ryan/lunarfront-manager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4bd1918e3b4f3cde544303507db0fae1f3eade2e
lunarfront-manager/src/index.ts
Ryan Moon 4bd1918e3b
Some checks failed
Build & Release / build (push) Has been cancelled
Details
feat: add JWT auth with db-backed users 
- users table created on startup via migrate()
- POST /api/auth/setup to create first user (blocked once any user exists)
- POST /api/auth/login returns httpOnly JWT cookie (7d expiry)
- POST /api/auth/logout clears cookie
- GET /api/auth/me for auth check
- All /api/customers routes require valid JWT
- Frontend shows login form when unauthenticated
- Fix type errors in k8s, do, and pgbouncer services
2026-04-03 07:41:36 -05:00

55 lines
1.3 KiB
TypeScript
Raw Blame History

import Fastify, { type FastifyRequest, type FastifyReply } from "fastify";
import jwtPlugin from "@fastify/jwt";
import cookiePlugin from "@fastify/cookie";
declare module "fastify" {
interface FastifyInstance {
authenticate: (req: FastifyRequest, reply: FastifyReply) => Promise<void>;
}
}
import staticFiles from "@fastify/static";
import { join } from "path";
import { config } from "./lib/config";
import { migrate } from "./db/manager";
import { authRoutes } from "./routes/auth";
import { customerRoutes } from "./routes/customers";
const app = Fastify({ logger: true });
await app.register(cookiePlugin);
await app.register(jwtPlugin, {
secret: config.jwtSecret,
cookie: { cookieName: "token", signed: false },
});
app.decorate("authenticate", async function (req: any, reply: any) {
try {
await req.jwtVerify({ onlyCookie: true });
} catch {
reply.status(401).send({ message: "Unauthorized" });
}
});
app.register(staticFiles, {
root: join(import.meta.dir, "../frontend"),
prefix: "/",
});
app.get("/health", async () => ({ status: "ok" }));
app.register(authRoutes, { prefix: "/api" });
app.register(customerRoutes, {
prefix: "/api",
onRequest: [app.authenticate],
} as any);
await migrate();
app.listen({ port: config.port, host: "0.0.0.0" }, (err) => {
if (err) {
app.log.error(err);
process.exit(1);
}
});
Reference in New Issue View Git Blame Copy Permalink