authd/src/main.cr

require "uuid"

require "kemal"
require "jwt"

require "pg"
require "crecto"

require "./user.cr"

authd_db_name = "authd"
authd_db_hostname = "localhost"
authd_db_user = "user"
authd_db_password = "nico-nico-nii"
authd_jwt_key = "nico-nico-nii"

Kemal.config.extra_options do |parser|
	parser.on "-d name", "--database-name name", "Database name." do |name|
		authd_db_name = name
	end

	parser.on "-u name", "--database-username user", "Database user." do |name|
		authd_db_user = name
	end

	parser.on "-a host", "--hostname host", "Database host name." do |host|
		authd_db_hostname = host
	end

	parser.on "-P file", "--password-file file", "Password file." do |file_name|
		authd_db_password = File.read(file_name).chomp
	end

	parser.on "-K file", "--key-file file", "JWT key file" do |file_name|
		authd_jwt_key = File.read(file_name).chomp
	end
end

post "/token" do |env|
	env.response.content_type = "application/json"

	username = env.params.json["username"]?
	password = env.params.json["password"]?

	if ! username.is_a? String
		next halt env, status_code: 400, response: ({error: "Missing username."}.to_json)
	end

	if ! password.is_a? String
		next halt env, status_code: 400, response: ({error: "Missing password."}.to_json)
	end

	user = DataBase.get_by AuthD::User, username: username, password: password

	if ! user
		next halt env, status_code: 400, response: ({error: "Invalid user or password."}.to_json)
	end

	{
		"status" => "success",
		"token" => JWT.encode user.to_h, authd_jwt_key, "HS256"
	}.to_json
end

module DataBase
	extend Crecto::Repo
end

Kemal.run do
	DataBase.config do |conf|
		conf.adapter = Crecto::Adapters::Postgres
		conf.hostname = authd_db_hostname
		conf.database = authd_db_name
		conf.username = authd_db_user
		conf.password = authd_db_password
	end

	# Dummy query to check DB connection is possible.
	begin
		DataBase.all AuthD::User, Crecto::Repo::Query.new
	rescue e
		puts "Database connection failed: #{e.message}"

		Kemal.stop
	end
end
initial commit 2018-09-22 19:08:28 +02:00			`require "uuid"`

			`require "kemal"`
			`require "jwt"`

			`require "pg"`
			`require "crecto"`

Various. - JWT key can be set from command-line (through a file). - User class split to a separate file to allow use by other tools. - Minor style changes. 2018-09-22 21:23:50 +02:00			`require "./user.cr"`

initial commit 2018-09-22 19:08:28 +02:00			`authd_db_name = "authd"`
			`authd_db_hostname = "localhost"`
			`authd_db_user = "user"`
Improved configuration CLI. 2018-09-22 19:46:48 +02:00			`authd_db_password = "nico-nico-nii"`
			`authd_jwt_key = "nico-nico-nii"`
initial commit 2018-09-22 19:08:28 +02:00
			`Kemal.config.extra_options do \|parser\|`
Improved configuration CLI. 2018-09-22 19:46:48 +02:00			`parser.on "-d name", "--database-name name", "Database name." do \|name\|`
			`authd_db_name = name`
initial commit 2018-09-22 19:08:28 +02:00			`end`

Improved configuration CLI. 2018-09-22 19:46:48 +02:00			`parser.on "-u name", "--database-username user", "Database user." do \|name\|`
			`authd_db_user = name`
initial commit 2018-09-22 19:08:28 +02:00			`end`

Improved configuration CLI. 2018-09-22 19:46:48 +02:00			`parser.on "-a host", "--hostname host", "Database host name." do \|host\|`
			`authd_db_hostname = host`
initial commit 2018-09-22 19:08:28 +02:00			`end`

Improved configuration CLI. 2018-09-22 19:46:48 +02:00			`parser.on "-P file", "--password-file file", "Password file." do \|file_name\|`
chomp() used instead of gsub where possible. 2018-09-24 22:10:24 +02:00			`authd_db_password = File.read(file_name).chomp`
Improved configuration CLI. 2018-09-22 19:46:48 +02:00			`end`

			`parser.on "-K file", "--key-file file", "JWT key file" do \|file_name\|`
chomp() used instead of gsub where possible. 2018-09-24 22:10:24 +02:00			`authd_jwt_key = File.read(file_name).chomp`
initial commit 2018-09-22 19:08:28 +02:00			`end`
			`end`

			`post "/token" do \|env\|`
			`env.response.content_type = "application/json"`

			`username = env.params.json["username"]?`
			`password = env.params.json["password"]?`

			`if ! username.is_a? String`
			`next halt env, status_code: 400, response: ({error: "Missing username."}.to_json)`
			`end`

			`if ! password.is_a? String`
			`next halt env, status_code: 400, response: ({error: "Missing password."}.to_json)`
			`end`

DataBase connection check during startup. 2018-09-23 16:17:48 +02:00			`user = DataBase.get_by AuthD::User, username: username, password: password`
initial commit 2018-09-22 19:08:28 +02:00
			`if ! user`
			`next halt env, status_code: 400, response: ({error: "Invalid user or password."}.to_json)`
			`end`

			`{`
			`"status" => "success",`
Various. - JWT key can be set from command-line (through a file). - User class split to a separate file to allow use by other tools. - Minor style changes. 2018-09-22 21:23:50 +02:00			`"token" => JWT.encode user.to_h, authd_jwt_key, "HS256"`
initial commit 2018-09-22 19:08:28 +02:00			`}.to_json`
			`end`

DataBase connection check during startup. 2018-09-23 16:17:48 +02:00			`module DataBase`
initial commit 2018-09-22 19:08:28 +02:00			`extend Crecto::Repo`
			`end`

Not enforcing port number anymore. 2018-09-23 16:02:35 +02:00			`Kemal.run do`
DataBase connection check during startup. 2018-09-23 16:17:48 +02:00			`DataBase.config do \|conf\|`
initial commit 2018-09-22 19:08:28 +02:00			`conf.adapter = Crecto::Adapters::Postgres`
			`conf.hostname = authd_db_hostname`
			`conf.database = authd_db_name`
			`conf.username = authd_db_user`
Improved configuration CLI. 2018-09-22 19:46:48 +02:00			`conf.password = authd_db_password`
initial commit 2018-09-22 19:08:28 +02:00			`end`
DataBase connection check during startup. 2018-09-23 16:17:48 +02:00
			`# Dummy query to check DB connection is possible.`
			`begin`
			`DataBase.all AuthD::User, Crecto::Repo::Query.new`
			`rescue e`
			`puts "Database connection failed: #{e.message}"`

			`Kemal.stop`
			`end`
initial commit 2018-09-22 19:08:28 +02:00			`end`