blocked for now, but it's a start

2025-05-21 15:53:59 +02:00 · 2025-05-21 15:53:59 +02:00 · ec0ae60b10
commit ec0ae60b10
parent c76c016a46
13 changed files with 272 additions and 0 deletions
--- a/src/routes/auth/client/index.tsx
+++ b/src/routes/auth/client/index.tsx
@ -0,0 +1,29 @@
+import { onMount } from "solid-js";
+
+export default function Index() {
+    onMount(async () => {
+        try {
+            // navigator.login.setStatus('logged-in');
+
+            const credential = await navigator.credentials.get({
+                identity: {
+                    providers: [{
+                        configURL: new URL('http://localhost:3000/fedcm.json'),
+                        clientId: '/auth/client',
+                        nonce: 'kaas',
+                        loginHint: 'chris',
+                    }],
+                    mode: 'passive',
+                    context: undefined,
+                },
+                mediation: undefined,
+            });
+
+            console.log(credential);
+        } catch(e) {
+            console.error(e);
+        }
+    });
+
+    return 'WOOT';
+}
--- a/src/routes/auth/idp/api/[...404].ts
+++ b/src/routes/auth/idp/api/[...404].ts
@ -0,0 +1,8 @@
+import { json } from "@solidjs/router";
+import { APIEvent } from "@solidjs/start/server";
+
+export const GET = ({ request }: APIEvent) => {
+    console.error(`url not found ${request.url}`);
+
+    // return json({ error: `url ${request.url} is not implemented` }, { status: 404 })
+};
--- a/src/routes/auth/idp/api/accounts.ts
+++ b/src/routes/auth/idp/api/accounts.ts
@ -0,0 +1,23 @@
+import { json } from "@solidjs/router";
+import { APIEvent } from "@solidjs/start/server";
+import { assertApiSession, assertCsrf, use, User } from "~/features/auth";
+
+export const GET = use(assertCsrf, assertApiSession, async (event: APIEvent) => {
+    const user = event.locals.user as User;
+    
+    console.log('accounts endpoint', user);
+
+    return json({
+        accounts: [
+            {
+                id: user.id,
+                given_name: user.givenName,
+                name: `${user.givenName} ${user.familyName}`,
+                email: user.username,
+                picture: user.picture,
+                login_hints: [user.username],
+                approved_clients: user.approvedClients,
+            }
+        ],
+    });
+});
--- a/src/routes/auth/idp/api/disconnect.ts
+++ b/src/routes/auth/idp/api/disconnect.ts
@ -0,0 +1,11 @@
+import { json } from "@solidjs/router";
+import { APIEvent } from "@solidjs/start/server";
+import { use, assertCsrf, assertApiSession } from "~/features/auth";
+
+export const POST = use(assertCsrf, assertApiSession, async ({ request, locals }: APIEvent) => {
+    console.log(locals, request);
+
+    return json({
+        account_id: locals.user.id,
+    });
+});
--- a/src/routes/auth/idp/api/idtokens.ts
+++ b/src/routes/auth/idp/api/idtokens.ts
@ -0,0 +1,11 @@
+import { json } from "@solidjs/router";
+import { APIEvent } from "@solidjs/start/server";
+import { use, assertCsrf, assertApiSession } from "~/features/auth";
+
+export const POST = use(assertCsrf, assertApiSession, async ({ request }: APIEvent) => {
+    console.log(request);
+    
+    return json({
+        token: 'THIS IS A BEAUTIFUL TOKEN',
+    });
+});
--- a/src/routes/auth/idp/api/login.ts
+++ b/src/routes/auth/idp/api/login.ts
@ -0,0 +1,35 @@
+import { json, redirect } from "@solidjs/router";
+import { APIEvent } from "@solidjs/start/server";
+import { getUser, signIn } from "~/features/auth";
+
+export const POST = async ({ request }: APIEvent) => {
+    const formData = await request.formData();
+    const username = formData.get('username');
+    const password = formData.get('password');
+    
+    if (typeof username !== 'string' || /^[a-z0-9-_]+$/.test(username) !== true) {
+        return json({ error: 'Bad request' }, { status: 400 })
+    }
+    
+    if (typeof password !== 'string' || password.length === 0) {
+        return json({ error: 'Bad request' }, { status: 400 })
+    }
+
+    const user = getUser(username);
+
+    if (user === undefined) {
+        return json({ error: 'Invalid credentials' }, { status: 400 });
+    }
+
+    if (user.credential !== password) {
+        return json({ error: 'Invalid credentials' }, { status: 400 });
+    }
+
+    await signIn(user);
+
+    return redirect('/auth/client', {
+        headers: {
+            'Set-Login': 'logged-in',
+        }
+    });
+};
--- a/src/routes/auth/idp/api/metadata.ts
+++ b/src/routes/auth/idp/api/metadata.ts
@ -0,0 +1,10 @@
+import { json } from "@solidjs/router";
+import { APIEvent } from "@solidjs/start/server";
+
+export const GET = ({ request }: APIEvent) => {
+    return json({ 
+        privacy_policy_url: '/privacy-policy.txt',
+        terms_of_service_url: '/terms-of-service.txt',
+        icons: []
+    });
+};
--- a/src/routes/auth/idp/index.tsx
+++ b/src/routes/auth/idp/index.tsx
@ -0,0 +1,17 @@
+import { useParams, useSearchParams } from "@solidjs/router"
+
+
+export default function Login() {
+    const [params] = useSearchParams();
+
+    return <div>
+        <h1>Login</h1>
+
+        <form method="post" action="/auth/idp/api/login">
+            <label>username: <input type="text" name="username" value={params.login_hint} /></label>
+            <label>password: <input type="password" name="password" value="test" /></label>
+
+            <button type="submit">Submit</button>
+        </form>
+    </div>
+}