User token auth

Author: tib

Chapter 13/myProject/Sources/App/Modules/Blog/BlogRouter.swift

@@ -28,7 +28,9 @@ struct BlogRouter: RouteCollection {
         postAdminController.setupRoutes(admin)
         categoryAdminController.setupRoutes(admin)
 
-        let api = routes.grouped("api")
+        let api = routes
+            .grouped(AuthenticatedUser.guardMiddleware())
+            .grouped("api")
         postApiController.setupRoutes(api)
         categoryApiController.setupRoutes(api)
     }

Chapter 13/myProject/Sources/App/Modules/User/Authenticators/UserTokenAuthenticator.swift

@@ -0,0 +1,23 @@
+//
+//  File.swift
+//  
+//
+//  Created by Tibor Bodecs on 2022. 01. 07..
+//
+
+import Vapor
+import Fluent
+
+struct UserTokenAuthenticator: AsyncBearerAuthenticator {
+
+    func authenticate(bearer: BearerAuthorization, for req: Request) async throws {
+        guard let token = try await UserTokenModel.query(on: req.db).filter(\.$value == bearer.token).first() else {
+            return
+        }
+
+        guard let user = try await UserAccountModel.find(token.$user.id, on: req.db) else {
+            return
+        }
+        req.auth.login(AuthenticatedUser(id: user.id!, email: user.email))
+    }
+}

Chapter 13/myProject/Sources/App/Modules/User/Controllers/UserApiController.swift

@@ -0,0 +1,25 @@
+//
+//  File.swift
+//  
+//
+//  Created by Tibor Bodecs on 2022. 01. 07..
+//
+
+import Vapor
+
+extension User.Token.Detail: Content {}
+
+struct UserApiController {
+    
+    func signInApi(req: Request) async throws -> User.Token.Detail {
+        guard let user = req.auth.get(AuthenticatedUser.self) else {
+            throw Abort(.unauthorized)
+        }
+        let letters = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789="
+        let tokenValue = String((0..<64).map { _ in letters.randomElement()! })
+        let token = UserTokenModel(value: tokenValue, userId: user.id)
+        try await token.create(on: req.db)
+        let userDetail = User.Account.Detail(id: user.id, email: user.email)
+        return User.Token.Detail(id: token.id!, value: token.value, user: userDetail)
+    }
+}

Chapter 13/myProject/Sources/App/Modules/User/Database/Migrations/UserMigrations.swift

@@ -19,9 +19,18 @@ enum UserMigrations {
                 .field(UserAccountModel.FieldKeys.v1.password, .string, .required)
                 .unique(on: UserAccountModel.FieldKeys.v1.email)
                 .create()
+            
+            try await db.schema(UserTokenModel.schema)
+                .id()
+                .field(UserTokenModel.FieldKeys.v1.value, .string, .required)
+                .field(UserTokenModel.FieldKeys.v1.userId, .uuid, .required)
+                .foreignKey(UserTokenModel.FieldKeys.v1.userId, references: UserAccountModel.schema, .id)
+                .unique(on: UserTokenModel.FieldKeys.v1.value)
+                .create()
         }
 
         func revert(on db: Database) async throws  {
+            try await db.schema(UserTokenModel.schema).delete()
             try await db.schema(UserAccountModel.schema).delete()
         }
     }

Chapter 13/myProject/Sources/App/Modules/User/Database/Models/UserTokenModel.swift

@@ -0,0 +1,35 @@
+//
+//  File.swift
+//  
+//
+//  Created by Tibor Bodecs on 2022. 01. 07..
+//
+
+import Vapor
+import Fluent
+
+final class UserTokenModel: DatabaseModelInterface {
+    typealias Module = UserModule
+        
+    struct FieldKeys {
+        struct v1 {
+            static var value: FieldKey { "value" }
+            static var userId: FieldKey { "user_id" }
+        }
+    }
+    
+    @ID() var id: UUID?
+    @Field(key: FieldKeys.v1.value) var value: String
+    @Parent(key: FieldKeys.v1.userId) var user: UserAccountModel
+
+    init() { }
+    
+    init(id: UUID? = nil,
+         value: String,
+         userId: UUID)
+    {
+        self.id = id
+        self.value = value
+        self.$user.id = userId
+    }
+}

Chapter 13/myProject/Sources/App/Modules/User/Objects/User.swift

@@ -0,0 +1,10 @@
+//
+//  File.swift
+//  
+//
+//  Created by Tibor Bodecs on 2022. 01. 07..
+//
+
+enum User: ApiModuleInterface {
+    
+}

Chapter 13/myProject/Sources/App/Modules/User/Objects/UserAccount.swift

@@ -0,0 +1,43 @@
+//
+//  File.swift
+//  
+//
+//  Created by Tibor Bodecs on 2022. 01. 07..
+//
+
+import Foundation
+
+extension User {
+
+    enum Account: ApiModelInterface {
+        typealias Module = User
+    }
+}
+
+extension User.Account {
+    
+    struct List: Codable {
+        let id: UUID
+        let email: String
+    }
+    
+    struct Detail: Codable {
+        let id: UUID
+        let email: String
+    }
+    
+    struct Create: Codable {
+        let email: String
+        let password: String
+    }
+    
+    struct Update: Codable {
+        let email: String
+        let password: String?
+    }
+    
+    struct Patch: Codable {
+        let email: String?
+        let password: String?
+    }
+}

Chapter 13/myProject/Sources/App/Modules/User/Objects/UserToken.swift

@@ -0,0 +1,24 @@
+//
+//  File.swift
+//  
+//
+//  Created by Tibor Bodecs on 2022. 01. 07..
+//
+
+import Foundation
+
+extension User {
+
+    enum Token: ApiModelInterface {
+        typealias Module = User
+    }
+}
+
+extension User.Token {
+    
+    struct Detail: Codable {
+        let id: UUID
+        let value: String
+        let user: User.Account.Detail
+    }
+}

Chapter 13/myProject/Sources/App/Modules/User/UserModule.swift

@@ -16,6 +16,7 @@ struct UserModule: ModuleInterface {
         app.migrations.add(UserMigrations.seed())
 
         app.middleware.use(UserSessionAuthenticator())
+        app.middleware.use(UserTokenAuthenticator())
 
         try router.boot(routes: app.routes)
     }

Chapter 13/myProject/Sources/App/Modules/User/UserRouter.swift

@@ -10,6 +10,7 @@ import Vapor
 struct UserRouter: RouteCollection {
 
     let frontendController = UserFrontendController()
+    let apiController = UserApiController()
 
     func boot(routes: RoutesBuilder) throws {
         routes.get("sign-in", use: frontendController.signInView)
@@ -18,5 +19,9 @@ struct UserRouter: RouteCollection {
             .post("sign-in", use: frontendController.signInAction)
 
         routes.get("sign-out", use: frontendController.signOut)
+        
+        routes.grouped("api")
+            .grouped(UserCredentialsAuthenticator())
+            .post("sign-in", use: apiController.signInApi)
     }
 }