign in page * Add user verification * Add account page * Add simple api docs * Update basic auth account page * Add more prerender urls * Remove logged in pages * Add basic auth check * Rename SECRET_HOSTNAME to SECRET_LOCAL_HOSTNAME as this is what is defined for fastify * update to localHostname * Add comments * Move account data to its own controller * Minor styling 2021-06-18 14:57:10 +02:00			const data = await fetch(`${config.get('api.host')}/authentication/verify`, {
			`method: 'GET',`
			`cache: 'no-cache',`
			`headers: {`
			`'Content-Type': 'application/json',`
			`},`
			`});`

			`if (data.status === 401) {`
			`return {`
			`statusCode: 401,`
			`};`
			`}`

chore: fix code smells 2022-09-13 20:48:13 +02:00			`return data.json();`
Account (#22) * initial * Add working sign in / sign up logic * Set expire jwt token in 7 days * Use a JWT secret that is not the encryption secret * Add basic sign in page * Add user verification * Add account page * Add simple api docs * Update basic auth account page * Add more prerender urls * Remove logged in pages * Add basic auth check * Rename SECRET_HOSTNAME to SECRET_LOCAL_HOSTNAME as this is what is defined for fastify * update to localHostname * Add comments * Move account data to its own controller * Minor styling 2021-06-18 14:57:10 +02:00			`};`
feat: refresh session (#250) * chore: remove a comment not related to its code * feat: handle refresh session logic by adding this, it will prompt the user to extend the session information 2024-01-21 18:12:11 +01:00
			`export const refresh = async () => {`
			const data = await fetch(`${config.get('api.host')}/authentication/refresh`, {
			`method: 'GET',`
			`cache: 'no-cache',`
			`headers: {`
			`'Content-Type': 'application/json',`
			`},`
			`});`

			`if (data.status === 401) {`
			`return {`
			`statusCode: 401,`
			`};`
			`}`

			`return data.json();`
			`};`