Add authentication handling

Author: yerTools

src/backend/api/user.go

@@ -20,17 +20,17 @@ var userMutex = sync.Mutex{}
 
 // RegisterUserAPI registers the user management API endpoints with the PocketBase server.
 // It attaches three HTTP routes:
-// - GET  /api/user/exists           : Determines if any user accounts beyond the default exist.
-// - POST /api/user/create           : Creates the first normal user and matching superuser when none exist.
-// - GET  /api/user/is-authenticated : Checks if the current request is authenticated and if admin creation is allowed.
+// - GET  /api/user/exists            : Determines if any user accounts beyond the default exist.
+// - POST /api/user/create-admin-user : Creates the first normal user and matching superuser when none exist.
+// - GET  /api/user/is-authenticated  : Checks if the current request is authenticated and if admin creation is allowed.
 //
 // GET /api/user/exists responses:
 //
 //	200 OK   - {"exists":true} if at least one user exists or the superuser state is non-default.
 //	            {"exists":false} if no users and only the initial default superuser remain.
 //	500 Error - On database count or fetch failures.
 //
-// POST /api/user/create expected form parameters:
+// POST /api/user/create-admin-user expected form parameters:
 //
 //	email           (string) Required. Valid email for new accounts.
 //	password        (string) Required. Minimum 10 characters.
@@ -75,7 +75,7 @@ func RegisterUserAPI(app *pocketbase.PocketBase, cfg configuration.AppConfig) {
 
 	app.OnServe().BindFunc(func(se *core.ServeEvent) error {
 		if cfg.General.InitialAdminRegistration {
-			// Handler: POST /api/user/create
+			// Handler: POST /api/user/create-admin-user
 			// Purpose: Initializes the first normal user and a matching superuser when no users exist.
 			// Parameters (form):
 			//   - email           string (required): email address for new accounts.
@@ -86,7 +86,7 @@ func RegisterUserAPI(app *pocketbase.PocketBase, cfg configuration.AppConfig) {
 			//   400: Bad request on missing or invalid parameters.
 			//   409: Conflict if users already exist or superuser count mismatch.
 			//   500: Internal error on database or transaction failures.
-			se.Router.POST("/api/user/create", func(e *core.RequestEvent) error {
+			se.Router.POST("/api/user/create-admin-user", func(e *core.RequestEvent) error {
 				userMutex.Lock()
 				defer userMutex.Unlock()
 

src/backend/configuration/loader.go

@@ -30,7 +30,7 @@ func ParseAppConfig(data []byte) (AppConfig, error) {
 }
 
 func sanitizeJSONC(data []byte) ([]byte, error) {
-	appConfigJSONCReader := bytes.NewReader(config.AppConfigJSONC)
+	appConfigJSONCReader := bytes.NewReader(data)
 
 	jsoncFilter, err := jsonc.New(appConfigJSONCReader, true, "")
 	if err != nil {

src/index.tsx

@@ -25,6 +25,7 @@ export const [pageList, wellKnownPages, pageTree] = transformPageTree({
     title: "SolidJS",
     component: () => <span>SolidJS Page</span>,
     icon: SolidIcon,
+    authenticationRequired: true,
   },
   tailwind: {
     title: "TailwindCSS",

src/pages/well-known/CreateAdminUser.tsx

@@ -0,0 +1,120 @@
+import LoadingIcon from "~icons/svg-spinners/bouncing-ball";
+
+import { JSX, Show, createSignal } from "solid-js";
+
+import { RouteSectionProps } from "@solidjs/router";
+
+import { createAdminUser } from "../../service/api/user";
+
+const CreateAdminUser = (_: RouteSectionProps): JSX.Element => {
+  const [email, setEmail] = createSignal("");
+  const [password, setPassword] = createSignal("");
+  const [passwordConfirm, setPasswordConfirm] = createSignal("");
+  const [error, setError] = createSignal<string | null>(null);
+  const [isLoading, setIsLoading] = createSignal(false);
+
+  const handleSubmit = async (e: Event) => {
+    e.preventDefault();
+    setError(null);
+    setIsLoading(true);
+
+    if (password() !== passwordConfirm()) {
+      setError("Passwords do not match");
+      setIsLoading(false);
+      return;
+    }
+
+    const [_, createError] = await createAdminUser(
+      email(),
+      password(),
+      passwordConfirm(),
+    );
+
+    setIsLoading(false);
+
+    if (createError) {
+      setError(createError.message || "Failed to create admin user");
+    }
+  };
+
+  return (
+    <div class="flex flex-col gap-4">
+      <h2 class="text-center text-2xl font-bold">Create Admin User</h2>
+      <p class="text-center text-sm opacity-75">
+        Welcome! Please create the first admin user to get started.
+      </p>
+      <form
+        onSubmit={handleSubmit}
+        class="flex flex-col gap-4"
+      >
+        <div class="form-control w-full">
+          <label class="label">
+            <span class="label-text">Email</span>
+          </label>
+          <input
+            type="email"
+            placeholder="[email protected]"
+            class="input input-bordered w-full"
+            value={email()}
+            onInput={(e) => setEmail(e.currentTarget.value)}
+            required
+            disabled={isLoading()}
+          />
+        </div>
+
+        <div class="form-control w-full">
+          <label class="label">
+            <span class="label-text">Password</span>
+          </label>
+          <input
+            type="password"
+            placeholder="Enter password"
+            class="input input-bordered w-full"
+            value={password()}
+            onInput={(e) => setPassword(e.currentTarget.value)}
+            required
+            disabled={isLoading()}
+            minlength="8"
+          />
+        </div>
+
+        <div class="form-control w-full">
+          <label class="label">
+            <span class="label-text">Confirm Password</span>
+          </label>
+          <input
+            type="password"
+            placeholder="Confirm password"
+            class="input input-bordered w-full"
+            value={passwordConfirm()}
+            onInput={(e) => setPasswordConfirm(e.currentTarget.value)}
+            required
+            disabled={isLoading()}
+            minlength="8"
+          />
+        </div>
+
+        <Show when={error()}>
+          <div
+            role="alert"
+            class="alert alert-error text-sm"
+          >
+            <span>{error()}</span>
+          </div>
+        </Show>
+
+        <button
+          type="submit"
+          class="btn btn-primary mt-2 w-full"
+          disabled={isLoading()}
+        >
+          {isLoading() ?
+            <LoadingIcon />
+          : "Create Admin"}
+        </button>
+      </form>
+    </div>
+  );
+};
+
+export default CreateAdminUser;

src/pages/well-known/Layout.tsx

@@ -1,6 +1,7 @@
 import AnarchyIcon from "~icons/game-icons/anarchy";
 import FistIcon from "~icons/game-icons/fist";
 import HammerSickleIcon from "~icons/game-icons/hammer-sickle";
+import LogoutIcon from "~icons/hugeicons/logout-02";
 import MenuIcon from "~icons/line-md/close-to-menu-alt-transition";
 import GitHubIcon from "~icons/line-md/github-loop";
 import XIcon from "~icons/line-md/menu-to-close-transition";
@@ -26,6 +27,7 @@ import { A, RouteSectionProps, useLocation } from "@solidjs/router";
 import { Observer } from "tailwindcss-intersect";
 
 import { pageList } from "../..";
+import { isAuthenticated, logoutUser } from "../../service/api/user";
 
 const getBreadcrumbs = () => {
   const location = useLocation();
@@ -82,66 +84,107 @@ const NavigationLinks = (props: {
   const location = useLocation();
 
   return (
-    <For each={pageList}>
-      {(page) => {
-        switch (props.kind) {
-          case "desktop":
-            return (
-              <li>
+    <>
+      <For each={pageList}>
+        {(page) => {
+          switch (props.kind) {
+            case "desktop":
+              return (
+                <li>
+                  <A
+                    href={page.path}
+                    activeClass="bg-base-200 font-medium"
+                    class={
+                      "hover:text-primary group text-xs-adjust rounded-lg py-1 transition-all duration-200 hover:scale-105 sm:py-2 sm:text-sm md:text-base"
+                    }
+                    end={true}
+                    onClick={props.onClick}
+                  >
+                    {page.icon && (
+                      <page.icon
+                        class={
+                          "mr-1 inline h-4 w-4 transition-transform duration-200 group-hover:-rotate-12 sm:h-5 sm:w-5"
+                        }
+                      />
+                    )}
+                    {page.title}
+                  </A>
+                </li>
+              );
+            case "mobile":
+              return (
                 <A
                   href={page.path}
-                  activeClass="bg-base-200 font-medium"
-                  class={
-                    "hover:text-primary group text-xs-adjust rounded-lg py-1 transition-all duration-200 hover:scale-105 sm:py-2 sm:text-sm md:text-base"
-                  }
-                  end={true}
+                  class={`btn btn-ghost btn-xs-adjust sm:btn-sm my-1 justify-start ${
+                    location.pathname === page.path ?
+                      "bg-base-300 font-medium"
+                    : ""
+                  }`}
                   onClick={props.onClick}
                 >
                   {page.icon && (
-                    <page.icon
-                      class={
-                        "mr-1 inline h-4 w-4 transition-transform duration-200 group-hover:-rotate-12 sm:h-5 sm:w-5"
-                      }
-                    />
+                    <page.icon class="mr-1 inline h-4 w-4 sm:h-5 sm:w-5" />
+                  )}
+                  <span class="truncate">{page.title}</span>
+                </A>
+              );
+            case "footer":
+              return (
+                <A
+                  href={page.path}
+                  class="link link-hover text-xs-adjust sm:text-sm"
+                >
+                  {page.icon && (
+                    <page.icon class="mr-1 inline h-4 w-4 sm:h-5 sm:w-5" />
                   )}
                   {page.title}
                 </A>
-              </li>
-            );
-          case "mobile":
-            return (
-              <A
-                href={page.path}
-                class={`btn btn-ghost btn-xs-adjust sm:btn-sm my-1 justify-start ${
-                  location.pathname === page.path ?
-                    "bg-base-300 font-medium"
-                  : ""
-                }`}
-                onClick={props.onClick}
-              >
-                {page.icon && (
-                  <page.icon class="mr-1 inline h-4 w-4 sm:h-5 sm:w-5" />
-                )}
-                <span class="truncate">{page.title}</span>
-              </A>
-            );
-          case "footer":
-            return (
-              <A
-                href={page.path}
-                class="link link-hover text-xs-adjust sm:text-sm"
-              >
-                {page.icon && (
-                  <page.icon class="mr-1 inline h-4 w-4 sm:h-5 sm:w-5" />
-                )}
-                {page.title}
-              </A>
-            );
-          default:
-            const _: never = props.kind;
-        }
-      }}
-    </For>
+              );
+            default:
+              const _: never = props.kind;
+          }
+        }}
+      </For>
+      {isAuthenticated() ?
+        props.kind === "desktop" ?
+          <li>
+            <A
+              href="/"
+              activeClass="bg-base-200 font-medium"
+              class={
+                "hover:text-primary group text-xs-adjust rounded-lg py-1 transition-all duration-200 hover:scale-105 sm:py-2 sm:text-sm md:text-base"
+              }
+              end={true}
+              onClick={logoutUser}
+            >
+              <LogoutIcon
+                class={
+                  "mr-1 inline h-4 w-4 transition-transform duration-200 group-hover:-rotate-12 sm:h-5 sm:w-5"
+                }
+              />
+              Logout
+            </A>
+          </li>
+        : props.kind === "mobile" ?
+          <A
+            href="/"
+            class={"btn btn-ghost btn-xs-adjust sm:btn-sm my-1 justify-start"}
+            onClick={props.onClick}
+          >
+            <LogoutIcon class="mr-1 inline h-4 w-4 sm:h-5 sm:w-5" />
+            <span class="truncate">Logout</span>
+          </A>
+        : (props.kind as string) === "footer" ?
+          <A
+            href="/"
+            class="link link-hover text-xs-adjust sm:text-sm"
+          >
+            <LogoutIcon class="mr-1 inline h-4 w-4 sm:h-5 sm:w-5" />
+            Logout
+          </A>
+        : <></>
+      : <></>}
+    </>
   );
 };