refactor(server): moved the server files outside the src to improve static files

server/services/auth/controllers/getUserAccess.ts

@@ -0,0 +1,15 @@
+/*
+pass over a users uuid and return all modules they have permission too. 
+in the login route we attach it to user under roles.
+*/
+
+import {eq} from "drizzle-orm";
+import {db} from "../../../../database/dbclient.js";
+import {userRoles} from "../../../../database/schema/userRoles.js";
+
+export const roleCheck = async (user_id: any) => {
+    // get the user roles by the user_id
+    const roles = await db.select().from(userRoles).where(eq(userRoles.user_id, user_id));
+
+    return roles;
+};

server/services/auth/controllers/login.ts

@@ -0,0 +1,55 @@
+import jwt from "jsonwebtoken";
+import {db} from "../../../../database/dbclient.js";
+import {users} from "../../../../database/schema/users.js";
+import {eq, sql} from "drizzle-orm";
+import {checkPassword} from "../utils/checkPassword.js";
+import {roleCheck} from "./getUserAccess.js";
+
+/**
+ * Authenticate a user and return a JWT.
+ */
+const {sign, verify} = jwt;
+
+export async function login(
+    username: string,
+    password: string
+): Promise<{token: string; user: {user_id: string; username: string}}> {
+    const user = await db.select().from(users).where(eq(users.username, username));
+
+    //console.log(user);
+    if (user.length === 0) {
+        throw new Error("Invalid or Missing user");
+    }
+    // check the password
+    const checkedPass = await checkPassword(password, user[0]?.password);
+    //console.log(checkedPass);
+    if (!checkedPass) {
+        throw new Error("Invalid Password");
+    }
+
+    // Create a JWT
+    const secret: string = process.env.JWT_SECRET!;
+    const expiresIn = Number(process.env.JWT_EXPIRES!) || 60;
+
+    // get the user roles
+    const roles = await roleCheck(user[0].user_id);
+    const userData = {
+        user_id: user[0].user_id,
+        username: user[0].username,
+        email: user[0].email,
+        roles: roles || null,
+        role: user[0].role || null, // this should be removed onces full migration to v2 is completed
+    };
+
+    // update the user last login
+    // try {
+    //     db.update(users)
+    //     .set({lastLogin: sql`NOW()`})
+    //     .where(eq(users.user_id, user[0].user_id));
+    // } catch (e) {
+    //     console.log(e);
+    // }
+    const token = sign({user: userData}, secret, {expiresIn: expiresIn * 60});
+
+    return {token, user: userData};
+}

server/services/auth/controllers/logout.ts

@@ -0,0 +1,8 @@
+/**
+ * Logout (clear the token).
+ * This is a placeholder function since JWTs are stateless.
+ * In a real app, you might want to implement token blacklisting.
+ */
+export function logout(): {message: string} {
+    return {message: "Logout successful"};
+}

server/services/auth/controllers/register.ts

@@ -0,0 +1 @@
+export const registerUser = async () => {};

server/services/auth/controllers/verifyToken.ts

@@ -0,0 +1,17 @@
+import {sign, verify} from "jsonwebtoken";
+
+/**
+ * Verify a JWT and return the decoded payload.
+ */
+
+const secret: string = process.env.JWT_SECRET! || "bnghsjhsd";
+const expiresIn: string = process.env.JWT_EXPIRES! || "1h";
+
+export function verifyToken(token: string): {userId: number} {
+    try {
+        const payload = verify(token, secret) as {userId: number};
+        return payload;
+    } catch (err) {
+        throw new Error("Invalid token");
+    }
+}