added utils for unauth, verify, and response

2026-03-09 12:16:36 +00:00 · 2024-10-02 20:42:50 -04:00
parent d1e198fe55
commit 44e020784b
11 changed files with 125 additions and 69 deletions
--- a/server/routers/auth/verifyTotp.ts
+++ b/server/routers/auth/verifyTotp.ts
@@ -0,0 +1,42 @@
+import { Request, Response, NextFunction } from "express";
+import createHttpError from "http-errors";
+import { z } from "zod";
+import { fromError } from "zod-validation-error";
+import { decodeHex } from "oslo/encoding";
+import { TOTPController } from "oslo/otp";
+import HttpCode from "@server/types/HttpCode";
+import { verifySession, lucia, unauthorized } from "@server/auth";
+
+export const verifyTotpBody = z.object({
+    code: z.string(),
+});
+
+export type VerifyTotpBody = z.infer<typeof verifyTotpBody>;
+
+export type VerifyTotpResponse = {
+    valid: boolean;
+};
+
+export async function verifyTotp(
+    req: Request,
+    res: Response,
+    next: NextFunction,
+): Promise<any> {
+    const parsedBody = verifyTotpBody.safeParse(req.body);
+
+    if (!parsedBody.success) {
+        return next(
+            createHttpError(
+                HttpCode.BAD_REQUEST,
+                fromError(parsedBody.error).toString(),
+            ),
+        );
+    }
+
+    const { code } = parsedBody.data;
+
+    const { session, user } = await verifySession(req);
+    if (!session) {
+        return unauthorized();
+    }
+}