spchcap/speech.capital
1
0
Fork 0
mirror of https://github.com/spchcap/speech.capital.git synced 2026-01-14 16:48:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

Feat: Add user role to auth cookie

Browse Source
This commit is contained in:
multipleof4
2025-10-02 13:46:00 -07:00
parent aea1fedd22
commit c34da04919
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
functions/api/login.js
View File

@@ -10,7 +10,7 @@ export async function onRequestPost({ request, env }) {
const { username, pass_hash } = await request.json(); const { username, pass_hash } = await request.json();
if (!username || !pass_hash) return json({ error: 'Missing fields' }, { status: 400 }); if (!username || !pass_hash) return json({ error: 'Missing fields' }, { status: 400 });
const user = await env.D1_SPCHCAP.prepare('SELECT id, pass_hash FROM users WHERE username = ?').bind(username).first(); const user = await env.D1_SPCHCAP.prepare('SELECT id, pass_hash, role FROM users WHERE username = ?').bind(username).first();
if (!user || !tsEq(user.pass_hash, pass_hash)) return json({ error: 'Invalid credentials' }, { status: 401 }); if (!user || !tsEq(user.pass_hash, pass_hash)) return json({ error: 'Invalid credentials' }, { status: 401 });
const exp = new Date(Date.now() + 2592e6); // 30 days const exp = new Date(Date.now() + 2592e6); // 30 days
@@ -18,6 +18,7 @@ export async function onRequestPost({ request, env }) {
const headers = new Headers(); const headers = new Headers();
headers.append('Set-Cookie', `auth_user=${username}; ${opts}`); headers.append('Set-Cookie', `auth_user=${username}; ${opts}`);
headers.append('Set-Cookie', `auth_hash=${user.pass_hash}; ${opts}`); headers.append('Set-Cookie', `auth_hash=${user.pass_hash}; ${opts}`);
headers.append('Set-Cookie', `auth_role=${user.role}; ${opts}`);
return json({ success: true }, { headers }); return json({ success: true }, { headers });
} catch (e) { } catch (e) {