Ролевая модель и аудит Часть 1.

2026-04-28 19:12:02 +03:00
parent 7ea4efd7d9
commit b2cea7896d
32 changed files with 369 additions and 320 deletions
--- a/src/handlers/handler_login.erl
+++ b/src/handlers/handler_login.erl
@@ -2,7 +2,7 @@
 -behaviour(cowboy_handler).
 -export([init/2]).

-include("records.hrl").   %% ← необходим для #session{}
+-include("records.hrl").

 init(Req0, State) ->
  handle(Req0, State).
@@ -21,8 +21,8 @@ handle(Req, _Opts) ->
                #{<<"email">> := Email, <<"password">> := Password} ->
                  case eventhub_auth:authenticate_user_request(Req1, Email, Password) of
                    {ok, Token, User} ->
-                      {RefreshToken, ExpiresAt} = eventhub_auth:generate_refresh_token(maps:get(id, User)),
-                      save_refresh_token(maps:get(id, User), RefreshToken, ExpiresAt),
+                      {RefreshToken, _ExpiresAt} = eventhub_auth:generate_refresh_token(maps:get(id, User)),
+                      core_session:create(maps:get(id, User), RefreshToken),
                      Response = #{
                        user => #{
                          id => maps:get(id, User),
@@ -53,15 +53,6 @@ handle(Req, _Opts) ->
      send_error(Req, 405, <<"Method not allowed">>)
  end.

-save_refresh_token(UserId, Token, ExpiresAt) ->
-  Session = #session{          %% record определён в records.hrl
-    token = Token,
-    user_id = UserId,
-    expires_at = ExpiresAt,
-    type = refresh
-  },
-  mnesia:dirty_write(Session).
-
 send_json(Req, Status, Data) ->
  Body = jsx:encode(Data),
  cowboy_req:reply(Status, #{