auth via somethingawful cookie

2024-03-29 15:54:42 +01:00
parent b26434b795
commit c111723740
21 changed files with 408 additions and 1134 deletions
--- a/lib/something_erlang_web/router.ex
+++ b/lib/something_erlang_web/router.ex
@ -11,6 +11,7 @@ defmodule SomethingErlangWeb.Router do
    plug :protect_from_forgery
    plug :put_secure_browser_headers
    plug :fetch_current_user
+    plug :load_bbcookie
  end

  pipeline :api do
@ -24,16 +25,30 @@ defmodule SomethingErlangWeb.Router do
    post "/", PageController, :to_forum_path

    live_session :user_browsing,
-      on_mount: [{SomethingErlangWeb.UserAuth, :mount_current_user}] do
+      on_mount: [{SomethingErlangWeb.UserAuth, :ensure_authenticated}] do
      live "/thread", ThreadLive
      live "/thread/:id", ThreadLive
    end
  end

-  # Other scopes may use custom stacks.
-  # scope "/api", SomethingErlangWeb do
-  #   pipe_through :api
-  # end
+  ## Authentication routes
+
+  scope "/", SomethingErlangWeb do
+    pipe_through [:browser, :redirect_if_user_is_authenticated]
+
+    live_session :redirect_if_user_is_authenticated,
+      on_mount: [{SomethingErlangWeb.UserAuth, :redirect_if_user_is_authenticated}] do
+      live "/users/log_in", UserLoginLive, :new
+    end
+
+    post "/users/log_in", UserSessionController, :create
+  end
+
+  scope "/", SomethingErlangWeb do
+    pipe_through [:browser]
+
+    delete "/users/log_out", UserSessionController, :delete
+  end

  # Enable LiveDashboard and Swoosh mailbox preview in development
  if Application.compile_env(:something_erlang, :dev_routes) do
@ -47,46 +62,11 @@ defmodule SomethingErlangWeb.Router do
    scope "/dev" do
      pipe_through :browser

-      live_dashboard "/dashboard", ecto_repos: [SomethingErlang.Repo], metrics: SomethingErlangWeb.Telemetry
+      live_dashboard "/dashboard",
+        ecto_repos: [SomethingErlang.Repo],
+        metrics: SomethingErlangWeb.Telemetry
+
      forward "/mailbox", Plug.Swoosh.MailboxPreview
    end
  end
-
-  ## Authentication routes
-
-  scope "/", SomethingErlangWeb do
-    pipe_through [:browser, :redirect_if_user_is_authenticated]
-
-    live_session :redirect_if_user_is_authenticated,
-      on_mount: [{SomethingErlangWeb.UserAuth, :redirect_if_user_is_authenticated}] do
-      live "/users/register", UserRegistrationLive, :new
-      live "/users/log_in", UserLoginLive, :new
-      live "/users/reset_password", UserForgotPasswordLive, :new
-      live "/users/reset_password/:token", UserResetPasswordLive, :edit
-    end
-
-    post "/users/log_in", UserSessionController, :create
-  end
-
-  scope "/", SomethingErlangWeb do
-    pipe_through [:browser, :require_authenticated_user]
-
-    live_session :require_authenticated_user,
-      on_mount: [{SomethingErlangWeb.UserAuth, :ensure_authenticated}] do
-      live "/users/settings", UserSettingsLive, :edit
-      live "/users/settings/confirm_email/:token", UserSettingsLive, :confirm_email
-    end
-  end
-
-  scope "/", SomethingErlangWeb do
-    pipe_through [:browser]
-
-    delete "/users/log_out", UserSessionController, :delete
-
-    live_session :current_user,
-      on_mount: [{SomethingErlangWeb.UserAuth, :mount_current_user}] do
-      live "/users/confirm/:token", UserConfirmationLive, :edit
-      live "/users/confirm", UserConfirmationInstructionsLive, :new
-    end
-  end
 end