multipleof4/KalBot
1
0
Fork 0
mirror of https://github.com/multipleof4/KalBot.git synced 2026-03-17 05:51:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
e5565327ec03d87b3e206e82fdcd643e36d1d86b
KalBot/app/api/login/route.js

53 lines
2.1 KiB
JavaScript
Raw Blame History

import { NextResponse } from 'next/server';
import crypto from 'crypto';
import { signSession } from '../../../lib/auth';
export async function POST(req) {
try {
const body = await req.json();
const { email, password, captcha } = body;
const cookieHash = req.cookies.get('captcha_hash')?.value;
const secret = process.env.CAPTCHA_SECRET || 'dev_secret_meow';
const expectedHash = crypto.createHmac('sha256', secret).update((captcha || '').toLowerCase()).digest('hex');
if (!cookieHash || cookieHash !== expectedHash) {
return NextResponse.json({ error: 'Invalid or expired captcha' }, { status: 400 });
}
if (email === process.env.ADMIN_EMAIL && password === process.env.ADMIN_PASS) {
// Generate our secure edge-compatible token
const token = await signSession();
const response = NextResponse.json({ success: true, message: 'Welcome back, Master!' });
// Set it as an HttpOnly cookie so JavaScript can't touch it
response.cookies.set('kalbot_session', token, {
httpOnly: true,
secure: process.env.NODE_ENV === 'production',
sameSite: 'strict',
path: '/',
maxAge: 60 * 60 * 24 // 1 day in seconds
});
return response;
} else {
// Trigger NTFY alert for failed login
if (process.env.NTFY_URL) {
await fetch(process.env.NTFY_URL, {
method: 'POST',
body: `Failed login attempt for email: ${email}`,
headers: {
'Title': 'Kalbot Login Alert',
'Priority': 'urgent',
'Tags': 'warning,skull'
}
}).catch(e => console.error("Ntfy error:", e));
}
return NextResponse.json({ error: 'Invalid credentials' }, { status: 401 });
}
} catch (err) {
return NextResponse.json({ error: 'Server error' }, { status: 500 });
}
}
Reference in New Issue View Git Blame Copy Permalink