POC auth in app

author: ivar <i@oiee.no> 2025-12-04 00:17:16 +0100
committer: ivar <i@oiee.no> 2025-12-04 00:17:16 +0100
commit: 724860c272afb7fe5a02645ef1c1b8d208d897f3 (patch)
tree: df9b72b9cd9cc716ceb19a4a9085b8f1ba5b6972 /api/WhatApi/Endpoints/LoginEndpoint.cs
parent: 401226a14f3e5ef98b959e818d37683afd7056d9 (diff)
download: what-724860c272afb7fe5a02645ef1c1b8d208d897f3.tar.xz
what-724860c272afb7fe5a02645ef1c1b8d208d897f3.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/api/WhatApi/Endpoints/LoginEndpoint.cs b/api/WhatApi/Endpoints/LoginEndpoint.cs
index ee697ef..cb76696 100644
--- a/api/WhatApi/Endpoints/LoginEndpoint.cs
+++ b/api/WhatApi/Endpoints/LoginEndpoint.cs
@@ -13,8 +13,9 @@ public class LoginEndpoint(AppDatabase db, IConfiguration configuration) : BaseE
         public required string Password { get; set; }
     }
 
+    [AllowAnonymous]
     [HttpPost("~/login")]
-    public async Task<ActionResult> HandleAsync(LoginRequest login, CancellationToken ct = default) {
+    public async Task<ActionResult> HandleAsync([FromForm] LoginRequest login, CancellationToken ct = default) {
         var user = await db.Users.FirstOrDefaultAsync(c => c.Name == login.Username, ct);
         if (user?.PasswordHash is null) return Unauthorized();
 
@@ -47,6 +48,6 @@ public class LoginEndpoint(AppDatabase db, IConfiguration configuration) : BaseE
         var tokenString = tokenHandler.WriteToken(token);
         user.SetLastSeen();
         await db.SaveChangesAsync(ct);
-        return Ok(tokenString);
+        return Redirect("what://lcb?code=" + tokenString);
     }
 }
 \ No newline at end of file
author	ivar <i@oiee.no>	2025-12-04 00:17:16 +0100
committer	ivar <i@oiee.no>	2025-12-04 00:17:16 +0100
commit	724860c272afb7fe5a02645ef1c1b8d208d897f3 (patch)
tree	df9b72b9cd9cc716ceb19a4a9085b8f1ba5b6972 /api/WhatApi/Endpoints/LoginEndpoint.cs
parent	401226a14f3e5ef98b959e818d37683afd7056d9 (diff)
download	what-724860c272afb7fe5a02645ef1c1b8d208d897f3.tar.xz what-724860c272afb7fe5a02645ef1c1b8d208d897f3.zip