ae51276a03
Web console - Pairing/Library/Stats refactored into self-contained subsections that each own their own queries + mutations; a shared slot-based layout (view.tsx) is filled by the live page (containers) and Storybook (pure cards + fixtures) so the layout can't drift. - All paired devices in one list on Pairing with a protocol column (punktfunk/1 + Moonlight), routing each unpair to the right endpoint; the redundant Clients page is removed. - Library: overview grid split from the add/edit form into separate files. - Login screen links out to the docs. Docs - "Console login password" section on every host page (apt/RPM/Bazzite/SteamOS/Windows) plus a new "Forgot your Password?" troubleshooting page, linked from the login screen. - Console served as HTTP/1.1 over TLS (drop the unusable HTTP/3 advertising) across the Bun entry, launchers, systemd units, and packaging. Tooling - Biome now respects .gitignore (stops linting generated code), config migrated to 2.5.1; all lint issues fixed cleanly. Also includes this branch's in-progress host, Apple client, packaging, and CI changes. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
29 lines
962 B
TypeScript
29 lines
962 B
TypeScript
// POST /_auth/login {password} — verify the shared password (constant-time), then seal an
|
|
// authenticated session cookie. Public (allowlisted in the gate) so an unauthenticated user
|
|
// can actually log in.
|
|
import { createError, defineEventHandler, readBody, useSession } from "h3";
|
|
import {
|
|
type SessionData,
|
|
sessionConfig,
|
|
timingSafeEqual,
|
|
uiPassword,
|
|
} from "../../util/auth";
|
|
|
|
export default defineEventHandler(async (event) => {
|
|
const expected = uiPassword();
|
|
if (!expected) {
|
|
throw createError({
|
|
statusCode: 503,
|
|
statusMessage: "auth not configured",
|
|
});
|
|
}
|
|
const body = await readBody<{ password?: string }>(event);
|
|
const password = String(body?.password ?? "");
|
|
if (!timingSafeEqual(password, expected)) {
|
|
throw createError({ statusCode: 401, statusMessage: "invalid password" });
|
|
}
|
|
const session = await useSession<SessionData>(event, sessionConfig());
|
|
await session.update({ authenticated: true });
|
|
return { ok: true };
|
|
});
|