lib/api/routes/loginRoute.js

import restana from 'restana';
import * as userStorage from '../../services/storage/userStorage.js';
import * as hasher from '../../services/security/hash.js';
import { trackDemoAccessed } from '../../services/tracking/Tracker.js';
import logger from '../../services/logger.js';
import { getSettings } from '../../services/storage/settingsStorage.js';
const service = restana();
const loginRouter = service.newRouter();
loginRouter.get('/user', async (req, res) => {
  const currentUserId = req.session.currentUser;
  const currentUser = currentUserId == null ? null : userStorage.getUser(currentUserId);
  if (currentUser == null) {
    res.body = {};
  } else {
    res.body = {
      userId: currentUser.id,
      isAdmin: currentUser.isAdmin,
    };
  }
  res.send();
});
loginRouter.post('/', async (req, res) => {
  const settings = await getSettings();
  const { username, password } = req.body;
  const user = userStorage.getUsers(true).find((user) => user.username === username);
  if (user == null) {
    res.send(401);
    return;
  }
  if (user.password === hasher.hash(password)) {
    if (settings.demoMode) {
      await trackDemoAccessed();
    }

    req.session.currentUser = user.id;
    userStorage.setLastLoginToNow({ userId: user.id });
    res.send(200);
    return;
  } else {
    logger.error(`User ${username} tried to login, but password was wrong.`);
  }
  res.send(401);
});
loginRouter.post('/logout', async (req, res) => {
  req.session = null;
  res.send(200);
});
export { loginRouter };
Making Fredy an ESM project (#70) Making Fredy an ESM project 2023-03-13 13:42:43 +01:00			`import restana from 'restana';`
			`import * as userStorage from '../../services/storage/userStorage.js';`
			`import * as hasher from '../../services/security/hash.js';`
Project-wide linting and formatting (#150) * chore: configure project-wide linting and formatting * chore: run lint autofix and formatter 2025-07-26 20:42:58 +02:00			`import { trackDemoAccessed } from '../../services/tracking/Tracker.js';`
using winston logger 2025-09-13 18:57:56 +02:00			`import logger from '../../services/logger.js';`
Listing management (#223) * upgrading dependencies, fixing image placeholder * improving processing times label and hide when screen width is too low * aligning run now button * renaming settings -> general settings * smaller security and memory improvements * improving footer * preparing listing management * improve filtering for listings * preparing new settings page * preparing new settings page * storing settings in db * next release version 2025-12-09 13:56:46 +01:00			`import { getSettings } from '../../services/storage/settingsStorage.js';`
Making Fredy an ESM project (#70) Making Fredy an ESM project 2023-03-13 13:42:43 +01:00			`const service = restana();`
UI (#15) Adding new Admin UI. Updating Fredy to V3.0.0 as it has been a large rewrite. Thanks for all contributions and help on the way! 2021-01-21 16:09:23 +01:00			`const loginRouter = service.newRouter();`
			`loginRouter.get('/user', async (req, res) => {`
			`const currentUserId = req.session.currentUser;`
Fix race condition if user ID is in session but not in user store (#43) 2022-01-25 15:11:21 +01:00			`const currentUser = currentUserId == null ? null : userStorage.getUser(currentUserId);`
			`if (currentUser == null) {`
UI (#15) Adding new Admin UI. Updating Fredy to V3.0.0 as it has been a large rewrite. Thanks for all contributions and help on the way! 2021-01-21 16:09:23 +01:00			`res.body = {};`
			`} else {`
			`res.body = {`
Fix race condition if user ID is in session but not in user store (#43) 2022-01-25 15:11:21 +01:00			`userId: currentUser.id,`
			`isAdmin: currentUser.isAdmin,`
UI (#15) Adding new Admin UI. Updating Fredy to V3.0.0 as it has been a large rewrite. Thanks for all contributions and help on the way! 2021-01-21 16:09:23 +01:00			`};`
			`}`
			`res.send();`
			`});`
			`loginRouter.post('/', async (req, res) => {`
Listing management (#223) * upgrading dependencies, fixing image placeholder * improving processing times label and hide when screen width is too low * aligning run now button * renaming settings -> general settings * smaller security and memory improvements * improving footer * preparing listing management * improve filtering for listings * preparing new settings page * preparing new settings page * storing settings in db * next release version 2025-12-09 13:56:46 +01:00			`const settings = await getSettings();`
UI (#15) Adding new Admin UI. Updating Fredy to V3.0.0 as it has been a large rewrite. Thanks for all contributions and help on the way! 2021-01-21 16:09:23 +01:00			`const { username, password } = req.body;`
			`const user = userStorage.getUsers(true).find((user) => user.username === username);`
			`if (user == null) {`
			`res.send(401);`
			`return;`
			`}`
			`if (user.password === hasher.hash(password)) {`
Listing management (#223) * upgrading dependencies, fixing image placeholder * improving processing times label and hide when screen width is too low * aligning run now button * renaming settings -> general settings * smaller security and memory improvements * improving footer * preparing listing management * improve filtering for listings * preparing new settings page * preparing new settings page * storing settings in db * next release version 2025-12-09 13:56:46 +01:00			`if (settings.demoMode) {`
improving tracking. now using internal tracking 2025-09-12 13:38:53 +02:00			`await trackDemoAccessed();`
Demo Mode (#117) * Adding Demo Mode to Fredy 2024-11-22 09:11:10 +01:00			`}`

UI (#15) Adding new Admin UI. Updating Fredy to V3.0.0 as it has been a large rewrite. Thanks for all contributions and help on the way! 2021-01-21 16:09:23 +01:00			`req.session.currentUser = user.id;`
			`userStorage.setLastLoginToNow({ userId: user.id });`
			`res.send(200);`
			`return;`
			`} else {`
using winston logger 2025-09-13 18:57:56 +02:00			logger.error(`User ${username} tried to login, but password was wrong.`);
UI (#15) Adding new Admin UI. Updating Fredy to V3.0.0 as it has been a large rewrite. Thanks for all contributions and help on the way! 2021-01-21 16:09:23 +01:00			`}`
			`res.send(401);`
			`});`
			`loginRouter.post('/logout', async (req, res) => {`
			`req.session = null;`
			`res.send(200);`
			`});`
Making Fredy an ESM project (#70) Making Fredy an ESM project 2023-03-13 13:42:43 +01:00			`export { loginRouter };`