-
Notifications
You must be signed in to change notification settings - Fork 0
/
rpc_login_user.go
89 lines (75 loc) · 2.8 KB
/
rpc_login_user.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
package gapi
import (
"context"
"errors"
db "github.com/blessedmadukoma/go-simple-bank/db/sqlc"
"github.com/blessedmadukoma/go-simple-bank/gvalidator"
"github.com/blessedmadukoma/go-simple-bank/pb"
"github.com/blessedmadukoma/go-simple-bank/util"
"google.golang.org/genproto/googleapis/rpc/errdetails"
"google.golang.org/grpc/codes"
"google.golang.org/grpc/status"
"google.golang.org/protobuf/types/known/timestamppb"
)
func (srv *Server) LoginUser(ctx context.Context, req *pb.LoginUserRequest) (*pb.LoginUserResponse, error) {
violations := validateLoginUserRequest(req)
if violations != nil {
return nil, invalidArgumentError(violations)
}
user, err := srv.store.GetUserByUsername(ctx, req.Username)
if err != nil {
if errors.Is(err, db.ErrRecordNotFound) {
return nil, status.Errorf(codes.NotFound, "user not found")
}
return nil, status.Errorf(codes.Internal, "failed to find user: %s", err)
}
err = util.CheckPassword(req.Password, user.HashedPassword)
if err != nil {
return nil, status.Errorf(codes.NotFound, "passwords do not match")
}
accessToken, accessPayload, err := srv.tokenMaker.CreateToken(user.Username, srv.config.AccessTokenDuration)
if err != nil {
return nil, status.Errorf(codes.Internal, "failed to create access token: %s", err)
}
refreshToken, refreshPayload, err := srv.tokenMaker.CreateToken(
user.Username,
srv.config.RefreshTokenDuration,
)
if err != nil {
return nil, status.Errorf(codes.Internal, "failed to create refresh token: %s", err)
}
metadata := srv.extractMetadata(ctx)
session, err := srv.store.CreateSession(ctx, db.CreateSessionParams{
ID: refreshPayload.ID,
Username: user.Username,
RefreshToken: refreshToken,
UserAgent: metadata.UserAgent,
ClientIp: metadata.ClientIP,
// UserAgent: "",
// ClientIp: "",
IsBlocked: false,
ExpiresAt: refreshPayload.ExpiredAt,
})
if err != nil {
return nil, status.Errorf(codes.Unimplemented, "failed to create session: %s", err)
}
rsp := &pb.LoginUserResponse{
SessionId: session.ID.String(),
AccessToken: accessToken,
AccessTokenExpiresAt: timestamppb.New(accessPayload.ExpiredAt),
RefreshToken: refreshToken,
RefreshTokenExpiresAt: timestamppb.New(refreshPayload.ExpiredAt),
User: convertUser(user),
}
return rsp, nil
}
// validateLoginUserRequest validates the request body of LoginUserRequest.
func validateLoginUserRequest(req *pb.LoginUserRequest) (violations []*errdetails.BadRequest_FieldViolation) {
if err := gvalidator.ValidateUsername(req.GetUsername()); err != nil {
violations = append(violations, fieldViolation("username", err))
}
if err := gvalidator.ValidatePassword(req.GetPassword()); err != nil {
violations = append(violations, fieldViolation("password", err))
}
return violations
}