From 4fcfdc0ee674f15426a11c604ac079da8c6aeb2f Mon Sep 17 00:00:00 2001
From: Eclypsed <nicholas.tamassia@gmail.com>
Date: Thu, 25 Jan 2024 19:50:26 -0500
Subject: [PATCH] started refactoring (app) layout

---
 src/app.d.ts                     |  10 +++++++-
 src/hooks.server.ts              |  27 ++++++++++++++++++++++
 src/lib/server/users.db          | Bin 0 -> 32768 bytes
 src/lib/server/users.ts          |   6 -----
 src/routes/(app)/+layout.svelte  |  38 +++++++++++++++++++++++++++++++
 src/routes/+layout.server.ts     |   5 ++++
 src/routes/login/+page.server.ts |   6 ++---
 7 files changed, 82 insertions(+), 10 deletions(-)
 create mode 100644 src/hooks.server.ts
 create mode 100644 src/routes/(app)/+layout.svelte
 create mode 100644 src/routes/+layout.server.ts

diff --git a/src/app.d.ts b/src/app.d.ts
index 5b99784..19204d5 100644
--- a/src/app.d.ts
+++ b/src/app.d.ts
@@ -3,11 +3,19 @@
 declare global {
     namespace App {
         // interface Error {}
-        // interface Locals {}
+        interface Locals {
+            user: User
+        }
         // interface PageData {}
         // interface PageState {}
         // interface Platform {}
     }
+
+    interface User {
+        id: string
+        username: string
+        password?: string
+    }
 }
 
 export {}
diff --git a/src/hooks.server.ts b/src/hooks.server.ts
new file mode 100644
index 0000000..8ab2ee0
--- /dev/null
+++ b/src/hooks.server.ts
@@ -0,0 +1,27 @@
+import { redirect, type Handle } from '@sveltejs/kit'
+import { SECRET_JWT_KEY, SECRET_INTERNAL_API_KEY } from '$env/static/private'
+import jwt from 'jsonwebtoken'
+
+export const handle: Handle = async ({ event, resolve }) => {
+    const nonJwtProtectedRoutes = ['/login', '/api']
+    const urlpath = event.url.pathname
+
+    if (urlpath.startsWith('/api') && event.request.headers.get('apikey') !== SECRET_INTERNAL_API_KEY && event.url.searchParams.get('apikey') !== SECRET_INTERNAL_API_KEY) {
+        return new Response('Unauthorized', { status: 400 })
+    }
+
+    if (!nonJwtProtectedRoutes.some((route) => urlpath.startsWith(route))) {
+        const authToken = event.cookies.get('lazuli-auth')
+        if (!authToken) throw redirect(303, `/login?redirect=${urlpath}`)
+
+        try {
+            const tokenData = jwt.verify(authToken, SECRET_JWT_KEY) as User
+            event.locals.user = tokenData
+        } catch {
+            throw redirect(303, `/login?redirect=${urlpath}`)
+        }
+    }
+
+    const response = await resolve(event)
+    return response
+}
diff --git a/src/lib/server/users.db b/src/lib/server/users.db
index e69de29bb2d1d6434b8b29ae775ad8c2e48c5391..4716b4ed139070e084cef7ffece5623b9e2802b3 100644
GIT binary patch
literal 32768
zcmeI(U2l_67zc1z-?q68V`A{8$w|7zk+j=d)^@uvku_{qD|EDM&YOk-b!2UsK=<NZ
zjThef75qNl`vLp}%Pzc>GU<zP)eB>?=6?d^z&VuX`EhPep|!n=<(Z^uJ8jJ)JawO<
zY3eB<6h%e-b=F_Q67ehjV_~7g%7kr{T0Q%?$b6>~3s)5Lkom%VUXqu-EnF=<ns64H
zAOHafKmY;|fB*y_009X66M^@sc!Eu(=nspYcGNOUcBf<No@IC3k!qr(h(cW?bz!?A
zl97fL%OLxLQhFvRD|~??Ri*q=P!7op@i0xguIZG=+a<Y9B(+jW6Tj`u(#`SqG|_b3
zbltjrVs=PfeC78ZoZ*;F$8?W}ZE0d&oLbH$DNA*6S5(quM^?o0uGGK$%FWd|qKG@9
zB1$E(MpXZzt{*Zt-g6MjSm)YJfI)vQpNO;N6irzj!@O|cw){zAL+g5Wu-_N~X=F!s
zW_u5!2{xIed*=ae_?6){HpUtrooMP^o|*&k!Ui|u^OO4*wXV||hve2`akiAaEtfEg
zMmDU)d-HUHWm&rC23Z7(!N<&4{Gsk3yx$Ipj@BL~z^`*emCAdnIFiSy=DO#$GaNX@
z+%Qd!i^SO{>}}BpF*I_)Cd$qHxobA)+Mmk@bNfZVLNlKze?fr&1Rwwb2tWV=5P$##
zAOHafK;VA~wCR|d?8S0?(a^R0R;G|Oa+wXo;4|9Rk)GiV&CG6W7K+8<rex{Ic1v@Y
zbJ}uteK~KO=bty_eN%V!+G|}fng_DgeUsy5<M6~--4&|&?Jf1VT9w}kt8Mkb+pZj4
z&ii@M%vZ`^P#^#S2tWV=5P$##AOHafKmY;|xMKp3BkJ7W{DyEd|G%b~>pPYp!i4|?
zAOHafKmY;|fB*y_009U<V4}diNOCTGccB0NzyGIy6bL{70uX=z1Rwwb2tWV=5P$##
zrdXi={2%lGDZar-4FV8=00bZa0SG_<0uX=z1R&rG;Q2p>0R$ib0SG_<0uX=z1Rwwb
j2tZ)^1@QcT`tLC^ga8B}009U<00Izz00bZa0SNp6>E1F7

literal 0
HcmV?d00001

diff --git a/src/lib/server/users.ts b/src/lib/server/users.ts
index de8d8be..f1e523f 100644
--- a/src/lib/server/users.ts
+++ b/src/lib/server/users.ts
@@ -11,12 +11,6 @@ db.exec(initUsersTable)
 db.exec(initServicesTable)
 db.exec(initConnectionsTable)
 
-interface User {
-    id: string
-    username: string
-    password?: string
-}
-
 type UserQueryParams = {
     includePassword?: boolean
 }
diff --git a/src/routes/(app)/+layout.svelte b/src/routes/(app)/+layout.svelte
new file mode 100644
index 0000000..4fb6c98
--- /dev/null
+++ b/src/routes/(app)/+layout.svelte
@@ -0,0 +1,38 @@
+<script lang="ts">
+    import { fly, fade } from "svelte/transition";
+    import { goto } from "$app/navigation";
+    import { pageWidth } from "$lib/stores";
+    import type { LayoutServerData } from "../$types.js";
+
+    export let data: LayoutServerData
+
+    const contentTabs = {
+        '/': {
+            header: 'Home',
+            icon: 'fa-solid fa-house',
+        },
+        '/account': {
+            header: data.user.username,
+            icon: 'fa-solid fa-user',
+        },
+        '/search': {
+            header: 'Search',
+            icon: 'fa-solid fa-search',
+        },
+        '/library': {
+            header: 'Libray',
+            icon: 'fa-solid fa-bars-staggered',
+        },
+    }
+
+    const pageTransitionTime: number = 200
+
+    let previousPage = data.urlPathname
+    type PageTransitionDirection = 1 | -1
+    let direction: PageTransitionDirection = 1
+    
+    const calculateDirection = (newPage: string): void => {
+        const contentLinks = Object.keys(contentTabs)
+        const newPageIndex = contentLinks.indexOf(newPage)
+    }
+</script>
\ No newline at end of file
diff --git a/src/routes/+layout.server.ts b/src/routes/+layout.server.ts
new file mode 100644
index 0000000..12a06fd
--- /dev/null
+++ b/src/routes/+layout.server.ts
@@ -0,0 +1,5 @@
+import type { LayoutServerLoad } from './$types'
+
+export const load: LayoutServerLoad = ({ url, locals }) => {
+    return { urlPathname: url.pathname, user: locals.user }
+}
diff --git a/src/routes/login/+page.server.ts b/src/routes/login/+page.server.ts
index d22093f..27a56f4 100644
--- a/src/routes/login/+page.server.ts
+++ b/src/routes/login/+page.server.ts
@@ -3,7 +3,7 @@ import { fail, redirect } from '@sveltejs/kit'
 import { compare, hash } from 'bcrypt-ts'
 import type { PageServerLoad, Actions } from './$types'
 import { Users } from '$lib/server/users'
-import { sign } from 'jsonwebtoken'
+import jwt from 'jsonwebtoken'
 
 export const load: PageServerLoad = async ({ url }) => {
     const redirectLocation = url.searchParams.get('redirect')
@@ -21,7 +21,7 @@ export const actions: Actions = {
         const passwordValid = await compare(password.toString(), user.password!)
         if (!passwordValid) return fail(400, { message: 'Invalid Password' })
 
-        const authToken = sign({ id: user.id, username: user.username }, SECRET_JWT_KEY, { expiresIn: '100d' })
+        const authToken = jwt.sign({ id: user.id, username: user.username }, SECRET_JWT_KEY, { expiresIn: '100d' })
 
         cookies.set('lazuli-auth', authToken, { path: '/', httpOnly: true, sameSite: 'strict', secure: false, maxAge: 60 * 60 * 24 * 100 })
 
@@ -40,7 +40,7 @@ export const actions: Actions = {
         const passwordHash = await hash(password.toString(), 10)
         const newUser = Users.addUser(username.toString(), passwordHash)
 
-        const authToken = sign({ id: newUser.id, username: newUser.username }, SECRET_JWT_KEY, { expiresIn: '100d' })
+        const authToken = jwt.sign(newUser, SECRET_JWT_KEY, { expiresIn: '100d' })
 
         cookies.set('lazuli-auth', authToken, { path: '/', httpOnly: true, sameSite: 'strict', secure: false, maxAge: 60 * 60 * 24 * 100 })