Stage 2

src/handlers/handler_login.erl

@@ -0,0 +1,67 @@
+-module(handler_login).
+-include("records.hrl").
+
+-export([init/2]).
+
+init(Req, Opts) ->
+  handle(Req, Opts).
+
+handle(Req, _Opts) ->
+  case cowboy_req:method(Req) of
+    <<"POST">> ->
+      {ok, Body, Req1} = cowboy_req:read_body(Req),
+      case jsx:decode(Body, [return_maps]) of
+        #{<<"email">> := Email, <<"password">> := Password} ->
+          case core_user:get_by_email(Email) of
+            {ok, User} ->
+              case logic_auth:verify_password(Password, User#user.password_hash) of
+                {ok, true} ->
+                  case User#user.status of
+                    active ->
+                      Token = logic_auth:generate_jwt(User#user.id, User#user.role),
+                      {RefreshToken, ExpiresAt} = logic_auth:generate_refresh_token(User#user.id),
+                      save_refresh_token(User#user.id, RefreshToken, ExpiresAt),
+                      Response = #{
+                        user => #{
+                          id => User#user.id,
+                          email => User#user.email,
+                          role => User#user.role
+                        },
+                        token => Token,
+                        refresh_token => RefreshToken
+                      },
+                      send_json(Req1, 200, Response);
+                    frozen ->
+                      send_error(Req1, 403, <<"Account frozen">>);
+                    deleted ->
+                      send_error(Req1, 403, <<"Account deleted">>)
+                  end;
+                _ ->
+                  send_error(Req1, 401, <<"Invalid credentials">>)
+              end;
+            {error, not_found} ->
+              send_error(Req1, 401, <<"Invalid credentials">>)
+          end;
+        _ ->
+          send_error(Req1, 400, <<"Invalid request body">>)
+      end;
+    _ ->
+      send_error(Req, 405, <<"Method not allowed">>)
+  end.
+
+save_refresh_token(UserId, Token, ExpiresAt) ->
+  Session = #session{
+    token = Token,
+    user_id = UserId,
+    expires_at = ExpiresAt,
+    type = refresh
+  },
+  mnesia:dirty_write(Session).
+
+send_json(Req, Status, Data) ->
+  Body = jsx:encode(Data),
+  cowboy_req:reply(Status, #{<<"content-type">> => <<"application/json">>}, Body, Req).
+
+send_error(Req, Status, Message) ->
+  Body = jsx:encode(#{error => Message}),
+  cowboy_req:reply(Status, #{<<"content-type">> => <<"application/json">>}, Body, Req).