Implemented authentication handler - need to work on session manager (created function template)

Author: PythonHacker24

config.yaml

@@ -38,6 +38,7 @@ authentication:
     address: "ldaps://openldap"  # Use the service name from docker-compose
     admin_dn: ${LACLM_LDAP_ADMIN_DN}
     admin_password: ${LACLM_LDAP_ADMIN_PASSWORD}
+    search_base: "ou=users,dc=example,dc=com"
 
 backend_security:
   jwt_secret_token: ${JWT_SECRET_TOKEN}

config/authentication.go

@@ -17,6 +17,7 @@ type LDAPConfig struct {
 	Address			string 		`yaml:"address,omitempty"`
 	AdminDN 		string		`yaml:"admin_dn,omitempty"`
 	AdminPassword	string		`yaml:"admin_password,omitempty"`
+	SearchBase		string		`yaml:"search_base,omitempty"`
 }
 
 /* normalization function */
@@ -50,6 +51,14 @@ func (l *LDAPConfig) Normalize() error {
 			Please check the docs for more information: 
 		`))
 	}
+
+	if l.SearchBase == "" {
+		return errors.New(heredoc.Doc(`
+			LDAP search base is not specified in the configuration file. 
+
+			Please check the docs for more information: 
+		`))
+	}
 
 	return nil
 }

internal/auth/handler.go

@@ -1 +1,64 @@
 package auth
+
+import (
+	"encoding/json"
+	"net/http"
+
+	"go.uber.org/zap"
+
+	"github.com/PythonHacker24/linux-acl-management-backend/config"
+	"github.com/PythonHacker24/linux-acl-management-backend/internal/session"
+)
+
+/* Handles user login and creates a session */
+func LoginHandler(w http.ResponseWriter, r *http.Request) {
+	
+	/* POST Request only - specified in routes */
+
+    var user User
+    err := json.NewDecoder(r.Body).Decode(&user)
+    if err != nil {
+        http.Error(w, "Invalid request body", http.StatusBadRequest)
+        return
+    }
+
+    if user.Username == "" || user.Password == "" {
+        http.Error(w, "Username and password are required", http.StatusBadRequest)
+        return
+    }
+
+	/* authenticate the user */
+    authStatus := AuthenticateUser(user.Username, 
+		user.Password, 
+		config.BackendConfig.Authentication.LDAPConfig.SearchBase,
+	)
+    if !authStatus {
+		zap.L().Warn("User with invalid credentials attempted to log in")
+        http.Error(w, "Invalid credentials", http.StatusUnauthorized)
+        return
+    }
+
+	/* after building session manager */
+    session.CreateSession(user.Username)
+
+	/* generate JWT for user interaction */
+    token, err := GenerateJWT(user.Username)
+    if err != nil {
+        zap.L().Error("Error generating token", 
+			zap.Error(err),
+		)
+        http.Error(w, "Error generating token", http.StatusInternalServerError)
+        return
+    }
+
+	/* create auth successful response */
+    response := map[string]string{"token": token}
+    w.Header().Set("Content-Type", "application/json")
+    if err := json.NewEncoder(w).Encode(response); err != nil {
+        zap.L().Error("Failed to encode response", 
+			zap.Error(err),
+		)
+        http.Error(w, "Failed to encode response", http.StatusInternalServerError)
+        return
+    }
+}

internal/session/session.go

@@ -0,0 +1,5 @@
+package session
+
+func CreateSession(username string) {
+	
+}